firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 15:15:01 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Qr57tsh9QufqMjyRoKv3dHbknW_MKqYPn9MLsPwzmxomKIE52CKjsg==
Age: 2845
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4488
Expires: Sun, 25 Sep 2022 17:17:14 GMT
Date: Sun, 25 Sep 2022 16:02:26 GMT
Connection: keep-alive
xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
66.29.146.165301 Moved Permanently 707 B URL HTTP/1.1 xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
IP 66.29.146.165:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sun, 25 Sep 2022 16:02:26 GMT
server: LiteSpeed
location: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
x-turbo-charged-by: LiteSpeed
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2mR0wr09fam1zYVflniJz7URq6Eyha3SewKFUHQCoOTQJHU0NaK64Q==
age: 41232
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 16:02:27 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 25 Sep 2022 15:04:17 GMT
Expires: Sun, 25 Sep 2022 15:16:45 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vVbkPxh3GcN89Q5-li-ioBMZYaqVS9upQt3VcQ7JpUJFias2MGzTHQ==
Age: 3490
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash eaa04534a01fbad6f7ed16661b4d5081
d910106fcbd7469efbd08d6c9d4db4a793f2444e
c21605d62ba7acf87ea1a24bd2b88c9a01d820a5ab789c136ba95e3243b5e791
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 16:02:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 04:33:11 GMT
Expires: Sat, 01 Oct 2022 04:33:10 GMT
Etag: "d910106fcbd7469efbd08d6c9d4db4a793f2444e"
Cache-Control: max-age=476442,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7504fbf8ce84fabc-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5660
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 16:02:27 GMT
Last-Modified: Sun, 25 Sep 2022 14:28:07 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.82.48.240101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.82.48.240:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fI5dKLHniPvKccMtfC2FMg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qnFu8ZkqaPkXHd3jongCzkwlgZQ=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16202
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 16:02:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16202
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 16:02:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16202
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 16:02:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F860e3a33-2946-4ad5-9687-6cc6953b920d.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F860e3a33-2946-4ad5-9687-6cc6953b920d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4a034f8a3f2e69e852a69075d20b0e3
a7a6043178f05f547a08808ea8b34a6703154b42
8f1a045214d7049cb9f9a1ab2c55b6753907741b7cbfcb2e02f916f95a56ddcc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F860e3a33-2946-4ad5-9687-6cc6953b920d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5179
x-amzn-requestid: 57451c31-0b96-4aa5-ae63-54f949ab3d68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQlGrRIAMFklA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2736-0bd483e47d880a837c7316ce;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OEBChdfqreTTNtWpSQfl4Eqsjj--P1EoJsFESumBcVJHdFNGSpN7gQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:49:17 GMT
age: 65592
etag: "a7a6043178f05f547a08808ea8b34a6703154b42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6ca22e-ec7b-41a4-aef7-7cf4a871bbdb.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6ca22e-ec7b-41a4-aef7-7cf4a871bbdb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0b722574c0e6f63a78a19eff0f100ae4
96185aa90e560a4bd9462cef2e280561ee557413
c5b1012f1fca39d949f4b70e69b94bc6e03521d93ab8c38bb30d2c9c43bac633
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6ca22e-ec7b-41a4-aef7-7cf4a871bbdb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12087
x-amzn-requestid: 2779f1ce-50e8-4bdc-b8c2-6f87976a9daf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4WAYErZoAMFYrg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd068-1f1831806dffda454e532ac8;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:15:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wsZ5UX2rbxGMECRjV6NR4fTFrfj-jK94RDMZn0_SKU-DDYKHl8JgMw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 08:14:56 GMT
age: 28053
etag: "96185aa90e560a4bd9462cef2e280561ee557413"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 714af732a9aa1db2b13ffb62810fd532
358e74de395352a9529ff1c17856daf8900888c5
1d2035cfcd283560ebe8494f9438e52f8d96cd092dd41cb0eb899a3f905c1e05
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6199
x-amzn-requestid: d26f22d9-4e9b-4764-8c96-2e1c7ce36340
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y--OKHowoAMFbQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7727-7adb7c4925e6e50e13889544;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:31:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LryqVGSkKbiNOwcqXMULY9FXbOuZBBenjgGPDME3NZLZOdp5divXmw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 22:02:29 GMT
age: 64800
etag: "358e74de395352a9529ff1c17856daf8900888c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5CzA52-o7GYViSJ4lna7ptv9dycJCUL-NLWOk-iCW-ZxDU_FQH_OoQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:51:18 GMT
age: 65471
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6307cf78-7c68-41f1-9dfd-ba063eeb3f4b.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6307cf78-7c68-41f1-9dfd-ba063eeb3f4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7bd3afd3069904500c28e9bb16587e8
a881666627e1077859ed1941cee576caf600d798
78a7b0a2127c583aba569abace503cff376cde67d5faa9a346c1494d91e8f3cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6307cf78-7c68-41f1-9dfd-ba063eeb3f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5172
x-amzn-requestid: d366d3e0-71d7-404c-a93b-3267852824ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_T5F5PoAMFqWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f78e5-52362b5f0dc1ee8951eebc07;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ean91lOEJLzLQFKy3gBuqD_G-BVw3SMuED20W6ixdkKYvVcMatdGJA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:39:23 GMT
age: 66186
etag: "a881666627e1077859ed1941cee576caf600d798"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:19 GMT
age: 66310
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 16:02:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 16:02:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?key=AIzaSyDKbHmwzL20wAxDfLRnTHeJ0I8uAq_hU_Y&ver=6.0.2
142.250.74.170200 OK 54 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyDKbHmwzL20wAxDfLRnTHeJ0I8uAq_hU_Y&ver=6.0.2
IP 142.250.74.170:0
File type ASCII text, with very long lines (2452)
Hash 1c9ef0451a82adc443baa8096a40c404
476976c25e6596135bdcbd4f2695dca39ff2d200
70d4a7203817e5efd22f25bb87fe47ff7ab3ecea2a89d37098ce47c5f04f5e84
GET /maps/api/js?key=AIzaSyDKbHmwzL20wAxDfLRnTHeJ0I8uAq_hU_Y&ver=6.0.2 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 16:02:29 GMT
expires: Sun, 25 Sep 2022 16:32:29 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 54037
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=13
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
xpodeal.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
66.29.146.165200 OK 11 kB URL HTTP/2 xpodeal.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 66.29.146.165:0
File type ASCII text, with very long lines (43771)
Hash d45207ee05c1f0c57dfa075e61405ccd
a8d35143a2d828a739ea0fdde75f97d33621e7ec
a9a4adbbcee31ec277f1bdd573eef97dc4341f29f2db3b5685a02dfe4d2fe9bb
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 21:40:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10946
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.2
66.29.146.165200 OK 1.8 kB URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.2
IP 66.29.146.165:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash f7237084ac82ea6a4f5bf1448c3a2148
60457635a5e809ee1199c61090d8e33b91e8e1f2
18a1cb7f08c1ace52a79f46d73461ed03bf8cf5c9e8a3687eacc3e04f08e7a09
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.2 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 00:12:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1754
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 16:02:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 16:02:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
xpodeal.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.2
66.29.146.165200 OK 21 kB URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.2
IP 66.29.146.165:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash b949966fb1c62c392babd0eb97a080ca
