Report - 188.241.222.140:2083/

Report Overview

Visited public
2024-06-21 06:11:05
Tags
URL
188.241.222.140:2083/
Finishing URL
glc42.hostico.ro:2083/
IP / ASN
188.241.222.140
#5606 GTS Telecom SRL
Title
cPanel Login

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-06-20 18:12:07	2.6 kB	7.1 kB	23.36.77.32
188.241.222.140:2083	unknown	unknown	No data	No data	391 B	316 B	188.241.222.140
	unknown				8.9 kB	127 kB	188.241.222.140
aus5.mozilla.org	2548	1998-01-24	2015-10-27 08:06:24	2024-06-20 18:24:17	512 B	1.2 kB	35.244.181.201

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-06-21	medium	188.241.222.140	Sinkholed

ThreatFox

No alerts detected

JavaScript (2)

	URL	From	Size	First Seen	Last Seen
	glc42.hostico.ro:2083/	ScriptElement	84 B	2023-03-07	2025-04-25
Pretty URL glc42.hostico.ro:2083/ IP 188.241.222.140 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-04-25 17:37 Times Seen1681 Hash f88baf75b8e07dd7ec741e96546bc4f7 a74b22312f7ce6ea751190a32f188b305f2e71e3 1e5f5c8697f7a5934a4e88d298805feb7272c5ae7b1a357b44ec0b5289b60a50 Loading...

	glc42.hostico.ro:2083/	ScriptElement	20 kB	2024-05-26	2024-08-19
Pretty URL glc42.hostico.ro:2083/ IP 188.241.222.140 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-26 13:31 Last Seen2024-08-19 21:42 Times Seen2 Hash 949d760c5d48852096a0e585872e823b 1dbd7ca93a4b708c1f6bb37a943ba47bb1b8bba5 9a9b5814460b0b294b7d4672b80e372fc250c705a019e6be57d864d1f2628b21 Loading...

HTTP Transactions (24)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
6d997a3e4c838d12e34de2dd2d4208c3
386abb53e2df86f291b6a86765d9a6feb88ba30b
32e00abd54407308b80a14e2916a119d95d90b1e7842f8cf0e87df306287869c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "32E00ABD54407308B80A14E2916A119D95D90B1E7842F8CF0E87DF306287869C"
Last-Modified: Thu, 20 Jun 2024 13:53:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17350
Expires: Fri, 21 Jun 2024 10:59:49 GMT
Date: Fri, 21 Jun 2024 06:10:39 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
c0fde0756f59aaa5fa85a62f5f528e74
3c2d990e14054ee3b407cc37d77e255533d91ed6
ca44d6619deb0e020993a84c6bfbf1993bf096b13863b706dc8a826499348276

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "CA44D6619DEB0E020993A84C6BFBF1993BF096B13863B706DC8A826499348276"
Last-Modified: Wed, 19 Jun 2024 23:47:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7262
Expires: Fri, 21 Jun 2024 08:11:42 GMT
Date: Fri, 21 Jun 2024 06:10:40 GMT
Connection: keep-alive

188.241.222.140:2083/

188.241.222.140

301 Moved

113 B

URL User Request GET HTTP/1.1
188.241.222.140:2083/
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

File type
HTML document, ASCII text
Size
113 B (113 bytes)
Hash
644e40ca326a19932bb99dab6622dfab
f0bdda96cfb4fb44005236e27ab7bcbacfe16109
3916b7835d0f7f5f86ca56f5477a086c188050e70488aabb27ae4f349c6f720d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 188.241.222.140:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved
Content-length: 113
Location: https://glc42.hostico.ro:2083
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
5a3268763aa8247d09e7b12f8a157bb5
fbddec6e9fb707501596ca331266c50e77e23f5b
6095004cca6c22ee09c33dc58574519973f162bb1ee183856ed65675281d551c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "6095004CCA6C22EE09C33DC58574519973F162BB1EE183856ED65675281D551C"
Last-Modified: Wed, 19 Jun 2024 16:21:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21376
Expires: Fri, 21 Jun 2024 12:06:56 GMT
Date: Fri, 21 Jun 2024 06:10:40 GMT
Connection: keep-alive

glc42.hostico.ro:2083/

188.241.222.140

200 OK

12 kB

URL User Request GET HTTP/1.1
glc42.hostico.ro:2083/
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

