Overview

URLcpanel.vipsoccer.eu/
IP 91.215.216.63 (Bulgaria)
ASN#49699 SuperHosting.BG Ltd.
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-29 04:06:45 UTC
StatusLoading report..
IDS alerts0
Blocklist alert7
urlquery alerts No alerts detected
Tags None

Domain Summary (9)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-28 05:55:58 UTC 34.102.187.140
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
cpanel.vipsoccer.eu (15) 0 2019-06-08 02:19:05 UTC 2022-10-31 14:49:54 UTC 91.215.216.63 Unknown ranking
r3.o.lencr.org (7) 344 No data No data 23.36.77.32
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-28 05:53:26 UTC 34.117.237.239
ocsp.comodoca.com (1) 1696 2012-05-21 07:01:17 UTC 2021-12-08 16:29:47 UTC 104.18.32.68
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 52.36.24.174

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-29 2 cpanel.vipsoccer.eu/ Phishing
2022-11-29 2 cpanel.vipsoccer.eu/ Phishing
2022-11-29 2 cpanel.vipsoccer.eu/cPanel_magic_revision_1467663058/unprotected/cpanel/ima (...) Phishing
2022-11-29 2 cpanel.vipsoccer.eu/cPanel_magic_revision_1616517441/unprotected/cpanel/fon (...) Phishing
2022-11-29 2 cpanel.vipsoccer.eu/cPanel_magic_revision_1616517441/unprotected/cpanel/fon (...) Phishing
2022-11-29 2 cpanel.vipsoccer.eu/cPanel_magic_revision_1616517441/unprotected/cpanel/fon (...) Phishing
2022-11-29 2 cpanel.vipsoccer.eu/cPanel_magic_revision_1467662999/unprotected/cpanel/ima (...) Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 91.215.216.63
Date UQ / IDS / BL URL IP
2022-11-29 04:06:45 +0000 0 - 0 - 7 cpanel.vipsoccer.eu/ 91.215.216.63


Last 5 reports on ASN: SuperHosting.BG Ltd.
Date UQ / IDS / BL URL IP
2023-01-28 10:43:24 +0000 0 - 1 - 55 mladtehnik.com/image/flags/softw75tradingb275 (...) 91.215.216.6
2023-01-21 22:16:20 +0000 0 - 0 - 1 91.230.194.34/ 91.230.194.34
2023-01-21 16:30:26 +0000 0 - 0 - 58 mladtehnik.com/image/flags/Softw75TradingB275 (...) 91.215.216.6
2023-01-21 10:08:23 +0000 0 - 0 - 1 mladtehnik.com/image/flags/Softw75TradingB263 (...) 91.215.216.6
2023-01-21 09:53:29 +0000 0 - 0 - 1 mladtehnik.com/admin/controller/captcha/KnSof (...) 91.215.216.6


Last 1 reports on domain: vipsoccer.eu
Date UQ / IDS / BL URL IP
2022-11-29 04:06:45 +0000 0 - 0 - 7 cpanel.vipsoccer.eu/ 91.215.216.63


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-02-05 18:42:51 +0000 0 - 0 - 6 cpanel.appleld.co-find.support/ 162.251.80.223
2023-02-05 11:30:23 +0000 0 - 0 - 34 cpanel.trieutin.com/ 119.17.253.214
2023-02-04 21:02:07 +0000 0 - 1 - 0 cpanel.centos.ga/ 103.114.217.69
2023-02-04 21:01:55 +0000 0 - 3 - 0 cpanel.centos.ga/ 103.114.217.69
2023-02-02 14:46:41 +0000 0 - 0 - 3 cpanel.techianews.com/ 170.10.162.190

JavaScript

Executed Scripts (2)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (36)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         91.215.216.63
HTTP/1.1 301 Moved
                                        