68842cbc531c38a01569da81eff51b1d358f7734
c7804b0b1571c1986e8661aef7343839d797bb368222a537c996b062f1d9f695
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.2 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 00:12:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20885
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
66.29.146.165404 Not Found 35 kB URL HTTP/2 xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
IP 66.29.146.165:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (20694), with CRLF, LF line terminators
Hash 2dffc8ab19e97c0d587625b0bcb3934f
f172e71326a3d2cd1599cb2c79f370c2aaee1bdc
08ae65e8d8110db4ccdefbb9beca3422703a78e8a4fcd1d101f19ce1648e5666
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://xpodeal.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: public,max-age=3600
x-litespeed-tag: 520_HTTP.404,520_404,520_URL.e26b59d909a0b63f716805705183b4c4,520_
x-litespeed-cache: miss
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
66.29.146.165200 OK 670 B URL HTTP/2 xpodeal.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP 66.29.146.165:0
File type ASCII text, with very long lines (2630), with no line terminators
Hash 6867f0990d852a8660a2d6f7a6675183
0240940bdf174107a14d132fa82b50b1445ff2f8
598b0ec44ac00e2f238bebe6077530ad4e6ac41f99122d495313302b380c2868
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Fri, 14 Aug 2020 14:33:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 670
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/fami-buy-together/assets/css/frontend.css?ver=6.0.2
66.29.146.165200 OK 1.6 kB URL HTTP/2 xpodeal.com/wp-content/plugins/fami-buy-together/assets/css/frontend.css?ver=6.0.2
IP 66.29.146.165:0
File type ASCII text, with CRLF line terminators
Hash dfc156d6e3bcd35348d4298e76289570
2a68826831adcd377687888f7d10758405cd2be4
f82b9e6e1953b7e0bbf48ad2e359ec69a6e98f4ead5c4cde179883fd45262160
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fami-buy-together/assets/css/frontend.css?ver=6.0.2 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Mon, 01 Aug 2022 16:27:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1569
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/fami-buy-together/assets/vendors/bootstrap/bootstrap.min.css?ver=6.0.2
66.29.146.165200 OK 18 kB URL HTTP/2 xpodeal.com/wp-content/plugins/fami-buy-together/assets/vendors/bootstrap/bootstrap.min.css?ver=6.0.2
IP 66.29.146.165:0
File type ASCII text, with very long lines (65371)
Hash f8b5aa954f8c1610cf960ae8bcaf29ec
8f64d6aaa73e80e8099145753999d116bbf92c3d
eca72e6abec248afebd85351f96dfffa00e30ff84fe868ad0d49abafe6f79a5a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fami-buy-together/assets/vendors/bootstrap/bootstrap.min.css?ver=6.0.2 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Mon, 01 Aug 2022 16:27:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18270
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.13.0
66.29.146.165200 OK 4.6 kB URL HTTP/2 xpodeal.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.13.0
IP 66.29.146.165:0
File type ASCII text, with very long lines (29337), with no line terminators
Hash d57b8bb9da5c87b07c0bbfbf68eedfde
d85a4b62617cef8db8476076d9a2c4b5def0e226
0eccad1a79bcc73c4bd29ff253cd618161eb102c60cc755f42c55f7b85a1b763
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.13.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Sun, 19 Jun 2022 18:19:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4583
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
66.29.146.165200 OK 848 B URL HTTP/2 xpodeal.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 66.29.146.165:0
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Mon, 11 Oct 2021 13:40:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
66.29.146.165200 OK 1.9 kB URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
IP 66.29.146.165:0
File type ASCII text, with very long lines (9281), with no line terminators
Hash dc91028c24ac0d7a6f4872a1320fa5e8
508ce388de37cd7cf6eedcea816789880589479e
c019b08c90cf3573e8ea887626853781059d1af59698f7929cdc94c84054bddf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Wed, 22 Dec 2021 00:24:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1863
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/fami-sales-popup/assets/css/frontend.css?ver=6.0.2
66.29.146.165200 OK 475 B URL HTTP/2 xpodeal.com/wp-content/plugins/fami-sales-popup/assets/css/frontend.css?ver=6.0.2
IP 66.29.146.165:0
File type ASCII text, with CRLF line terminators
Hash 97cb75cfc1da711328ce7da1c5bb9f87
795186853bc79c95210889c599e36b0a828e63a9
5c4de4e57c001bd0268f6a51e3cc042a5a912679828d7cbb3f79dc6216689b35
GET /wp-content/plugins/fami-sales-popup/assets/css/frontend.css?ver=6.0.2 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Mon, 01 Aug 2022 16:27:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 475
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
66.29.146.165200 OK 1.1 kB URL HTTP/2 xpodeal.com/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21
IP 66.29.146.165:0
Hash 263b70217f905feda4c01edde0b2737a
5ee9d3538967433d441e6aa357bf166724200523
1c82d8152cb3112b7df9b40a89ac28db20e51562266c13d392e8530fc06cd5ce
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Wed, 31 Aug 2022 13:58:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1060
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11
66.29.146.165200 OK 12 kB URL HTTP/2 xpodeal.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11
IP 66.29.146.165:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash dc07606c6f1719f22e60b5a66b6c83ee
0007da6b48940b57407d4345d997cdea4b062fc4
dfc4458610794e60eb66675406a99ffbfc5ece7ac2b6cc172050c32621aaf31a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Wed, 27 Jul 2022 16:46:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12482
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/css/pe-icon-7-stroke.css?ver=1.5.8
66.29.146.165200 OK 1.7 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/css/pe-icon-7-stroke.css?ver=1.5.8
IP 66.29.146.165:0
Hash eafd532a9d530cbb91a75bd98d77b8db
9f90575082e9a0359928a277e681e467e20b02c7
a023d8531a89d481d1892417a04d983a4315ab508d8bc31eff0b044984bb2f16
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/css/pe-icon-7-stroke.css?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1683
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/fonts/flaticon/flaticon.css?ver=1.5.8
66.29.146.165200 OK 563 B URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/fonts/flaticon/flaticon.css?ver=1.5.8
IP 66.29.146.165:0
Hash 4a3f6bd8206873b5ec0e029498d0c7d9
7a9e00fcf8bf94c2608048536337a5a2982924e1
96749f5be9c5fd41ed7bfdfaa53b89e06a872524e076d4d008a0cd9a412dab58
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/fonts/flaticon/flaticon.css?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 563
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/css/font-awesome.min.css?ver=1.5.8
66.29.146.165200 OK 6.6 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/css/font-awesome.min.css?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with very long lines (30758), with no line terminators
Hash 7bf2a039d8c1c8bdac9e771b009ad318
b70aae17d4b99d0ef67df4a21363423e1aff2543
7618d0c2a6b4303a9223b40b5d4757131b8413fc8ecc0a7dc5a07c3402a8cc63
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/css/font-awesome.min.css?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6583
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/css/jquery.growl.min.css?ver=1.5.8
66.29.146.165200 OK 628 B URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/css/jquery.growl.min.css?ver=1.5.8
IP 66.29.146.165:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (2115), with no line terminators
Hash e3fd66bc807e1548cc7d82279332748e
9037100976dfdc33c17ee65265c982b5fdebac92
98c8fa66dc17a3dd0f94692815fe70b3df4440e355df5f1ea917bdea25211269
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/css/jquery.growl.min.css?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 628
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/css/slick.min.css?ver=1.5.8
66.29.146.165200 OK 397 B URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/css/slick.min.css?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with very long lines (1330), with no line terminators
Hash ac85c45abcc30f4d521928445ee2b369
66b69b56dfe4aebcdac67143b2a68af4e56af938
deab7d6997b99829c6a9434002f551f70aa16b55186fa961e8803da53e3c5d3e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/css/slick.min.css?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 397
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/css/chosen.min.css?ver=1.5.8