Certificate
IssuerLet's Encrypt
Subjectglc42.hostico.ro
FingerprintBD:4A:15:43:DB:29:F3:85:C9:0A:69:CB:AA:23:1D:40:B9:6B:30:F9
ValidityWed, 15 May 2024 11:42:17 GMT - Tue, 13 Aug 2024 11:42:16 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (11179)
Size
12 kB (12302 bytes)
Hash
246f47539b31f7d388cfc41b78ab1a78
0610c880fd1388b43c4e02d1081154ad86b5e8bb
e096fa0314d0dee56f06e869700f5b6e024df8de3e0ace1b1bfbfd5213a509e2

HTTP Headers

GET / HTTP/1.1
Host: glc42.hostico.ro:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: close
Content-Type: text/html; charset="utf-8"
Date: Fri, 21 Jun 2024 06:10:40 GMT
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache
Set-Cookie: cprelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
cpsession=%3aqwuIDNgEV45zn5wP%2cff40c0e0cc8ae581ee97a4f0b504bb02; HttpOnly; path=/; port=2083; secure
roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
roundcube_sessauth=expired; HttpOnly; domain=glc42.hostico.ro; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
PPA_ID=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Length: 12302

glc42.hostico.ro:2083/cPanel_magic_revision_1714422030/unprotected/cpanel/style_v2_optimized.css

188.241.222.140

200 OK

33 kB

URL GET HTTP/1.1
glc42.hostico.ro:2083/cPanel_magic_revision_1714422030/unprotected/cpanel/style_v2_optimized.css
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

Requested by
https://glc42.hostico.ro:2083/
Certificate
IssuerLet's Encrypt
Subjectglc42.hostico.ro
FingerprintBD:4A:15:43:DB:29:F3:85:C9:0A:69:CB:AA:23:1D:40:B9:6B:30:F9
ValidityWed, 15 May 2024 11:42:17 GMT - Tue, 13 Aug 2024 11:42:16 GMT

File type
ASCII text, with very long lines (35968)
Size
33 kB (33186 bytes)
Hash
372c6fd733079957b38b5938f8e77988
4881b8b6975b75f7e8347f2caa60c790ed2b993e
fa4e283ab5c16e653c79ba811fe957058a12b37fb5920aa6ffcbe7c9923fbe1d

HTTP Headers

GET /cPanel_magic_revision_1714422030/unprotected/cpanel/style_v2_optimized.css HTTP/1.1
Host: glc42.hostico.ro:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glc42.hostico.ro:2083/
Cookie: cpsession=%3aqwuIDNgEV45zn5wP%2cff40c0e0cc8ae581ee97a4f0b504bb02
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Mon, 29 Apr 2024 20:20:30 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Cache-Control: max-age=5184000, public
Expires: Tue, 20 Aug 2024 06:10:41 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Length: 33186

glc42.hostico.ro:2083/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/open_sans.min.css

188.241.222.140

200 OK

522 B

URL GET HTTP/1.1
glc42.hostico.ro:2083/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/open_sans.min.css
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

Requested by
https://glc42.hostico.ro:2083/
Certificate
IssuerLet's Encrypt
Subjectglc42.hostico.ro
FingerprintBD:4A:15:43:DB:29:F3:85:C9:0A:69:CB:AA:23:1D:40:B9:6B:30:F9
ValidityWed, 15 May 2024 11:42:17 GMT - Tue, 13 Aug 2024 11:42:16 GMT