Date: Tue, 29 Nov 2022 04:06:33 GMT
Server: Apache
Content-length: 112
Location: https://cpanel.vipsoccer.eu/
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text
Size:   112
Md5:    b1d95c28794e1db1a66e25d925f49134
Sha1:   b9160f5a6e64f6f45bd43c29ad937f29ffed0e00
Sha256: 29c35eae60ed02cc68b6e26f80489300a7a9ac9fb55cc2078377185719861674

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6373
Expires: Tue, 29 Nov 2022 05:52:47 GMT
Date: Tue, 29 Nov 2022 04:06:34 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3996
Expires: Tue, 29 Nov 2022 05:13:10 GMT
Date: Tue, 29 Nov 2022 04:06:34 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2516
Cache-Control: max-age=112003
Date: Tue, 29 Nov 2022 04:06:34 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:13:17 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: v7Wq+KlF0cJ8sPlgPupBf7N4Cc5lGS/ILGsiN7bxYZ9VDU9iLgHCKKEZh3Lfd0aIZCOuMKyO1a6+nyN/3xb94w==
x-amz-request-id: KXXE7W40NBKFTSCV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 03:45:17 GMT
age: 1277
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 03:19:35 GMT
cache-control: public,max-age=3600
age: 2819
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 29 Nov 2022 04:06:34 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 29 Nov 2022 04:06:35 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 18:32:22 GMT
Expires: Sat, 03 Dec 2022 18:32:21 GMT
Etag: "6affadb40f2be4dae3d12e55fddf579f561267e2"
Cache-Control: max-age=396945,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771878b49e331c0e-OSL

                                        
                                            GET / HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         91.215.216.63
HTTP/2 200 OK
content-type: text/html; charset="utf-8"
                                        
date: Tue, 29 Nov 2022 04:06:34 GMT
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, private, no-cache, no-store, must-revalidate, private
content-encoding: gzip
content-length: 12566
set-cookie: cprelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=443; secure cpsession=%3a9z68WEoLYKXywjkT%2c699ac24e398f825a560b9ae4f3569053; HttpOnly; path=/; port=443; secure roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=443; secure roundcube_sessauth=expired; HttpOnly; domain=cpanel.vipsoccer.eu; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=443; secure Horde=expired; HttpOnly; domain=.cpanel.vipsoccer.eu; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=443; secure horde_secret_key=expired; HttpOnly; domain=.cpanel.vipsoccer.eu; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=443; secure Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=443; secure Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/horde; port=443; secure PPA_ID=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=443; secure imp_key=expired; HttpOnly; domain=cpanel.vipsoccer.eu; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=443; secure Horde=expired; HttpOnly; domain=.cpanel.vipsoccer.eu; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=443 horde_secret_key=expired; HttpOnly; domain=.cpanel.vipsoccer.eu; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=443
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10609)
Size:   12566
Md5:    b85e8ba5d3ee54f308e488ba730ef37c
Sha1:   376444c7a41b2ef4c9898962b450433efc052131
Sha256: 42e8ff861732b26997b9d2f1a44d549ecc32914d7159bdf524e99d2ad04addd6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/open_sans.min.css HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cpanel.vipsoccer.eu/
Cookie: cpsession=%3a9z68WEoLYKXywjkT%2c699ac24e398f825a560b9ae4f3569053
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         91.215.216.63
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 23 Mar 2021 16:37:21 GMT
date: Tue, 29 Nov 2022 04:06:34 GMT
cache-control: max-age=5184000, public
expires: Sat, 28 Jan 2023 04:06:34 GMT
content-encoding: gzip
content-length: 521
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6358), with no line terminators
Size:   521
Md5:    f77c54659245adf101634147d7644820
Sha1:   d5515c9258c3fd500d539bbe39f309f39d91331b
Sha256: 0de8b0eeff57a13f5b937ffa4a62cba965e864a1c7c2b587101605dbdc908081
                                        
