Overview

URL xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
IP66.29.146.165
ASNNAMECHEAP-NET
Location United States
Report completed2022-09-28 15:18:31 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-28 2 xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpm (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery. (...) Phishing
2022-09-28 2 xpodeal.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/buil (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/fami-buy-together/assets/css/frontend.css?ve (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-aw (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/fami-buy-together/assets/vendors/bootstrap/b (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/themes/ecome/assets/fonts/flaticon/flaticon.css?ver=1.5.8 Phishing
2022-09-28 2 xpodeal.com/wp-content/themes/ecome/assets/css/jquery.scrollbar.css?ver=1.5.8 Phishing
2022-09-28 2 xpodeal.com/wp-content/themes/ecome/assets/css/jquery.growl.min.css?ver=1.5.8 Phishing
2022-09-28 2 xpodeal.com/wp-content/themes/ecome/assets/css/chosen.min.css?ver=1.5.8 Phishing
2022-09-28 2 xpodeal.com/wp-content/themes/ecome/assets/css/pe-icon-7-stroke.css?ver=1.5.8 Phishing
2022-09-28 2 xpodeal.com/wp-content/themes/ecome/assets/css/slick.min.css?ver=1.5.8 Phishing
2022-09-28 2 xpodeal.com/wp-content/themes/ecome/style.css?ver=6.0.2 Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/fami-buy-together/assets/vendors/jquery-lazy (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/fami-buy-together/assets/js/frontend.js Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/fami-sales-popup/assets/js/frontend.js Phishing
2022-09-28 2 xpodeal.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11 Phishing
2022-09-28 2 xpodeal.com/wp-content/themes/ecome/assets/css/font-awesome.min.css?ver=1.5.8 Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-ad (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/cs (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/cs (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.s (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.mi (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/yith-woocommerce-quick-view/assets/js/fronte (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpm (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.pre (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.co (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ve (...) Phishing
2022-09-28 2 xpodeal.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?v (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (12)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-28 04:36:06 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-28 08:57:43 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-28 05:02:28 UTC 54.186.209.73
mnemonic passive DNS ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-09-28 13:14:04 UTC 104.18.32.68
mnemonic passive DNS ocsp.pki.goog (4) 175 2017-06-14 07:23:31 UTC 2022-09-28 04:36:20 UTC 142.250.74.3
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-28 11:00:28 UTC 143.204.55.35
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-28 04:36:09 UTC 23.36.76.226
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-28 05:13:47 UTC 143.204.55.110
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-09-28 11:46:46 UTC 142.250.74.10
mnemonic passive DNS xpodeal.com (54) 0 2021-10-08 04:37:34 UTC 2022-09-28 15:18:14 UTC 66.29.146.165 Unknown ranking
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-28 08:06:38 UTC 34.120.237.76
mnemonic passive DNS maps.googleapis.com (1) 33876 2014-10-18 20:19:59 UTC 2022-09-28 13:39:02 UTC 142.250.74.10


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 66.29.146.165

Date UQ / IDS / BL URL IP
2022-10-08 21:15:19 +0000
0 - 0 - 6 agileprism.com/wp-content/themes/courselog/as (...) 66.29.146.165
2022-10-05 15:38:04 +0000
0 - 0 - 49 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-10-05 15:38:04 +0000
0 - 0 - 42 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-10-05 15:38:02 +0000
0 - 0 - 55 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-10-01 19:10:00 +0000
0 - 0 - 52 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165

Last 5 reports on ASN: NAMECHEAP-NET

Date UQ / IDS / BL URL IP
2022-12-10 05:12:27 +0000
0 - 0 - 1 meatspace.ink/ 162.255.119.167
2022-12-10 05:12:26 +0000
0 - 0 - 1 www.bosnian.center/ 198.54.117.216
2022-12-10 05:12:08 +0000
0 - 0 - 1 www.pazseq.org/ 198.54.117.216
2022-12-10 04:44:16 +0000
0 - 0 - 9 scrapella.com/bemob/en 185.61.153.111
2022-12-10 04:43:54 +0000
0 - 0 - 8 scrapella.com/bemob/en/ 185.61.153.111

Last 5 reports on domain: xpodeal.com

Date UQ / IDS / BL URL IP
2022-10-26 15:30:46 +0000
0 - 0 - 2 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 99.83.154.118
2022-10-05 15:38:04 +0000
0 - 0 - 49 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-10-05 15:38:04 +0000
0 - 0 - 42 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-10-05 15:38:02 +0000
0 - 0 - 55 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165
2022-10-01 19:10:00 +0000
0 - 0 - 52 xpodeal.com/wp-content/email/ali/li/ali1/ali/ (...) 66.29.146.165

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-12-10 04:45:46 +0000
0 - 0 - 1 tgrrre.253f9.cz.wy5532.com/ 172.93.103.100
2022-12-10 04:44:43 +0000
0 - 0 - 1 cneer7dc5d.kg.wy5532.com/ 172.93.103.100
2022-12-10 04:23:38 +0000
0 - 0 - 1 wqwqw.145b8.vi.wy5532.com/ 81.171.22.7
2022-12-10 04:10:40 +0000
0 - 0 - 1 iuyuyt.318d4.be.wy5532.com/ 37.48.65.148
2022-12-10 04:09:40 +0000
0 - 0 - 1 re8eef.im.wy5532.com/ 37.48.65.148