66.29.146.165200 OK 1.8 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/css/chosen.min.css?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with very long lines (9686), with no line terminators
Hash 2958ae46507bb7ec8e452d96dfd883c8
80a4829d2bc8ebed50375dfd0d64551946a9f0f6
8f24dd1e8cc5cec76d59a20d82f5178c6a8859d9ab184335b076fb1999d95bbb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/css/chosen.min.css?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1823
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/css/magnific-popup.css?ver=1.5.8
66.29.146.165200 OK 1.7 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/css/magnific-popup.css?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with CRLF line terminators
Hash ce4ce941a89517d4a19cf7cc266ae0d3
a7c0aad584b8941245d195702b17add09a76736e
bbe19f2a0cae112988859afb12bed2ae6e494bb7608437d24273ceda23448503
GET /wp-content/themes/ecome/assets/css/magnific-popup.css?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1679
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/style.css?ver=6.0.2
66.29.146.165200 OK 447 B URL HTTP/2 xpodeal.com/wp-content/themes/ecome/style.css?ver=6.0.2
IP 66.29.146.165:0
File type ASCII text, with very long lines (311)
Hash c21cce3033a53bf919417a764da2db46
10093a23a0a1df28a960dd2791f2fe933c4bbd0d
aadd1e224f122cc9ed23a25dc48b93234a3ea37f236a2744844f6a7a07aa89cc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/style.css?ver=6.0.2 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Sun, 16 May 2021 18:11:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 447
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/css/jquery.scrollbar.css?ver=1.5.8
66.29.146.165200 OK 2.9 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/css/jquery.scrollbar.css?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with very long lines (682)
Hash a42096aa0bc38d9e5a8a16db3996faae
31f8ceb607349057299e0e7c429c70106582ea50
0f4c56205d31e27c4b7cdf71deb0ac34006a0a3cefff3a8261ae40f0ca18101d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/css/jquery.scrollbar.css?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2922
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/framework/includes/megamenu/css/frontend.css?ver=6.0.2
66.29.146.165200 OK 820 B URL HTTP/2 xpodeal.com/wp-content/themes/ecome/framework/includes/megamenu/css/frontend.css?ver=6.0.2
IP 66.29.146.165:0
File type ASCII text, with CRLF line terminators
Hash b9a0e86f0f568c9ce0e5afafd2187756
c2d8102638a5f3e7f50fd8c4d5fcbdc095921c0e
6810bf8f1fad263198bc93aa2bf238a5d4cd69cfaa653929b3513fcc161c488e
GET /wp-content/themes/ecome/framework/includes/megamenu/css/frontend.css?ver=6.0.2 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 820
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
66.29.146.165200 OK 30 kB URL HTTP/2 xpodeal.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 66.29.146.165:0
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 11 Mar 2021 01:37:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
66.29.146.165200 OK 4.0 kB URL HTTP/2 xpodeal.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 66.29.146.165:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 19:36:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/ecome-toolkit/includes/admin/live-search/live-search.js?ver=1.0
66.29.146.165200 OK 1.0 kB URL HTTP/2 xpodeal.com/wp-content/plugins/ecome-toolkit/includes/admin/live-search/live-search.js?ver=1.0
IP 66.29.146.165:0
File type ASCII text, with very long lines (448), with CRLF line terminators
Hash 0fdf93ef794130a8ff86d9d37d3c79db
318c55f0470c22ea2851f91b8e0b7df2fe65274b
7795dae495cecc47118b46891c3a5875ad0a8ba4fde6dbae3c83dbf126da4b67
GET /wp-content/plugins/ecome-toolkit/includes/admin/live-search/live-search.js?ver=1.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Mon, 01 Aug 2022 16:27:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1049
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/fami-sales-popup/assets/js/frontend.js
66.29.146.165200 OK 1.2 kB URL HTTP/2 xpodeal.com/wp-content/plugins/fami-sales-popup/assets/js/frontend.js
IP 66.29.146.165:0
File type ASCII text, with CRLF line terminators
Hash a8540f20d16c7ed0a95fca629542f1c0
5ab2fe6aa08b3050b0e1d8b3561ccc160ef04e2e
113d6b2523198c8a921bc12fbb8262e27ebb5293d01c8e01a0f5c175c6e5a569
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fami-sales-popup/assets/js/frontend.js HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Mon, 01 Aug 2022 16:27:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1168
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/fami-buy-together/assets/vendors/jquery-lazy/jquery.lazy.min.js
66.29.146.165200 OK 2.2 kB URL HTTP/2 xpodeal.com/wp-content/plugins/fami-buy-together/assets/vendors/jquery-lazy/jquery.lazy.min.js
IP 66.29.146.165:0
File type ASCII text, with very long lines (4890)
Hash f4e74ab6f9031ba1a684515ededc6b69
63c0630bbafec0944be7711333836bc6d0cce63e
ab2a7343e8743ec8ee62deb447aac87a1e528e92f1a609515b468907ab40b8c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fami-buy-together/assets/vendors/jquery-lazy/jquery.lazy.min.js HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Mon, 01 Aug 2022 16:27:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2206
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/fami-buy-together/assets/js/frontend.js
66.29.146.165200 OK 2.5 kB URL HTTP/2 xpodeal.com/wp-content/plugins/fami-buy-together/assets/js/frontend.js
IP 66.29.146.165:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 3655a952f540b1aeed24d2019587b010
07de3e9836d30a9cb800e1a20ea4ea69260eb47c
83f8b53385240a52b8cbd01e2c085f245533cf7ca776221714fed5d9649bf493
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fami-buy-together/assets/js/frontend.js HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Mon, 01 Aug 2022 16:27:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2538
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/css/style.css?ver=1.5.8
66.29.146.165200 OK 37 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/css/style.css?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with very long lines (904)
Hash c24ef7b09a3630fb50e8429a736c1235
976f993d3c37df224835a91459e3903a32acf91e
33a0ac1654e31a9c11fdeb731037870ff5a9c314ceedff8be6f35bc1fdc2efbb
GET /wp-content/themes/ecome/assets/css/style.css?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Tue, 08 Jun 2021 04:20:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36851
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.3
66.29.146.165200 OK 3.2 kB URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.3
IP 66.29.146.165:0
File type ASCII text, with very long lines (9115)
Hash 66c388e07cfb57895688b3347ab7290b
f23bd7a31995b3b19924575f2afa297a29257856
3971f3ab5179d1f4f91d2c102f27c2bf1dac2c04e2f62ff3eae3ebfa8c28494e
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3245
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.3
66.29.146.165200 OK 974 B URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.3
IP 66.29.146.165:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash fd8b126d3265cc6afc5b672273f78531
5058e579885cccf36c44bdeb5b7318bd75952af9
72da6709db061566cb5f67322f674a77f68acb69ac6181d37f9ca4a1bb7287b7
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 974
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0
66.29.146.165200 OK 321 B URL HTTP/2 xpodeal.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0
IP 66.29.146.165:0
Hash 159e4731a0ffba6862ee2a1bbcc8a805
7fb2a5ca7a80d96187fda406d0a1b7db23867fa7
c6f102a76dc397d94cfbadcd292d64bb45acaa29b0391b41a9f1cc68c2274ae2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 321
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=6.9.3
66.29.146.165200 OK 857 B URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=6.9.3
IP 66.29.146.165:0
File type ASCII text, with very long lines (3287), with no line terminators
Hash f91b0cde1c3ae9c4865dbe50b94b7e96
26c7baee70eca5d442f5f30a7c0ccd0a6187c105
224aecccc666e90a5607c1ee584952f275cae6c6f8cad50f9d9834d7499c4bd9
GET /wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=6.9.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Wed, 21 Oct 2020 03:38:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 857
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0
66.29.146.165200 OK 12 kB URL HTTP/2 xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0
IP 66.29.146.165:0
File type ASCII text, with very long lines (56243)
Hash bc62c79810f6d9ff2023a3ce01fb17e8
c176d3254f491913c5567d35c85d0d02c6c9300a
abe49ff5c57ab5013f8eac78076ef149837282fce42df3f0f526cb440e3d155b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11779