                                            GET /cPanel_magic_revision_1655235831/unprotected/cpanel/style_v2_optimized.css HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cpanel.vipsoccer.eu/
Cookie: cpsession=%3a9z68WEoLYKXywjkT%2c699ac24e398f825a560b9ae4f3569053
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         91.215.216.63
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 14 Jun 2022 19:43:51 GMT
date: Tue, 29 Nov 2022 04:06:34 GMT
cache-control: max-age=5184000, public
expires: Sat, 28 Jan 2023 04:06:34 GMT
content-encoding: gzip
content-length: 32666
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35968)
Size:   32666
Md5:    27ff41affb5fbac2af032377fa1b19b7
Sha1:   c9e81f6fc7e74971e246e941bd40ae06dd7a41f8
Sha256: c129ae50a7bb8d1324a544687fee4b84bed15c3d9d48ca6edcd059183adcd4a0
                                        
                                            GET /cPanel_magic_revision_1467663058/unprotected/cpanel/images/cpanel-logo.svg HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cpanel.vipsoccer.eu/
Cookie: cpsession=%3a9z68WEoLYKXywjkT%2c699ac24e398f825a560b9ae4f3569053
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         91.215.216.63
HTTP/2 200 OK
content-type: image/svg+xml
                                        
last-modified: Mon, 04 Jul 2016 20:10:58 GMT
date: Tue, 29 Nov 2022 04:06:34 GMT
cache-control: max-age=5184000, public
expires: Sat, 28 Jan 2023 04:06:34 GMT
content-encoding: gzip
content-length: 2632
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5616)
Size:   2632
Md5:    901be75969cafb9088994d9bd67c52af
Sha1:   cb0182057316ed4942a12b51ff5911f8d20a100c
Sha256: b1347bd38235cd82297413d9c0f30f4bfe0883f69a3e6efd224c33474cb4af88

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 03:08:56 GMT
cache-control: public,max-age=3600
age: 3459
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /cPanel_magic_revision_1438980091/unprotected/cpanel/images/notice-error.png HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cpanel.vipsoccer.eu/cPanel_magic_revision_1655235831/unprotected/cpanel/style_v2_optimized.css
Cookie: cpsession=%3a9z68WEoLYKXywjkT%2c699ac24e398f825a560b9ae4f3569053; timezone=Etc/UTC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         91.215.216.63
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 07 Aug 2015 20:41:31 GMT
date: Tue, 29 Nov 2022 04:06:34 GMT
cache-control: max-age=5184000, public
expires: Sat, 28 Jan 2023 04:06:34 GMT
content-length: 1026
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size:   1026
Md5:    a3265cc598ae28633c060889e790f80c
Sha1:   57530d6996c8f36711ef05681474b8f63d4184b3
Sha256: bcaf01928e5c7246ab0bb7e83f609b485a67a5e442d3dd94539a883c11fb70cd
                                        
                                            GET /cPanel_magic_revision_1438979941/unprotected/cpanel/images/icon-username.png HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cpanel.vipsoccer.eu/cPanel_magic_revision_1655235831/unprotected/cpanel/style_v2_optimized.css
Cookie: cpsession=%3a9z68WEoLYKXywjkT%2c699ac24e398f825a560b9ae4f3569053; timezone=Etc/UTC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         91.215.216.63
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 07 Aug 2015 20:39:01 GMT
date: Tue, 29 Nov 2022 04:06:34 GMT
cache-control: max-age=5184000, public
expires: Sat, 28 Jan 2023 04:06:34 GMT
content-length: 320
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size:   320
Md5:    07ff84f8c855e5fe9d510ff5c9a4b1e4
Sha1:   11c262053e2b9be57d1dba7cb3d916ef041a0e50
Sha256: 05ce0f813e6236158fa1d115faba62cd2041aab1878cac0960a0f45575cece1e
                                        