JavaScript

Executed Scripts (20)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (79)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 14:35:09 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Zcmf3AhAiFbjTNelXYxVLmv0xFWvTnGNXtICgDnxcJxk3F6cMu10pg==
Age: 2591


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9FE6BEB1CB3851018168765A243B6DE69EC71D30770F8C2DCC57CAE7D9978CC1"
Last-Modified: Wed, 28 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17880
Expires: Wed, 28 Sep 2022 20:16:20 GMT
Date: Wed, 28 Sep 2022 15:18:20 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WLmF7MYhPa8bAh046NyYjCLiUfTKeXg1RVTMRHaBUJyNEGxMwxdOtA==
age: 35394
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         66.29.146.165
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
keep-alive: timeout=5, max=100
content-length: 707
date: Wed, 28 Sep 2022 15:18:20 GMT
server: LiteSpeed
location: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
x-turbo-charged-by: LiteSpeed


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 15:18:20 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 14:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 15:24:44 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Ie05N44wJ3YTIFgNGz_RO9HI0s6MJ0l41YCYpnLiGGXbz_Oo_IxQGg==
Age: 2928


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4761
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 15:18:21 GMT
Last-Modified: Wed, 28 Sep 2022 13:59:00 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yBsqvi8xktAfF0XIz9F/9w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.186.209.73
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nR1AJ0pt5GPBVaqgfgk1JKc+/qk=

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 15:18:22 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 16:33:08 GMT
Expires: Tue, 04 Oct 2022 16:33:07 GMT
Etag: "82f00850b201f0c33d4cb323fb1df7ab48149589"
Cache-Control: max-age=522284,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751d7383ae7a1c16-OSL

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6848
Expires: Wed, 28 Sep 2022 17:12:30 GMT
Date: Wed, 28 Sep 2022 15:18:22 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6848
Expires: Wed, 28 Sep 2022 17:12:30 GMT
Date: Wed, 28 Sep 2022 15:18:22 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6848
Expires: Wed, 28 Sep 2022 17:12:30 GMT
Date: Wed, 28 Sep 2022 15:18:22 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6848
Expires: Wed, 28 Sep 2022 17:12:30 GMT
Date: Wed, 28 Sep 2022 15:18:22 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fcxclGRP3zfWwb6opjYU2bL9VAq_mCSNjFtfp9iMLq6tbZu57EDqpQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:50:04 GMT
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
age: 62898
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13299
Md5:    ad84ed0c5b2090df7996007514cf1984
Sha1:   651600f2ef18cecc2e38370069bbb5e1d86f68e0
Sha256: a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13213
x-amzn-requestid: 09f8fee2-6830-4bec-af40-f2fb6547bc63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreH5poAMFdxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-0afbf5e01a013e6f0db53da1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CwkfEPDseHez7mArqwz8tmC3WHFwXAZF1OSColucaQ5vG2hvBIDWOg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:39:01 GMT
age: 63561
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13213
Md5:    62e68c3cd08dd94d910507512a67e85f
Sha1:   3d4fa8701f17e8818c25584ef5f04bfbee8440cd
Sha256: 058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8500
x-amzn-requestid: 626c21ec-f29b-4b69-b275-c22c864c2409
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3VmENnIAMFeTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c23-75eccc381fbd6e5d4ff59c06;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Eyy8qoYVCJbt6b6hTGJ-rOrYex9RuX1InyZbpHkeu9yQqPUEvowKcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:58 GMT
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
age: 62964
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8500
Md5:    6139c878a7d2bd32c61fc8287996eb5b
Sha1:   9c4692ea64832895fbd107d91f879728b6a440c7
Sha256: 3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7455
x-amzn-requestid: e99c9f33-b72a-4070-80cf-06fb4a87d1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZG4S6EcAoAMFX1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332a0df-04122b4a345dbc3f3918af98;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 07:06:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yprErfM7s7P7jJPJT-HQZ2Z_AAN4946Tjwyn1g4r7yiA6IF0yLdQTQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 05:22:11 GMT
age: 35771
etag: "b383135e2ebc23fe80eb0d594b198cb8c89327a5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7455
Md5:    ea3890e460356d6ecc3ba4e405ac2e9e
Sha1:   b383135e2ebc23fe80eb0d594b198cb8c89327a5
Sha256: 8fcff053ce6e5750136bf876bad5b2916935f13ea039912d977928b086f0a48b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pR4b1-lZZRMnWf-PdXFGXaHBCGAfOyp3AjeuCvtu5imWmf9N9l2wKQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:38 GMT
age: 62984
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12016
Md5:    4b794c6812cb546de0295e087ebe66a7
Sha1:   a54803cca7d3c509c195f65961e1110c8ec56f55
Sha256: 6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14464
x-amzn-requestid: 5cbbafdb-3f69-4ee2-9e46-c1ff0ed4ef14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPFiooAMFulA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-633a649700e040b91deadb64;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cNryG5vkxZuFATZfcNW9Z1-0teUBWLRyWslX1onwYlDCQBUjU2xVdA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:03 GMT
age: 63139
etag: "bc214d60be395d4cf753216ff8f9691c33d25e75"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14464
Md5:    aa5cad224dbddd71881bd07255beb4da
Sha1:   bc214d60be395d4cf753216ff8f9691c33d25e75
Sha256: 82935e52aa59929a448d17a5a2d58fda86bb5c25bf6628a05bd904f82517dada
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 15:18:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 15:18:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /maps/api/js?key=AIzaSyDKbHmwzL20wAxDfLRnTHeJ0I8uAq_hU_Y&ver=6.0.2 HTTP/1.1 
Host: maps.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 15:18:24 GMT
expires: Wed, 28 Sep 2022 15:48:24 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 54037
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=13
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2453)
Size:   54037
Md5:    5d84b3382959f4803b9b5776dfc5d408
Sha1:   acc8d6bb879dfe6118362d2d0e954fe6e51e604a
Sha256: 9ce75d82b6c9edde7afb8c2d851882abcea34d4b839501cd7679e4520c6a7f66
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 15:18:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 25 Aug 2022 00:12:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1754
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10435), with no line terminators
Size:   1754
Md5:    f7237084ac82ea6a4f5bf1448c3a2148
Sha1:   60457635a5e809ee1199c61090d8e33b91e8e1f2
Sha256: 18a1cb7f08c1ace52a79f46d73461ed03bf8cf5c9e8a3687eacc3e04f08e7a09
                                        