File type
ASCII text, with very long lines (6358), with no line terminators
Size
522 B (522 bytes)
Hash
952b5c93a75a89c458fe5093480dd1bc
564d17e569cb59cf7043d7f777727c19a3cbda3a
17781767b9edf1ebdde3529494d5cb3d8403702893db10258bedd3f9b8002f20

HTTP Headers

GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/open_sans.min.css HTTP/1.1
Host: glc42.hostico.ro:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glc42.hostico.ro:2083/
Cookie: cpsession=%3aqwuIDNgEV45zn5wP%2cff40c0e0cc8ae581ee97a4f0b504bb02
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Cache-Control: max-age=5184000, public
Expires: Tue, 20 Aug 2024 06:10:41 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Length: 522

glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/cpanel-logo.svg

188.241.222.140

200 OK

2.6 kB

URL GET HTTP/1.1
glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/cpanel-logo.svg
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

Requested by
https://glc42.hostico.ro:2083/
Certificate
IssuerLet's Encrypt
Subjectglc42.hostico.ro
FingerprintBD:4A:15:43:DB:29:F3:85:C9:0A:69:CB:AA:23:1D:40:B9:6B:30:F9
ValidityWed, 15 May 2024 11:42:17 GMT - Tue, 13 Aug 2024 11:42:16 GMT

File type
SVG Scalable Vector Graphics image
Size
2.6 kB (2632 bytes)
Hash
c47b4b5200566a2a496a11ba472ec5da
3bd0da9a6ffd62217d3e781fa1356f40d9f91d4c
179a9aa9fff4c52850d9ce34a4c435404ddfd4fefa8aab9a6eb4f47b83f922d9

HTTP Headers

GET /cPanel_magic_revision_1714421346/unprotected/cpanel/images/cpanel-logo.svg HTTP/1.1
Host: glc42.hostico.ro:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glc42.hostico.ro:2083/
Cookie: cpsession=%3aqwuIDNgEV45zn5wP%2cff40c0e0cc8ae581ee97a4f0b504bb02
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Mon, 29 Apr 2024 20:09:06 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Cache-Control: max-age=5184000, public
Expires: Tue, 20 Aug 2024 06:10:41 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Length: 2632

glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/notice-error.png

188.241.222.140

200 OK

1.0 kB

URL GET HTTP/1.1
glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/notice-error.png
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

Requested by
https://glc42.hostico.ro:2083/
Certificate
IssuerLet's Encrypt
Subjectglc42.hostico.ro
FingerprintBD:4A:15:43:DB:29:F3:85:C9:0A:69:CB:AA:23:1D:40:B9:6B:30:F9
ValidityWed, 15 May 2024 11:42:17 GMT - Tue, 13 Aug 2024 11:42:16 GMT

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced
Size
1.0 kB (1026 bytes)
Hash
a3265cc598ae28633c060889e790f80c
57530d6996c8f36711ef05681474b8f63d4184b3
bcaf01928e5c7246ab0bb7e83f609b485a67a5e442d3dd94539a883c11fb70cd

HTTP Headers

GET /cPanel_magic_revision_1714421346/unprotected/cpanel/images/notice-error.png HTTP/1.1
Host: glc42.hostico.ro:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glc42.hostico.ro:2083/cPanel_magic_revision_1714422030/unprotected/cpanel/style_v2_optimized.css
Cookie: cpsession=%3aqwuIDNgEV45zn5wP%2cff40c0e0cc8ae581ee97a4f0b504bb02
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 29 Apr 2024 20:09:06 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Cache-Control: max-age=5184000, public
Expires: Tue, 20 Aug 2024 06:10:41 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 1026

glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/icon-username.png

188.241.222.140

200 OK

320 B

URL GET HTTP/1.1
glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/icon-username.png
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