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=6.9.3
66.29.146.165200 OK 1.7 kB URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=6.9.3
IP 66.29.146.165:0
File type ASCII text, with very long lines (7887), with no line terminators
Hash 494afef7fdbd631433fe8b40049c9733
e927f43e6ee2f70854247363612dab1107c514ad
54b56f475540254274fa193380ab680e39913768d9a227660bd571bba3456b7f
GET /wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=6.9.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Wed, 11 Dec 2019 07:19:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1728
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
66.29.146.165200 OK 3.5 kB URL HTTP/2 xpodeal.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP 66.29.146.165:0
File type Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Hash 8e3bd2af5dfce9709733e4adabb032ad
94aa210458d7103cecb401ef0a71100ea48c2ed7
a24331f6cb5f0d263a8aa7a78e9105ec5956f82162f30d718fd23fb325d7b669
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 18 Feb 2021 16:35:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3500
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
66.29.146.165200 OK 2.8 kB URL HTTP/2 xpodeal.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 66.29.146.165:0
File type ASCII text, with very long lines (9680), with no line terminators
Hash 8a91034fce0e4a2464d2170d38d31382
f00c20cfcbd136ee9aa20d07085c10f470548fe4
1a8f0bcd2b76caf977b08ed30bdd29eb77405ca4c1fe2315b41f8fe2542f1528
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 12:44:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2799
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.3
66.29.146.165200 OK 934 B URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.3
IP 66.29.146.165:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash cf25dd071a208312bdc07f34d2cee027
76119563119eaae392ecc8903c989d98d0b93002
8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Wed, 24 Nov 2021 03:30:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
66.29.146.165200 OK 5.4 kB URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP 66.29.146.165:0
File type HTML document, ASCII text, with very long lines (21310), with no line terminators
Hash 33081d75af44148dbfd85f7f8f4382ff
a2bac4c76a6a40839a6682df66eb40cd8c4d470d
b8dad2c0f7d74cdfcf2b9f96a17f72886b64edab3e392f7d72df15e1c1ac3119
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5350
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
66.29.146.165200 OK 3.7 kB URL HTTP/2 xpodeal.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 66.29.146.165:0
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash b3777786fbf0ac18aa59c687154a9db8
3f24b0cfae49dc3e70f149edaf203a661cd59c88
8e3993f3b5eb33611a7c40d80d1cb048b4329ebb9ad0d9e8eb583e48fda70bb5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 12:44:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3689
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.3
66.29.146.165200 OK 899 B URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.3
IP 66.29.146.165:0
File type ASCII text, with very long lines (1668)
Hash 22d65ba38528349e705d912ce26bf8ac
c89ba006009043d93b88ff155b4fec8797330550
6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 04:55:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.13.0
66.29.146.165200 OK 6.2 kB URL HTTP/2 xpodeal.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.13.0
IP 66.29.146.165:0
File type HTML document, ASCII text, with very long lines (24951), with no line terminators
Hash a8cadbc3c514fca4b31fd8d98bd99922
503b0d92ee27b87f4a7f9c5163d25bbadd90bd38
79bf34585f2d00399b1eb5020da9085931f5cb56fdfe643d4db3713959a2e2f0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.13.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Sun, 19 Jun 2022 18:19:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6249
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0
66.29.146.165200 OK 4.0 kB URL HTTP/2 xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0
IP 66.29.146.165:0
File type ASCII text, with very long lines (34217)
Hash e00926a3c189b2f2396d96d90ac77785
f61219b1a1e4924051c4e5c7acb70cd925173bdb
30a6fd0e5a3610d5074e2a634513348ff8a5a92510d45c6c2621d6bda6b2fd27
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3952
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.18.0
66.29.146.165200 OK 1.2 kB URL HTTP/2 xpodeal.com/wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.18.0
IP 66.29.146.165:0
File type ASCII text, with very long lines (4602), with no line terminators
Hash 6a5cf02c457796835cd28c6197b3b064
c58cdd6ea85cc624e313c7cfec9ed2d27e609703
d596e6c774b8f750e18905d4279d8dc1adbe532b7b6faf90241e01eede68d44a
GET /wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.18.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 13:58:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1201
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21
66.29.146.165200 OK 4.5 kB URL HTTP/2 xpodeal.com/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21
IP 66.29.146.165:0
File type ASCII text, with very long lines (11827)
Hash ad837a8d18fb12f3db5d03cef2956caa
520179c7b4cd32f94386f4576e439e3689e18747
b6618604f7dadbad0b877cf727356465919707ceec7965c340adeca61d824b36
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 13:58:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4457
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/yith-woocommerce-quick-view/assets/js/frontend.min.js?ver=1.19.0
66.29.146.165200 OK 875 B URL HTTP/2 xpodeal.com/wp-content/plugins/yith-woocommerce-quick-view/assets/js/frontend.min.js?ver=1.19.0
IP 66.29.146.165:0
File type ASCII text, with very long lines (2014), with CRLF line terminators
Hash 5720e01542059f32467265876b344f35
7c7fc90b634d60337fb4beb8fad6155bb0c0b276
61b47b87d57ef0ae60ad79e8c3f3cd7fa16768aeff18768bbdda1066bdaa7f8a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/yith-woocommerce-quick-view/assets/js/frontend.min.js?ver=1.19.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 13:49:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 875
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/js/libs/slick.min.js?ver=1.5.8
66.29.146.165200 OK 10 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/slick.min.js?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with very long lines (46782), with no line terminators
Hash 42a176600acdaf90c34591ac79b597f2
26c44c764104877ab7c30e215cf62f39e5bc1ccf
d6f2eb1e0dabc9199d469b3cec024a30a8609272e6841016fe9b23186f9eb18a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/js/libs/slick.min.js?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10319
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/js/libs/bootstrap.min.js?ver=1.5.8
66.29.146.165200 OK 5.3 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/bootstrap.min.js?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with very long lines (19231), with no line terminators
Hash a947f50a94af5a31ca82dc99bc91385f
fcbbd45ed579b756148b399e5f6a2d7f1002314d
aec0420871f0a41b23bb2b9848fa6c7b01b8281898209597786b06b3ff97698b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/js/libs/bootstrap.min.js?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5300
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/js/libs/jquery.scrollbar.min.js?ver=1.5.8
66.29.146.165200 OK 3.9 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/jquery.scrollbar.min.js?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with very long lines (11879)
Hash 7630ab41f54e4ad0e1bf26dc8a1c04d9
ab7ede001162b62c69ec7c77d867575307968893
e32b7e1e903512a39a7314abe133e7f978cf8ec0ed05d3f68753714fb477a820
GET /wp-content/themes/ecome/assets/js/libs/jquery.scrollbar.min.js?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3892
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/js/libs/jquery.growl.min.js?ver=1.5.8
66.29.146.165200 OK 1.6 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/jquery.growl.min.js?ver=1.5.8
IP 66.29.146.165:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (5797), with no line terminators
Hash 43a49723f88af3048eaa422ca65c5564
54c84dac91a0e25c7ef83a18370eb22dcaa877b1
bb4bb00e62002a74c2df9e6c3a0bac265894c9a020891e23fe6017e1a2a213db
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/js/libs/jquery.growl.min.js?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1560
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/js/libs/chosen.min.js?ver=1.5.8
66.29.146.165200 OK 6.3 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/chosen.min.js?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with very long lines (28882), with no line terminators
Hash 0e65af36588d1db51d60ae82283e4646
256f31af54d1de3357e9f558b30edbc231fc91de