                                            GET /cPanel_magic_revision_1438980469/unprotected/cpanel/images/icon-password.png HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cpanel.vipsoccer.eu/cPanel_magic_revision_1655235831/unprotected/cpanel/style_v2_optimized.css
Cookie: cpsession=%3a9z68WEoLYKXywjkT%2c699ac24e398f825a560b9ae4f3569053; timezone=Etc/UTC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         91.215.216.63
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 07 Aug 2015 20:47:49 GMT
date: Tue, 29 Nov 2022 04:06:34 GMT
cache-control: max-age=5184000, public
expires: Sat, 28 Jan 2023 04:06:34 GMT
content-length: 450
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size:   450
Md5:    7ac1cefcb7eab93c6d6981ecde6c1635
Sha1:   1523f8cb80ab19108549d0b7db31a58b71c05d39
Sha256: a02998df88a6efb0baa526796b2b682ce9fdd6471ceb19170b326320f22f7053
                                        
                                            GET /cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.woff HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cpanel.vipsoccer.eu/cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/open_sans.min.css
Cookie: cpsession=%3a9z68WEoLYKXywjkT%2c699ac24e398f825a560b9ae4f3569053; timezone=Etc/UTC
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         91.215.216.63
HTTP/2 200 OK
content-type: application/font-woff
                                        
last-modified: Tue, 23 Mar 2021 16:37:21 GMT
date: Tue, 29 Nov 2022 04:06:34 GMT
cache-control: max-age=5184000, public
expires: Sat, 28 Jan 2023 04:06:34 GMT
content-length: 22660
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 22660, version 1.0\012- data
Size:   22660
Md5:    79515ad0788973c533405f7012dfeccd
Sha1:   5092881fad2caffdc6bf71bdab1ea547b73d3564
Sha256: 22e7a1b10c110072f5a0bfd16e2197a76b279ec879bcce8978fada1dc9ee5d40

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.woff HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cpanel.vipsoccer.eu/cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/open_sans.min.css
Cookie: cpsession=%3a9z68WEoLYKXywjkT%2c699ac24e398f825a560b9ae4f3569053; timezone=Etc/UTC
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         91.215.216.63
HTTP/2 200 OK
content-type: application/font-woff
                                        
last-modified: Tue, 23 Mar 2021 16:37:21 GMT
date: Tue, 29 Nov 2022 04:06:34 GMT
cache-control: max-age=5184000, public
expires: Sat, 28 Jan 2023 04:06:34 GMT
content-length: 22908
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 22908, version 1.0\012- data
Size:   22908
Md5:    697574b47bcfdd2c45e3e63c7380dd67
Sha1:   4590722b795938e0b6ff1b99701d1abe37aeabef
Sha256: 26b216fadb2ffcd542ca56c2d84f9918f62e40de89bf88b4211fffacd2a4ad83

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.woff HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cpanel.vipsoccer.eu/cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/open_sans.min.css
Cookie: cpsession=%3a9z68WEoLYKXywjkT%2c699ac24e398f825a560b9ae4f3569053; timezone=Etc/UTC
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         91.215.216.63
HTTP/2 200 OK
content-type: application/font-woff
                                        
last-modified: Tue, 23 Mar 2021 16:37:21 GMT
date: Tue, 29 Nov 2022 04:06:34 GMT
cache-control: max-age=5184000, public
expires: Sat, 28 Jan 2023 04:06:34 GMT
content-length: 22432
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 22432, version 1.0\012- data
Size:   22432
Md5:    2e90d5152ce92858b62ba053c7b9d2cb
Sha1:   8cf65f42a2a8c349ccd6ab63b6cbd17c96fd665c
Sha256: a0357cb694b5284870c77c0dbcaf33f238004800419288afde313317b0dbd0b7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /cPanel_magic_revision_1467662999/unprotected/cpanel/images/cp-logo.svg HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cpanel.vipsoccer.eu/cPanel_magic_revision_1655235831/unprotected/cpanel/style_v2_optimized.css
Cookie: cpsession=%3a9z68WEoLYKXywjkT%2c699ac24e398f825a560b9ae4f3569053; timezone=Etc/UTC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         91.215.216.63
HTTP/2 200 OK
content-type: image/svg+xml
                                        
last-modified: Mon, 04 Jul 2016 20:09:59 GMT
date: Tue, 29 Nov 2022 04:06:34 GMT
cache-control: max-age=5184000, public
expires: Sat, 28 Jan 2023 04:06:34 GMT
content-encoding: gzip
content-length: 900
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1681)
Size:   900
Md5:    4e2425ea03e247c376e20811414946a3
Sha1:   7822082a7deb3800c1950ad8a8714a2b88f3c6a8
Sha256: 169bf8f44f5bc4d6174489f288a4265a2bc6f70951a4c106ea3f11572314a239