Requested by
https://glc42.hostico.ro:2083/
Certificate
IssuerLet's Encrypt
Subjectglc42.hostico.ro
FingerprintBD:4A:15:43:DB:29:F3:85:C9:0A:69:CB:AA:23:1D:40:B9:6B:30:F9
ValidityWed, 15 May 2024 11:42:17 GMT - Tue, 13 Aug 2024 11:42:16 GMT

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
320 B (320 bytes)
Hash
07ff84f8c855e5fe9d510ff5c9a4b1e4
11c262053e2b9be57d1dba7cb3d916ef041a0e50
05ce0f813e6236158fa1d115faba62cd2041aab1878cac0960a0f45575cece1e

HTTP Headers

GET /cPanel_magic_revision_1714421346/unprotected/cpanel/images/icon-username.png HTTP/1.1
Host: glc42.hostico.ro:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glc42.hostico.ro:2083/cPanel_magic_revision_1714422030/unprotected/cpanel/style_v2_optimized.css
Cookie: cpsession=%3aqwuIDNgEV45zn5wP%2cff40c0e0cc8ae581ee97a4f0b504bb02
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 29 Apr 2024 20:09:06 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Cache-Control: max-age=5184000, public
Expires: Tue, 20 Aug 2024 06:10:41 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 320

glc42.hostico.ro:2083/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.woff

188.241.222.140

200 OK

23 kB

URL GET HTTP/1.1
glc42.hostico.ro:2083/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.woff
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

Requested by
https://glc42.hostico.ro:2083/
Certificate
IssuerLet's Encrypt
Subjectglc42.hostico.ro
FingerprintBD:4A:15:43:DB:29:F3:85:C9:0A:69:CB:AA:23:1D:40:B9:6B:30:F9
ValidityWed, 15 May 2024 11:42:17 GMT - Tue, 13 Aug 2024 11:42:16 GMT

File type
Web Open Font Format, TrueType, length 22660, version 1.0
Size
23 kB (22660 bytes)
Hash
79515ad0788973c533405f7012dfeccd
5092881fad2caffdc6bf71bdab1ea547b73d3564
22e7a1b10c110072f5a0bfd16e2197a76b279ec879bcce8978fada1dc9ee5d40

HTTP Headers

GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.woff HTTP/1.1
Host: glc42.hostico.ro:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://glc42.hostico.ro:2083/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/open_sans.min.css
Cookie: cpsession=%3aqwuIDNgEV45zn5wP%2cff40c0e0cc8ae581ee97a4f0b504bb02
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/font-woff
Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Cache-Control: max-age=5184000, public
Expires: Tue, 20 Aug 2024 06:10:41 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 22660

glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/notice-success.png

188.241.222.140

200 OK

962 B

URL GET HTTP/1.1
glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/notice-success.png
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

Requested by
https://glc42.hostico.ro:2083/
Certificate
IssuerLet's Encrypt
Subjectglc42.hostico.ro
FingerprintBD:4A:15:43:DB:29:F3:85:C9:0A:69:CB:AA:23:1D:40:B9:6B:30:F9
ValidityWed, 15 May 2024 11:42:17 GMT - Tue, 13 Aug 2024 11:42:16 GMT

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced
Size
962 B (962 bytes)
Hash
0a0ec2a6468d4d1aa3fc2baa70271ac8
a31fb01790aca8dc1976450e4234cb6ccc328956
cafbe3036533fe094931f5745f8cb9962a34409522e93d63ac8427acb9a02c79

HTTP Headers

GET /cPanel_magic_revision_1714421346/unprotected/cpanel/images/notice-success.png HTTP/1.1
Host: glc42.hostico.ro:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glc42.hostico.ro:2083/cPanel_magic_revision_1714422030/unprotected/cpanel/style_v2_optimized.css
Cookie: cpsession=%3aqwuIDNgEV45zn5wP%2cff40c0e0cc8ae581ee97a4f0b504bb02; timezone=Etc/UTC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 29 Apr 2024 20:09:06 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Cache-Control: max-age=5184000, public
Expires: Tue, 20 Aug 2024 06:10:41 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 962

glc42.hostico.ro:2083/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.woff

188.241.222.140

200 OK

23 kB

URL GET HTTP/1.1
glc42.hostico.ro:2083/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.woff
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