05e0dcbc1718752d450480d3c8d36bf7c600609515871de9ce68c0da31c15f41
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/js/libs/chosen.min.js?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6300
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/js/libs/countdown.min.js?ver=1.5.8
66.29.146.165200 OK 1.6 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/countdown.min.js?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with very long lines (4136), with no line terminators
Hash c3311ba759bff377a93be2da014be69f
a0a469c5be2f8fa35e94c2340499ed10f419b5f4
474684481430cc300f2641dec9acdb58f6d1557bb3781255ce3f0aa75d0e143d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/js/libs/countdown.min.js?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1590
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/js/libs/threesixty.min.js?ver=1.5.8
66.29.146.165200 OK 2.4 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/threesixty.min.js?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with very long lines (7483), with no line terminators
Hash 3d234ebc71b4ea68e11ed22f342fd1e4
125c27e8ae92594f53a48d193fdcc2d9312ea014
46736161821f04f57beb18ff6780bb8a9d52b981001ab549bb667f2d9e255dd6
GET /wp-content/themes/ecome/assets/js/libs/threesixty.min.js?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2422
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/js/libs/magnific-popup.min.js?ver=1.5.8
66.29.146.165200 OK 7.0 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/magnific-popup.min.js?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with very long lines (20087), with no line terminators
Hash 5b52c86b5ffcd4a52589460441cccee6
ffd38d960569603b3bfa83aac25efb62ef6fb2ea
e91168e8781c8fe362374bd4d4d267c0788964db1478c4a8fbea2129528d306a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/js/libs/magnific-popup.min.js?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6965
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/js/libs/lazyload.min.js?ver=1.5.8
66.29.146.165200 OK 3.4 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/js/libs/lazyload.min.js?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with very long lines (4890), with CRLF line terminators
Hash 43394eb4b396cacdc154a374f039ee4a
79845381a5a3e9ed6c4a4af08ea6c0f5111c6737
525e7d16a1478db4a960a3038c58df70d2cdb508ef5a4d9e4225d6d5724bd2e6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/js/libs/lazyload.min.js?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3356
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/js/functions.js?ver=1.5.8
66.29.146.165200 OK 8.0 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/js/functions.js?ver=1.5.8
IP 66.29.146.165:0
File type ASCII text, with CRLF line terminators
Hash fc45eb3af3274451954800d1d1ca6e60
2803e1dadb514eae02bf049eb2e629d998beb6cb
a9fd0e3a4b9ac5671243e3502d70156ddf326db2f3b699a20d6dc4b5c1043416
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/js/functions.js?ver=1.5.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Fri, 21 May 2021 19:06:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8024
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/framework/includes/megamenu/js/frontend.js?ver=1.0.0
66.29.146.165200 OK 1.9 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/framework/includes/megamenu/js/frontend.js?ver=1.0.0
IP 66.29.146.165:0
File type ASCII text, with very long lines (1077)
Hash 51169af3f427311db33c1494ba8652c1
aad09e5ceb6b98f6e04cca6d1f4da7d1ff3d9fbf
ca65a57f7288f276257ac139d778dee2d0d1e9588eaf7972c5d917e53fc6bfb1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/framework/includes/megamenu/js/frontend.js?ver=1.0.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1874
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/ecome-toolkit/includes/admin/mailchimp/mailchimp.min.js?ver=1.0
66.29.146.165200 OK 300 B URL HTTP/2 xpodeal.com/wp-content/plugins/ecome-toolkit/includes/admin/mailchimp/mailchimp.min.js?ver=1.0
IP 66.29.146.165:0
File type ASCII text, with very long lines (726), with no line terminators
Hash f4b15f0fedc3e96575f0bd1cae5ed54e
cd77595f9187513e9a2f53f663ca26dc700dac42
d1a5c29582ad7cf999be8928e99afb42285f6310706531c84b7c4571c9b9faa9
GET /wp-content/plugins/ecome-toolkit/includes/admin/mailchimp/mailchimp.min.js?ver=1.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Mon, 01 Aug 2022 16:27:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 300
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-includes/js/wp-util.min.js?ver=6.0.2
66.29.146.165200 OK 646 B URL HTTP/2 xpodeal.com/wp-includes/js/wp-util.min.js?ver=6.0.2
IP 66.29.146.165:0
File type ASCII text, with very long lines (1305)
Hash 6545e92af6fa2c33aed6fb1d0492af5e
b95b4d49921004f3a23ea8d057beadd4d45a6d74
ef9475d7d2b07f279a49a8458afc74f865810087e299437ef355024b93929eb2
GET /wp-includes/js/wp-util.min.js?ver=6.0.2 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Sat, 26 Jun 2021 00:20:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 646
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0
66.29.146.165200 OK 5.6 kB URL HTTP/2 xpodeal.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0
IP 66.29.146.165:0
File type ASCII text, with very long lines (20418)
Hash c15318397253a9f8bc4e80fc9be51955
543b224eb0fce0d85b1290a1e20c3b2415be3a22
2d67bfb3628d93c140d563b4bc572f54da1e330fb8d54ff9035214607a5bde6d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5560
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21-wc.6.9.3
66.29.146.165200 OK 1.0 kB URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21-wc.6.9.3
IP 66.29.146.165:0
File type ASCII text, with very long lines (2600)
Hash 58ae168dadba117e645a850bb22c9e48
b397d052c90ecf4b48209a86ecf72bbe90a0d87f
8adec06492eb0bb02580aef8f86d4a420997a8d56393d526785498e266d1af06
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21-wc.6.9.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Tue, 18 May 2021 21:00:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1041
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1-wc.6.9.3
66.29.146.165200 OK 12 kB URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1-wc.6.9.3
IP 66.29.146.165:0
File type ASCII text, with very long lines (30938)
Hash 26ee07c645a18d43b915f888356868e8
67afa92b2d66c314451378e692b6b3bf278f9c75
369ed192b03b104959e6c16572b663c9017658a6c8687cc88ffa7e441a7d02c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1-wc.6.9.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11613
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.9.3
66.29.146.165200 OK 3.4 kB URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.9.3
IP 66.29.146.165:0
File type ASCII text, with very long lines (13887), with no line terminators
Hash 25fb50f4945fa93ea85568456a86fa97
0ea82027ad4720f101de9715adf4ad963a326207
c84cd16cc99c06eec7939713048efa3f35d176236b4c9740e3eb060c12791fb3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.9.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3436
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-includes/js/underscore.min.js?ver=1.13.3
66.29.146.165200 OK 7.2 kB URL HTTP/2 xpodeal.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP 66.29.146.165:0
File type ASCII text, with very long lines (18876)
Hash 8f44fac7de7704cc9c42ca9cf95071b8
1fa95065580a736700586a6c6ba1e0c3304d301c
89d8fb5c9897186f5d8295777f8eecd5c9a8ec5a40b0e01b9afe3e6ff851a4a1
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Thu, 28 Apr 2022 00:09:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7176
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
66.29.146.165200 OK 4.6 kB URL HTTP/2 xpodeal.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 66.29.146.165:0
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 15:26:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=6.9.3
66.29.146.165200 OK 1.7 kB URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=6.9.3
IP 66.29.146.165:0
File type Unicode text, UTF-8 text, with very long lines (6322), with no line terminators
Hash 9c56675b1e3db79804c16b978c50f296
fb27a61dc9588565546c88e72a545323060fc21a
5dc76185932b04ad3ac26b69e8446ca5e2b123ae412aa82f2f13dbdf0c5cbf9d
GET /wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=6.9.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1713
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1-wc.6.9.3
66.29.146.165200 OK 3.4 kB URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1-wc.6.9.3
IP 66.29.146.165:0
File type HTML document, ASCII text, with very long lines (9536)
Hash eed261640a13b609653053d2a638f872
93cda65548c43a123c56258d2e8886f9b4a2c2b3
6a5412cadd9b2553341185b32a0614f4c45e400441a7852841a8d886fb0c2f6c
GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1-wc.6.9.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3432
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8
66.29.146.165200 OK 46 kB URL HTTP/2 xpodeal.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8
IP 66.29.146.165:0
File type ASCII text, with very long lines (42889)
Hash 7b6e082bde2cd00810b3413baa28da45
4b18394c3ab61e2dae4eae87b00cdc74f2339447
30fe548881461bdef9c96b8faf55eaeeb8759dcb83049beef418e939b9f965b0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Wed, 27 Jul 2022 16:46:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 45472
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/uploads/2018/03/logo-1.png
66.29.146.165200 OK 33 kB URL HTTP/2 xpodeal.com/wp-content/uploads/2018/03/logo-1.png
IP 66.29.146.165:0
File type PNG image data, 429 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ea6ec0f426d44d0abc23c14dcfab852
c0e5b253f98c8d354afcce06e7a383601a72dbfd
e5b55344d430e21f411d3344e5781369e278fa00a4d66da5e005ed835c94eab2
GET /wp-content/uploads/2018/03/logo-1.png HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: image/png
last-modified: Wed, 03 Aug 2022 22:12:17 GMT
accept-ranges: bytes
content-length: 33352
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0
66.29.146.165200 OK 42 kB URL HTTP/2 xpodeal.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0
IP 66.29.146.165:0
File type ASCII text, with very long lines (65358)
Hash a42125daa1bf4835bd80f616b2f538ec
f6fbf48eec4c1e3d203d713ce29aa7e8a3742305
cf455434a5ed07a1fafa1052cd1fb1fa750957d2d25cec8284743d41179c8040
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: text/css
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 42005
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11
66.29.146.165200 OK 92 kB URL HTTP/2 xpodeal.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11
IP 66.29.146.165:0
File type ASCII text, with very long lines (64268)
Hash b53538a16c908f348a97bd9418b8970b
29aec0d4185ab6cd2b9fd8ced8572a4ad0cb0d2e
94cf091b04cabc5a26f25c8a3bfbd23fcd08b6a0f6c13b0339ebecc4a663db2e
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Wed, 27 Jul 2022 16:46:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 91616
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ecome.famithemes.com/wp-content/uploads/2018/03/tv-video-1.jpg?id=1468
54.230.111.86301 Moved Permanently 167 B URL HTTP/1.1 ecome.famithemes.com/wp-content/uploads/2018/03/tv-video-1.jpg?id=1468
IP 54.230.111.86:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /wp-content/uploads/2018/03/tv-video-1.jpg?id=1468 HTTP/1.1
Host: ecome.famithemes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sun, 25 Sep 2022 16:02:31 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://ecome.famithemes.com/wp-content/uploads/2018/03/tv-video-1.jpg?id=1468
X-Cache: Redirect from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PzwlCJHX3P5-qdub9-A34rn5e8d7tHvnpkJPoiD3XiDpURaTPJ-hpA==
ecome.famithemes.com/wp-content/uploads/2018/03/Headphones.jpg?id=1445
54.230.111.86301 Moved Permanently 167 B URL HTTP/1.1 ecome.famithemes.com/wp-content/uploads/2018/03/Headphones.jpg?id=1445
IP 54.230.111.86:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /wp-content/uploads/2018/03/Headphones.jpg?id=1445 HTTP/1.1
Host: ecome.famithemes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sun, 25 Sep 2022 16:02:31 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://ecome.famithemes.com/wp-content/uploads/2018/03/Headphones.jpg?id=1445
X-Cache: Redirect from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1u_7brXgWwJy2bugF5BaKYsq5O5klob4IQ9r46Yy7o00tk-0It8FGA==
ecome.famithemes.com/wp-content/uploads/2018/03/Cell-Phones-Accessories.jpg?id=1428
54.230.111.86301 Moved Permanently 167 B URL HTTP/1.1 ecome.famithemes.com/wp-content/uploads/2018/03/Cell-Phones-Accessories.jpg?id=1428
IP 54.230.111.86:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /wp-content/uploads/2018/03/Cell-Phones-Accessories.jpg?id=1428 HTTP/1.1
Host: ecome.famithemes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sun, 25 Sep 2022 16:02:31 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://ecome.famithemes.com/wp-content/uploads/2018/03/Cell-Phones-Accessories.jpg?id=1428
X-Cache: Redirect from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: niId11rEtN5_vK8pKFj4VXL4rkauUryAyK8yIaxmOQI3oS--69rjLQ==
ecome.famithemes.com/wp-content/uploads/2018/03/Home-Audio-Theater-1.jpg?id=2817
54.230.111.86301 Moved Permanently 167 B URL HTTP/1.1 ecome.famithemes.com/wp-content/uploads/2018/03/Home-Audio-Theater-1.jpg?id=2817
IP 54.230.111.86:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /wp-content/uploads/2018/03/Home-Audio-Theater-1.jpg?id=2817 HTTP/1.1
Host: ecome.famithemes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sun, 25 Sep 2022 16:02:31 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://ecome.famithemes.com/wp-content/uploads/2018/03/Home-Audio-Theater-1.jpg?id=2817
X-Cache: Redirect from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cYrOuIxTkidf3SXdur3qYLYkHKBjIvUqsVtGO8D0IKHI9JY1HhHqeQ==
ecome.famithemes.com/wp-content/uploads/2018/03/footer-bg.jpg?id=1273
54.230.111.86301 Moved Permanently 167 B URL HTTP/1.1 ecome.famithemes.com/wp-content/uploads/2018/03/footer-bg.jpg?id=1273
IP 54.230.111.86:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /wp-content/uploads/2018/03/footer-bg.jpg?id=1273 HTTP/1.1
Host: ecome.famithemes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sun, 25 Sep 2022 16:02:31 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://ecome.famithemes.com/wp-content/uploads/2018/03/footer-bg.jpg?id=1273
X-Cache: Redirect from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uJrH6PnmWDuLFOw9fsYaK2pGm_kQb7k5lDXjlyNaehig-t4aIICgCg==
xpodeal.com/wp-content/themes/ecome/assets/images/select-arrow.png
66.29.146.165200 OK 153 B URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/images/select-arrow.png
IP 66.29.146.165:0
File type PNG image data, 40 x 40, 4-bit colormap, non-interlaced\012- data
Hash e8d09d5a457ced998ca1a9b84170c021
0e126d8206a554e700b560d4027fdc7e33830c20
eb5780b5781a430db9ff9061e9457161b5b507e55cfddf13cb346516267be8d6
GET /wp-content/themes/ecome/assets/images/select-arrow.png HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/themes/ecome/assets/css/style.css?ver=1.5.8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:31 GMT
content-type: image/png
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-length: 153
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/fonts/flaticon/Flaticon.woff
66.29.146.165200 OK 7.8 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/fonts/flaticon/Flaticon.woff
IP 66.29.146.165:0
File type Web Open Font Format, TrueType, length 7832, version 0.0\012- data
Hash 82218c29486a1d0f5c6475dceb46a6e0
f0ebbfd17c449bd6472bf6c0f3aa4c3694c85532
90159dcfb2e0dd4d1eea0321496bb4feea642d977b0b04bef0e43bb69a34db68
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/fonts/flaticon/Flaticon.woff HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/themes/ecome/assets/fonts/flaticon/flaticon.css?ver=1.5.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:31 GMT
content-type: font/woff
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-length: 7832
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash d0e28ee63e000357f5205b937f7742db
e25b56c3cd78f802233acef456ba0c94bc5dde15
64bb2222a4340d10e89aa6ff9a13aae20ecd95bf0ad38296e0833a65315f49bd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 16:02:31 GMT
Server: ECS (dcb/7F60)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jnUmt3cEUijkwqlcQHULHoAwEeBspJ6crrv6us8HM53nvTeBkFPQqQ==
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash d0e28ee63e000357f5205b937f7742db
e25b56c3cd78f802233acef456ba0c94bc5dde15
64bb2222a4340d10e89aa6ff9a13aae20ecd95bf0ad38296e0833a65315f49bd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 16:02:31 GMT
Server: ECS (dcb/7FA3)
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 145R8ws8Pk0VwQ1kE7LzwCogCOKl2sY1ysoVIV_sQBiWYPZ_iOF2AA==
xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2
66.29.146.165200 OK 76 kB URL HTTP/2 xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2
IP 66.29.146.165:0
File type Web Open Font Format (Version 2), TrueType, length 75760, version 330.32636\012- data
Hash 832f6e62aaf3909d6b94c8a9c1e4dd51
4a06418cb56a66af5a1c0f59791469dea1dc87fa
8556fd48cf33ca3028e3fff4042979f224987ee317cc9032dd5bba996b363009
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:31 GMT
content-type: font/woff2
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-length: 75760
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/fonts/HelveticaNeueLTStd-Roman.otf?v=1.0.4