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /cPanel_magic_revision_1438980154/unprotected/cpanel/images/warning.png HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cpanel.vipsoccer.eu/cPanel_magic_revision_1655235831/unprotected/cpanel/style_v2_optimized.css
Cookie: cpsession=%3a9z68WEoLYKXywjkT%2c699ac24e398f825a560b9ae4f3569053; timezone=Etc/UTC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         91.215.216.63
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 07 Aug 2015 20:42:34 GMT
date: Tue, 29 Nov 2022 04:06:34 GMT
cache-control: max-age=5184000, public
expires: Sat, 28 Jan 2023 04:06:34 GMT
content-length: 1060
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size:   1060
Md5:    a64b8c7407bf94cc4448cb210bb882e7
Sha1:   a526cf52b2c5b6c2d0409b886de4aa968000fcd8
Sha256: 7ecb82019606d891c5197d2f8ba24ec323d9b10a089facc82d089ff1ec3d399b
                                        
                                            GET /cPanel_magic_revision_1438979828/unprotected/cpanel/images/notice-info.png HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cpanel.vipsoccer.eu/cPanel_magic_revision_1655235831/unprotected/cpanel/style_v2_optimized.css
Cookie: cpsession=%3a9z68WEoLYKXywjkT%2c699ac24e398f825a560b9ae4f3569053; timezone=Etc/UTC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         91.215.216.63
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 07 Aug 2015 20:37:08 GMT
date: Tue, 29 Nov 2022 04:06:34 GMT
cache-control: max-age=5184000, public
expires: Sat, 28 Jan 2023 04:06:34 GMT
content-length: 976
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size:   976
Md5:    14146cf832470d9beca95a708a1d6f8d
Sha1:   d4b506f92876baea69409f3a78c4718757a53b33
Sha256: 95f8a142dd96c310afeb75329ef504f162ab3102a81fc07f20b268361990f526
                                        