Requested by
https://glc42.hostico.ro:2083/
Certificate
IssuerLet's Encrypt
Subjectglc42.hostico.ro
FingerprintBD:4A:15:43:DB:29:F3:85:C9:0A:69:CB:AA:23:1D:40:B9:6B:30:F9
ValidityWed, 15 May 2024 11:42:17 GMT - Tue, 13 Aug 2024 11:42:16 GMT

File type
Web Open Font Format, TrueType, length 22908, version 1.0
Size
23 kB (22908 bytes)
Hash
697574b47bcfdd2c45e3e63c7380dd67
4590722b795938e0b6ff1b99701d1abe37aeabef
26b216fadb2ffcd542ca56c2d84f9918f62e40de89bf88b4211fffacd2a4ad83

HTTP Headers

GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.woff HTTP/1.1
Host: glc42.hostico.ro:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://glc42.hostico.ro:2083/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/open_sans.min.css
Cookie: cpsession=%3aqwuIDNgEV45zn5wP%2cff40c0e0cc8ae581ee97a4f0b504bb02
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/font-woff
Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Cache-Control: max-age=5184000, public
Expires: Tue, 20 Aug 2024 06:10:41 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 22908

glc42.hostico.ro:2083/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.woff

188.241.222.140

200 OK

22 kB

URL GET HTTP/1.1
glc42.hostico.ro:2083/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.woff
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

Requested by
https://glc42.hostico.ro:2083/
Certificate
IssuerLet's Encrypt
Subjectglc42.hostico.ro
FingerprintBD:4A:15:43:DB:29:F3:85:C9:0A:69:CB:AA:23:1D:40:B9:6B:30:F9
ValidityWed, 15 May 2024 11:42:17 GMT - Tue, 13 Aug 2024 11:42:16 GMT

File type
Web Open Font Format, TrueType, length 22432, version 1.0
Size
22 kB (22432 bytes)
Hash
2e90d5152ce92858b62ba053c7b9d2cb
8cf65f42a2a8c349ccd6ab63b6cbd17c96fd665c
a0357cb694b5284870c77c0dbcaf33f238004800419288afde313317b0dbd0b7

HTTP Headers

GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.woff HTTP/1.1
Host: glc42.hostico.ro:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://glc42.hostico.ro:2083/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/open_sans.min.css
Cookie: cpsession=%3aqwuIDNgEV45zn5wP%2cff40c0e0cc8ae581ee97a4f0b504bb02
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/font-woff
Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Cache-Control: max-age=5184000, public
Expires: Tue, 20 Aug 2024 06:10:41 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 22432

glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/cp-logo.svg

188.241.222.140

200 OK

900 B

URL GET HTTP/1.1
glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/cp-logo.svg
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

Requested by
https://glc42.hostico.ro:2083/
Certificate
IssuerLet's Encrypt
Subjectglc42.hostico.ro
FingerprintBD:4A:15:43:DB:29:F3:85:C9:0A:69:CB:AA:23:1D:40:B9:6B:30:F9
ValidityWed, 15 May 2024 11:42:17 GMT - Tue, 13 Aug 2024 11:42:16 GMT

File type
SVG Scalable Vector Graphics image
Size
900 B (900 bytes)
Hash
b9e8caf3e2e2cab76e2dfd813f98d261
cb2dee89baaed072aaaecfb46bf4d2ffb6d4bd53
70667a94ef79118b93b13b1cb41fcb11b09e8fd3ce0c9c82680ed5f991ba9a32