66.29.146.165200 OK 29 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/fonts/HelveticaNeueLTStd-Roman.otf?v=1.0.4
IP 66.29.146.165:0
File type OpenType font data\012- data
Hash c50cafe27126364ceb9f08dfd666645f
611ec84275a93082e935456ab679e3f5c59f3124
ee554630913ac7b7359ea477479234f7366c546bbe9a1494ae686f24727701f7
GET /wp-content/themes/ecome/assets/fonts/HelveticaNeueLTStd-Roman.otf?v=1.0.4 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/themes/ecome/assets/css/style.css?ver=1.5.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/otf
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-length: 29044
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/fonts/HelveticaNeueLTStd-Md.otf?v=1.0.4
66.29.146.165200 OK 29 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/fonts/HelveticaNeueLTStd-Md.otf?v=1.0.4
IP 66.29.146.165:0
File type OpenType font data\012- data
Hash db8b90d6037c4eef42c5a2ea7fec4071
a45cac9e1837eb45dd7a02efdcf83e4b69f96d9d
72ccad6dfae41007c5a11bc419d276971f54ffeac0af9ddc4402f486fc7bea26
GET /wp-content/themes/ecome/assets/fonts/HelveticaNeueLTStd-Md.otf?v=1.0.4 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/themes/ecome/assets/css/style.css?ver=1.5.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/otf
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-length: 29148
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/fonts/HelveticaNeueLTStd-Lt.otf?v=1.0.4
66.29.146.165200 OK 29 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/fonts/HelveticaNeueLTStd-Lt.otf?v=1.0.4
IP 66.29.146.165:0
File type OpenType font data\012- data
Hash 4f27a4e5a731a020f10179da42fd4df2
eff7122718f03dbc8f13085ce4d3589e1e4ea503
4f6a454460e1cbc10c50d4cc9c556bb7e5cf36bebacd6eff87a22fa3ef35eafe
GET /wp-content/themes/ecome/assets/fonts/HelveticaNeueLTStd-Lt.otf?v=1.0.4 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/themes/ecome/assets/css/style.css?ver=1.5.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/otf
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-length: 28980
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash d0e28ee63e000357f5205b937f7742db
e25b56c3cd78f802233acef456ba0c94bc5dde15
64bb2222a4340d10e89aa6ff9a13aae20ecd95bf0ad38296e0833a65315f49bd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 16:02:31 GMT
Server: ECS (dcb/7F3A)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sjH_ZsbUDRiNbWlJAtE4F2YB7VmiEbWqjrFn5n6q_jPkh7-icmNI6Q==
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash d0e28ee63e000357f5205b937f7742db
e25b56c3cd78f802233acef456ba0c94bc5dde15
64bb2222a4340d10e89aa6ff9a13aae20ecd95bf0ad38296e0833a65315f49bd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 16:02:31 GMT
Server: ECS (dcb/7F5F)
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xooGZt8Ic1Ofa__Bxcxy4xKSU9i-f8HsMWy2bu1hqzgvBljtUEzJ9A==
ecome.famithemes.com/wp-content/uploads/2018/03/footer-bg.jpg?id=1273
54.230.111.86200 OK 16 kB URL HTTP/2 ecome.famithemes.com/wp-content/uploads/2018/03/footer-bg.jpg?id=1273
IP 54.230.111.86:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1899x562, components 3\012- data
Hash 84b168daad5bd05562223d1fe29eb6e5
0d811834ca06d3c97ff852bc6395940b73941915
fb599fcd11041f9424b2f67b5516a008236a90454e342512396e066f31e1f226
GET /wp-content/uploads/2018/03/footer-bg.jpg?id=1273 HTTP/1.1
Host: ecome.famithemes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15750
last-modified: Wed, 20 Jul 2022 19:49:55 GMT
x-amz-version-id: JTdaLEokqgzu.zEnloPobPbmpsnJ1jlZ
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 16:02:31 GMT
etag: "84b168daad5bd05562223d1fe29eb6e5"
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 46TPWOlmJ6NYWHHelzmiKAKkhiCoL7ZfDjM1rNAfiTr8C7Ywepo6dg==
age: 51521
X-Firefox-Spdy: h2
xpodeal.com/wp-content/themes/ecome/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
66.29.146.165200 OK 77 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 66.29.146.165:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/ecome/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/themes/ecome/assets/css/font-awesome.min.css?ver=1.5.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:31 GMT
content-type: font/woff2
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-length: 77160
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.3
66.29.146.165200 OK 14 kB URL HTTP/2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.3
IP 66.29.146.165:0
Hash e7d4bfa72a1f7d352fa6605501a3e2f2
afd94b571eff9da7d85490bdb4c9874419cd260d
d144631af733437b73fba8e784ab694a97fab80476e82325f7a58f6408b28850
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.3 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:29 GMT
content-type: application/javascript
last-modified: Tue, 18 May 2021 21:00:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Sun, 25 Sep 2022 16:02:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ecome.famithemes.com/wp-content/uploads/2018/03/tv-video-1.jpg?id=1468
54.230.111.86200 OK 32 kB URL HTTP/2 ecome.famithemes.com/wp-content/uploads/2018/03/tv-video-1.jpg?id=1468
IP 54.230.111.86:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 721x469, components 3\012- data
Hash 2ee4773ec8d286e773ae323ecad86a52
1b3d6a7ede87c97b13199dd92478d83c833982ff
c6b80cbf0a6e4bebfc434cad3b85f0cd098c8447d302240b6c56cd6403377fa3
GET /wp-content/uploads/2018/03/tv-video-1.jpg?id=1468 HTTP/1.1
Host: ecome.famithemes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 32489
last-modified: Wed, 20 Jul 2022 19:49:56 GMT
x-amz-version-id: SVepS7YXb9YnGBlN3gsJEGMQPrfpoElX
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 16:02:31 GMT
etag: "2ee4773ec8d286e773ae323ecad86a52"
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6kpPiu5MTPBHixsoBkcUQbHnoLg4Pm0DIvfy-HbrRiOZBcW65ckTTw==
age: 26965
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash d0e28ee63e000357f5205b937f7742db
e25b56c3cd78f802233acef456ba0c94bc5dde15
64bb2222a4340d10e89aa6ff9a13aae20ecd95bf0ad38296e0833a65315f49bd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 16:02:31 GMT
Server: ECS (dcb/7EA3)
X-Cache: Miss from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BphtuRr3XDnpXkcNGud2-MyBh1SY911DbhKkhngfBK635TQTxtPCLw==
xpodeal.com/wp-content/themes/ecome/assets/fonts/Pe-icon-7-stroke.woff?d7yf1v
66.29.146.165200 OK 59 kB URL HTTP/2 xpodeal.com/wp-content/themes/ecome/assets/fonts/Pe-icon-7-stroke.woff?d7yf1v
IP 66.29.146.165:0
File type Web Open Font Format, TrueType, length 58556, version 1.0\012- data
Hash b38ef310874bdd008ac14ef3db939032
7e544bb11b7655998db6f324c612f7ffbf0ab66e
6fb4217048f333e23e0fd0ba2ab05e05fd7500f86a5a80a7cf04a2f94b257bec
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ecome/assets/fonts/Pe-icon-7-stroke.woff?d7yf1v HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/themes/ecome/assets/css/pe-icon-7-stroke.css?ver=1.5.8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:31 GMT
content-type: font/woff
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-length: 58556
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2
66.29.146.165200 OK 75 kB URL HTTP/2 xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2
IP 66.29.146.165:0
File type Web Open Font Format (Version 2), TrueType, length 75368, version 330.32636\012- data
Hash 859c4002d9954718cac1ddea5555698f
2392ce297c92bcf2c7d5a4c461a582dadc8039c8
5054ab369966fea3657ac6af00c3bc47bdc9e7b5114e61d1764be06213ca9781
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:31 GMT
content-type: font/woff2
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-length: 75368
date: Sun, 25 Sep 2022 16:02:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ecome.famithemes.com/wp-content/uploads/2018/03/Cell-Phones-Accessories.jpg?id=1428
54.230.111.86200 OK 1.1 kB URL HTTP/2 ecome.famithemes.com/wp-content/uploads/2018/03/Cell-Phones-Accessories.jpg?id=1428
IP 54.230.111.86:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1c74ee34c3bae47628389db79fb62632
87f2ffbbcdd755c6c7a6c2e044322d6714a95adc
f169aede21649b699f50cb77ff263d131183397cfa4f077a2296dc99add5af0a
GET /wp-content/uploads/2018/03/Cell-Phones-Accessories.jpg?id=1428 HTTP/1.1
Host: ecome.famithemes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1099
last-modified: Wed, 20 Jul 2022 19:49:19 GMT
x-amz-version-id: Fn0r4nql6KAFFtMAVFNbebF2slw8KVwT
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 16:02:32 GMT
etag: "1c74ee34c3bae47628389db79fb62632"
x-cache: Error from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: thQbcSQQ8mrbA2v_JXz7s2i9cCIkcAy2gfDecfxUL5GZVghN75GlUg==
age: 39644
X-Firefox-Spdy: h2
ecome.famithemes.com/wp-content/uploads/2018/03/Headphones.jpg?id=1445