                                            GET /cPanel_magic_revision_1438980290/unprotected/cpanel/images/notice-success.png HTTP/1.1 
Host: cpanel.vipsoccer.eu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cpanel.vipsoccer.eu/cPanel_magic_revision_1655235831/unprotected/cpanel/style_v2_optimized.css
Cookie: cpsession=%3a9z68WEoLYKXywjkT%2c699ac24e398f825a560b9ae4f3569053; timezone=Etc/UTC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         91.215.216.63
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 07 Aug 2015 20:44:50 GMT
date: Tue, 29 Nov 2022 04:06:34 GMT
cache-control: max-age=5184000, public
expires: Sat, 28 Jan 2023 04:06:34 GMT
content-length: 962
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size:   962
Md5:    0a0ec2a6468d4d1aa3fc2baa70271ac8
Sha1:   a31fb01790aca8dc1976450e4234cb6ccc328956
Sha256: cafbe3036533fe094931f5745f8cb9962a34409522e93d63ac8427acb9a02c79
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5328
Cache-Control: max-age=109748
Date: Tue, 29 Nov 2022 04:06:35 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:35:43 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0f2790ONwU9OT27MmreHdw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         52.36.24.174
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gGUBIg4v6CZXFFSbuBf6OqCH05Q=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4578
Expires: Tue, 29 Nov 2022 05:22:55 GMT
Date: Tue, 29 Nov 2022 04:06:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4578
Expires: Tue, 29 Nov 2022 05:22:55 GMT
Date: Tue, 29 Nov 2022 04:06:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4578
Expires: Tue, 29 Nov 2022 05:22:55 GMT
Date: Tue, 29 Nov 2022 04:06:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4578
Expires: Tue, 29 Nov 2022 05:22:55 GMT
Date: Tue, 29 Nov 2022 04:06:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4578
Expires: Tue, 29 Nov 2022 05:22:55 GMT
Date: Tue, 29 Nov 2022 04:06:37 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7479fbd-640b-4a65-ac00-893210a725b0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10445
x-amzn-requestid: fb9fc0d4-9f2e-4fab-a259-30300aacdc67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvuDGHaIAMFn_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc659-56786e9b754a48b30b5f79c7;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:06:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fkjT2irjF_lGK2IDx2nzFK13MgMQFXrtUIWv9lR9y-f6VT1bthJfyQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 14:31:14 GMT
age: 48923
etag: "12d90c36bd455b3b859fdb761b6ed49ea9f98f80"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10445
Md5:    c76e3c4cc159bda9b9e887fcd449ba51
Sha1:   12d90c36bd455b3b859fdb761b6ed49ea9f98f80
Sha256: fc2aad6b1ec65938249970e01a23d35a19cb9c9acbc3524586dd23f7bdaf9690
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9376
x-amzn-requestid: 265257bd-0177-4e63-879b-e9f99d0d16c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTZANFW2oAMFlyw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63846ecd-6767ccde3361eb593108603d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 08:18:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ntQPVFK12XqhVCMlaq0oIDx7k6e2xQdp1Y67W1nG6ayhG1XFekz5CQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 09:53:30 GMT
etag: "28c165bac8cf68cd1b0763c311aece00672cb3a5"
age: 65587
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9376
Md5:    cce27a1fe8c0222811a5ce0e7f89e1cb
Sha1:   28c165bac8cf68cd1b0763c311aece00672cb3a5
Sha256: 4530e34a47ef78c2c2b0d34a0511253a61f1927b192ab42f82361002ff10819e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uGocx-Lv8ieJVvICjnTGQZyzaQzjVdICX2RZaNyBTQvUKeIcNxaCJQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:38:02 GMT
age: 73715
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10176
Md5:    03014221d7f49b50ffc2d1b0a0e75457
Sha1:   772d86ad983042a728ee3490630a9cf1134ad0dd
Sha256: 81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 04:16:47 GMT
age: 85790
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4916
Md5:    83c1fedec73299637cc7dc47c48af758
Sha1:   2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
Sha256: 1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3004
x-amzn-requestid: 1e6e228a-fb73-4ed3-881b-6b0e5c8297c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrFRXoAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-45059338501b45d943d7e08c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rmBhEB-x2sOvI7XfEpZQ0-lXEDWZ4los77q017Im-Lwb32ZLA0Zvcg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 04:45:02 GMT
age: 84095
etag: "035a1b4a2a7889787532ec2637d5c21e06daf672"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3004
Md5:    22e7d3e11e78242383e452adb9299016
Sha1:   035a1b4a2a7889787532ec2637d5c21e06daf672
Sha256: 990f18423bafc9cc3daaa1bd1290313b6cb3d3a391f642d01fd6797ad4fc9ca8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5049b423-1bbd-4caa-891e-b46234fc1a6a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14856
x-amzn-requestid: 22ec3d7a-91f5-4b67-9621-a93b1e5d09e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYejFKxoAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d45c-34ffa40356825a715a7eb5cc;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:07:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GBeOUYK49uZurdS8v-Fmimf_GDcBqDR6hlZ7eRaMeGjs0iEeIvhIWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:34:57 GMT
age: 1900
etag: "e0617845684a8f7586b37e8be8976bbe6a93563e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14856
Md5:    df665be3ae1347cb9bb1443a6a1a33e6
Sha1:   e0617845684a8f7586b37e8be8976bbe6a93563e
Sha256: 15155df8643daa0408633922e15691a3b00b393ee433e1162cf031024e84d0a4