HTTP Headers

GET /cPanel_magic_revision_1714421346/unprotected/cpanel/images/cp-logo.svg HTTP/1.1
Host: glc42.hostico.ro:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glc42.hostico.ro:2083/cPanel_magic_revision_1714422030/unprotected/cpanel/style_v2_optimized.css
Cookie: cpsession=%3aqwuIDNgEV45zn5wP%2cff40c0e0cc8ae581ee97a4f0b504bb02; timezone=Etc/UTC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Mon, 29 Apr 2024 20:09:06 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Cache-Control: max-age=5184000, public
Expires: Tue, 20 Aug 2024 06:10:41 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Length: 900

glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/warning.png

188.241.222.140

200 OK

1.1 kB

URL GET HTTP/1.1
glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/warning.png
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

Requested by
https://glc42.hostico.ro:2083/
Certificate
IssuerLet's Encrypt
Subjectglc42.hostico.ro
FingerprintBD:4A:15:43:DB:29:F3:85:C9:0A:69:CB:AA:23:1D:40:B9:6B:30:F9
ValidityWed, 15 May 2024 11:42:17 GMT - Tue, 13 Aug 2024 11:42:16 GMT

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1060 bytes)
Hash
a64b8c7407bf94cc4448cb210bb882e7
a526cf52b2c5b6c2d0409b886de4aa968000fcd8
7ecb82019606d891c5197d2f8ba24ec323d9b10a089facc82d089ff1ec3d399b

HTTP Headers

GET /cPanel_magic_revision_1714421346/unprotected/cpanel/images/warning.png HTTP/1.1
Host: glc42.hostico.ro:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glc42.hostico.ro:2083/cPanel_magic_revision_1714422030/unprotected/cpanel/style_v2_optimized.css
Cookie: cpsession=%3aqwuIDNgEV45zn5wP%2cff40c0e0cc8ae581ee97a4f0b504bb02; timezone=Etc/UTC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 29 Apr 2024 20:09:06 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Cache-Control: max-age=5184000, public
Expires: Tue, 20 Aug 2024 06:10:41 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 1060

glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/notice-info.png

188.241.222.140

200 OK

976 B

URL GET HTTP/1.1
glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/notice-info.png
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

Requested by
https://glc42.hostico.ro:2083/
Certificate
IssuerLet's Encrypt
Subjectglc42.hostico.ro
FingerprintBD:4A:15:43:DB:29:F3:85:C9:0A:69:CB:AA:23:1D:40:B9:6B:30:F9
ValidityWed, 15 May 2024 11:42:17 GMT - Tue, 13 Aug 2024 11:42:16 GMT

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced
Size
976 B (976 bytes)
Hash
14146cf832470d9beca95a708a1d6f8d
d4b506f92876baea69409f3a78c4718757a53b33
95f8a142dd96c310afeb75329ef504f162ab3102a81fc07f20b268361990f526

HTTP Headers

GET /cPanel_magic_revision_1714421346/unprotected/cpanel/images/notice-info.png HTTP/1.1
Host: glc42.hostico.ro:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glc42.hostico.ro:2083/cPanel_magic_revision_1714422030/unprotected/cpanel/style_v2_optimized.css
Cookie: cpsession=%3aqwuIDNgEV45zn5wP%2cff40c0e0cc8ae581ee97a4f0b504bb02; timezone=Etc/UTC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 29 Apr 2024 20:09:06 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Cache-Control: max-age=5184000, public
Expires: Tue, 20 Aug 2024 06:10:41 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 976

glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/icon-password.png

188.241.222.140

200 OK

450 B

URL GET HTTP/1.1
glc42.hostico.ro:2083/cPanel_magic_revision_1714421346/unprotected/cpanel/images/icon-password.png
IP
188.241.222.140:2083
ASN
#5606 GTS Telecom SRL

Requested by
https://glc42.hostico.ro:2083/
Certificate
IssuerLet's Encrypt
Subjectglc42.hostico.ro
FingerprintBD:4A:15:43:DB:29:F3:85:C9:0A:69:CB:AA:23:1D:40:B9:6B:30:F9
ValidityWed, 15 May 2024 11:42:17 GMT - Tue, 13 Aug 2024 11:42:16 GMT