54.230.111.86200 OK 1.1 kB URL HTTP/2 ecome.famithemes.com/wp-content/uploads/2018/03/Headphones.jpg?id=1445
IP 54.230.111.86:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1c74ee34c3bae47628389db79fb62632
87f2ffbbcdd755c6c7a6c2e044322d6714a95adc
f169aede21649b699f50cb77ff263d131183397cfa4f077a2296dc99add5af0a
GET /wp-content/uploads/2018/03/Headphones.jpg?id=1445 HTTP/1.1
Host: ecome.famithemes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1099
last-modified: Wed, 20 Jul 2022 19:49:19 GMT
x-amz-version-id: Fn0r4nql6KAFFtMAVFNbebF2slw8KVwT
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 16:02:32 GMT
etag: "1c74ee34c3bae47628389db79fb62632"
x-cache: Error from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rvqejHihF-bzgFFzq3q7VfGhJmKg6pKCBFJa96caYrqEYbnUBO4ZlQ==
age: 39644
X-Firefox-Spdy: h2
xpodeal.com/?wc-ajax=get_refreshed_fragments
66.29.146.165200 OK 622 B URL HTTP/2 xpodeal.com/?wc-ajax=get_refreshed_fragments
IP 66.29.146.165:0
File type JSON data\012- , ASCII text, with very long lines (622), with no line terminators
Hash 79b83b532499d28a6fc4b6c0ddb09e2a
9a27ddfaeeccd494fca0af7628a2e8b0bd48e921
3c43404f3b393d3645a6d0d7eeb0f2e33fc040c6a9db3642b569c1a16b5882a9
Analyzer Verdict Alert fortinet Phishing
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://xpodeal.com
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-pingback: https://xpodeal.com/xmlrpc.php
access-control-allow-origin: https://xpodeal.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
x-litespeed-tag: 520_HTTP.200,520_HTTP.200
content-type: application/json; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-litespeed-cache-control: no-cache
content-length: 622
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/favicon.ico
66.29.146.165404 Not Found 1.2 kB IP 66.29.146.165:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /favicon.ico HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ecome.famithemes.com/wp-content/uploads/2018/03/Home-Audio-Theater-1.jpg?id=2817
54.230.111.86200 OK 1.1 kB URL HTTP/2 ecome.famithemes.com/wp-content/uploads/2018/03/Home-Audio-Theater-1.jpg?id=2817
IP 54.230.111.86:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1c74ee34c3bae47628389db79fb62632
87f2ffbbcdd755c6c7a6c2e044322d6714a95adc
f169aede21649b699f50cb77ff263d131183397cfa4f077a2296dc99add5af0a
GET /wp-content/uploads/2018/03/Home-Audio-Theater-1.jpg?id=2817 HTTP/1.1
Host: ecome.famithemes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1099
last-modified: Wed, 20 Jul 2022 19:49:19 GMT
x-amz-version-id: Fn0r4nql6KAFFtMAVFNbebF2slw8KVwT
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 16:02:32 GMT
etag: "1c74ee34c3bae47628389db79fb62632"
x-cache: Error from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ODfmAa8y_KD5AaF0kgd7bNXUGq3tdgBOmLTKPGTUOhv3EcO8NtIYCg==
age: 39644
X-Firefox-Spdy: h2
xpodeal.com/wp-content/uploads/2018/03/Banner-top-1-1.jpg
66.29.146.165200 OK 1.1 kB URL HTTP/2 xpodeal.com/wp-content/uploads/2018/03/Banner-top-1-1.jpg
IP 66.29.146.165:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1c74ee34c3bae47628389db79fb62632
87f2ffbbcdd755c6c7a6c2e044322d6714a95adc
f169aede21649b699f50cb77ff263d131183397cfa4f077a2296dc99add5af0a
GET /wp-content/uploads/2018/03/Banner-top-1-1.jpg HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
content-type: image/jpeg
last-modified: Wed, 27 Jul 2022 17:09:02 GMT
accept-ranges: bytes
content-length: 1099
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/uploads/2018/03/logo.png
66.29.146.165200 OK 3.5 kB URL HTTP/2 xpodeal.com/wp-content/uploads/2018/03/logo.png
IP 66.29.146.165:0
File type PNG image data, 192 x 36, 8-bit colormap, non-interlaced\012- data
Hash c6ee3cc793939cf3fe495034350f4846
b2d5171dfece1809b8b0c4bbfcea2b3909229a26
01fe16390b7907b7ece17e6152eb782482f00cc0c84166f8b59f339f40514cdb
GET /wp-content/uploads/2018/03/logo.png HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
content-type: image/png
last-modified: Wed, 27 Jul 2022 17:07:48 GMT
accept-ranges: bytes
content-length: 3524
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/uploads/2018/03/menu-cat1.jpg
66.29.146.165200 OK 4.2 kB URL HTTP/2 xpodeal.com/wp-content/uploads/2018/03/menu-cat1.jpg
IP 66.29.146.165:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 180x135, components 3\012- data
Hash 4f77cf2418bc80095d282b0911e6e18b
4982952a471e651995d0b877847b33cab34289c3
2af9ed181994fd03b4fcc3de6234e5214946fb75b29b1524a61c910c7785cfe2
GET /wp-content/uploads/2018/03/menu-cat1.jpg HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
content-type: image/jpeg
last-modified: Wed, 27 Jul 2022 17:08:21 GMT
accept-ranges: bytes
content-length: 4161
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/uploads/2018/03/menu-cat4-1.jpg
66.29.146.165200 OK 5.0 kB URL HTTP/2 xpodeal.com/wp-content/uploads/2018/03/menu-cat4-1.jpg
IP 66.29.146.165:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 180x135, components 3\012- data
Hash 9e1a41597500f5ba461936b18e1488b1
36b829f0608fec11e6b745ca992e46e38dcedd97
eee19a365a1c9f83d75dfdd9881d214696acd893317e4bb61a3ddf7cce6de5c6
GET /wp-content/uploads/2018/03/menu-cat4-1.jpg HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
content-type: image/jpeg
last-modified: Wed, 27 Jul 2022 17:08:21 GMT
accept-ranges: bytes
content-length: 4973
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/uploads/2018/03/menu-cat2.jpg
66.29.146.165200 OK 3.0 kB URL HTTP/2 xpodeal.com/wp-content/uploads/2018/03/menu-cat2.jpg
IP 66.29.146.165:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 180x135, components 3\012- data
Hash 72b0451dc92f4b402dccea52e058c351
d29f80d6b2df24aced0224eea18c57865d1a7246
1a6e814cba0bd2a953378aef1971a2fb5042fdd6ce0cf15b866b1c3c5f115cb5
GET /wp-content/uploads/2018/03/menu-cat2.jpg HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
content-type: image/jpeg
last-modified: Wed, 27 Jul 2022 17:08:21 GMT
accept-ranges: bytes
content-length: 3020
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/uploads/2018/03/menu-cat5-1.jpg
66.29.146.165200 OK 3.3 kB URL HTTP/2 xpodeal.com/wp-content/uploads/2018/03/menu-cat5-1.jpg
IP 66.29.146.165:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 180x135, components 3\012- data
Hash 04b36d147dd9b3428509f91564dbc4ac
0d4cb7900711cfc357ab4b6185d4f680ed2742e6
0a9f3e18875771d2a94d27289fb9f62dd7c00d187041360b00799bbe009af815
GET /wp-content/uploads/2018/03/menu-cat5-1.jpg HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
content-type: image/jpeg
last-modified: Wed, 27 Jul 2022 17:08:21 GMT
accept-ranges: bytes
content-length: 3269
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/uploads/2018/03/menu-cat3-1.jpg
66.29.146.165200 OK 4.1 kB URL HTTP/2 xpodeal.com/wp-content/uploads/2018/03/menu-cat3-1.jpg
IP 66.29.146.165:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 180x135, components 3\012- data
Hash c03d6b86a5a2658e4ca02d0cd94d0c37
153dd445f53c59de283b38ef16f242f1f1fbc7bd
82ff81c0563b28161b00f29ae6af5c6f77e9fa3a26006a9bb607578756f66ea9
GET /wp-content/uploads/2018/03/menu-cat3-1.jpg HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
content-type: image/jpeg
last-modified: Wed, 27 Jul 2022 17:08:21 GMT
accept-ranges: bytes
content-length: 4133
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
xpodeal.com/wp-content/uploads/2018/03/menu-cat6.jpg
66.29.146.165200 OK 3.2 kB URL HTTP/2 xpodeal.com/wp-content/uploads/2018/03/menu-cat6.jpg
IP 66.29.146.165:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 180x135, components 3\012- data
Hash a6f3a4e7dcc8b4190f8feb312bb78c1f
0556485cad5a0a7fe7eca11ee8bef7b6a65a4d22
8cb6f1759549cb0f725a0696081813d2f9f189eeda7811d820beac030684904e
GET /wp-content/uploads/2018/03/menu-cat6.jpg HTTP/1.1
Host: xpodeal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=james.julian@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 16:02:32 GMT
content-type: image/jpeg
last-modified: Wed, 27 Jul 2022 17:08:21 GMT
accept-ranges: bytes
content-length: 3196
date: Sun, 25 Sep 2022 16:02:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%7CLato%3A300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%7CRoboto%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Rubik%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%7CLato%3A300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%7CRoboto%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i
IP 142.250.74.10:0
GET /css?family=Rubik%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%7CLato%3A300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%7CRoboto%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 25 Sep 2022 16:02:29 GMT
date: Sun, 25 Sep 2022 16:02:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2