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
450 B (450 bytes)
Hash
7ac1cefcb7eab93c6d6981ecde6c1635
1523f8cb80ab19108549d0b7db31a58b71c05d39
a02998df88a6efb0baa526796b2b682ce9fdd6471ceb19170b326320f22f7053

HTTP Headers

GET /cPanel_magic_revision_1714421346/unprotected/cpanel/images/icon-password.png HTTP/1.1
Host: glc42.hostico.ro:2083
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glc42.hostico.ro:2083/cPanel_magic_revision_1714422030/unprotected/cpanel/style_v2_optimized.css
Cookie: cpsession=%3aqwuIDNgEV45zn5wP%2cff40c0e0cc8ae581ee97a4f0b504bb02
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 29 Apr 2024 20:09:06 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Cache-Control: max-age=5184000, public
Expires: Tue, 20 Aug 2024 06:10:41 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 450

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
6720792332fb717894b4e5221fdc3d86
f79b1d3611fb53cea950acb15000473ae7174149
67dd6ffe107c77c5f8bea4a3d6771b6026efc51bd4a9b26c66c8791c1ef48965

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "67DD6FFE107C77C5F8BEA4A3D6771B6026EFC51BD4A9B26C66C8791C1EF48965"
Last-Modified: Thu, 20 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8613
Expires: Fri, 21 Jun 2024 08:34:14 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
6720792332fb717894b4e5221fdc3d86
f79b1d3611fb53cea950acb15000473ae7174149
67dd6ffe107c77c5f8bea4a3d6771b6026efc51bd4a9b26c66c8791c1ef48965

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "67DD6FFE107C77C5F8BEA4A3D6771B6026EFC51BD4A9B26C66C8791C1EF48965"
Last-Modified: Thu, 20 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8613
Expires: Fri, 21 Jun 2024 08:34:14 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
6720792332fb717894b4e5221fdc3d86
f79b1d3611fb53cea950acb15000473ae7174149
67dd6ffe107c77c5f8bea4a3d6771b6026efc51bd4a9b26c66c8791c1ef48965

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "67DD6FFE107C77C5F8BEA4A3D6771B6026EFC51BD4A9B26C66C8791C1EF48965"
Last-Modified: Thu, 20 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8613
Expires: Fri, 21 Jun 2024 08:34:14 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
6720792332fb717894b4e5221fdc3d86
f79b1d3611fb53cea950acb15000473ae7174149
67dd6ffe107c77c5f8bea4a3d6771b6026efc51bd4a9b26c66c8791c1ef48965

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "67DD6FFE107C77C5F8BEA4A3D6771B6026EFC51BD4A9B26C66C8791C1EF48965"
Last-Modified: Thu, 20 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8613
Expires: Fri, 21 Jun 2024 08:34:14 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
6720792332fb717894b4e5221fdc3d86
f79b1d3611fb53cea950acb15000473ae7174149
67dd6ffe107c77c5f8bea4a3d6771b6026efc51bd4a9b26c66c8791c1ef48965

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "67DD6FFE107C77C5F8BEA4A3D6771B6026EFC51BD4A9B26C66C8791C1EF48965"
Last-Modified: Thu, 20 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8505
Expires: Fri, 21 Jun 2024 08:32:26 GMT
Date: Fri, 21 Jun 2024 06:10:41 GMT
Connection: keep-alive

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/202402/aus.content-signature.mozilla.org-2024-07-24-18-25-25.chain; p384ecdsa=f9RQ2celYW2NPwjCpxy7EaX_OD9idZjNPPcac8b_U5FZ9Egf7MAqm9_8GLgA9g1Sj0noBhZQaxGb_r0zzz2R4ZqgUM5V7fhFBSN9cqg5vT0v9eiqOXFjwCcYuwFwyQte
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Fri, 21 Jun 2024 06:10:39 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 20
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (24)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type