                                            GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Fri, 14 Aug 2020 14:33:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 670
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2630), with no line terminators
Size:   670
Md5:    6867f0990d852a8660a2d6f7a6675183
Sha1:   0240940bdf174107a14d132fa82b50b1445ff2f8
Sha256: 598b0ec44ac00e2f238bebe6077530ad4e6ac41f99122d495313302b380c2868

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 15:18:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Mon, 04 Jul 2022 21:40:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10946
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43771)
Size:   10946
Md5:    d45207ee05c1f0c57dfa075e61405ccd
Sha1:   a8d35143a2d828a739ea0fdde75f97d33621e7ec
Sha256: a9a4adbbcee31ec277f1bdd573eef97dc4341f29f2db3b5685a02dfe4d2fe9bb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 25 Aug 2022 00:12:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20885
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size:   20885
Md5:    b949966fb1c62c392babd0eb97a080ca
Sha1:   68842cbc531c38a01569da81eff51b1d358f7734
Sha256: c7804b0b1571c1986e8661aef7343839d797bb368222a537c996b062f1d9f695

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 22 Dec 2021 00:24:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1863
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9281), with no line terminators
Size:   1863
Md5:    dc91028c24ac0d7a6f4872a1320fa5e8
Sha1:   508ce388de37cd7cf6eedcea816789880589479e
Sha256: c019b08c90cf3573e8ea887626853781059d1af59698f7929cdc94c84054bddf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/fami-buy-together/assets/css/frontend.css?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Mon, 01 Aug 2022 16:27:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1569
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1569
Md5:    dfc156d6e3bcd35348d4298e76289570
Sha1:   2a68826831adcd377687888f7d10758405cd2be4
Sha256: f82b9e6e1953b7e0bbf48ad2e359ec69a6e98f4ead5c4cde179883fd45262160

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Mon, 11 Oct 2021 13:40:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   848
Md5:    c962ba8e7d42ff9da18392b41dad5151
Sha1:   7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
Sha256: 322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 18 Feb 2021 16:35:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6581
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30441)
Size:   6581
Md5:    3160c468e16b391c087428c6961602de
Sha1:   0e39e52d4887d3e52e7af98526a76a8b788738ed
Sha256: 4aaedd1cc4ee377bb8b5390fe56da25db79b9cf2d7e6c0d64c1bc8fc88436a95

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.13.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Sun, 19 Jun 2022 18:19:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4583
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (29337), with no line terminators
Size:   4583
Md5:    d57b8bb9da5c87b07c0bbfbf68eedfde
Sha1:   d85a4b62617cef8db8476076d9a2c4b5def0e226
Sha256: 0eccad1a79bcc73c4bd29ff253cd618161eb102c60cc755f42c55f7b85a1b763
                                        
                                            GET /wp-content/plugins/fami-buy-together/assets/vendors/bootstrap/bootstrap.min.css?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Mon, 01 Aug 2022 16:27:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18270
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   18270
Md5:    f8b5aa954f8c1610cf960ae8bcaf29ec
Sha1:   8f64d6aaa73e80e8099145753999d116bbf92c3d
Sha256: eca72e6abec248afebd85351f96dfffa00e30ff84fe868ad0d49abafe6f79a5a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/fami-sales-popup/assets/css/frontend.css?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Mon, 01 Aug 2022 16:27:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 475
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   475
Md5:    97cb75cfc1da711328ce7da1c5bb9f87
Sha1:   795186853bc79c95210889c599e36b0a828e63a9
Sha256: 5c4de4e57c001bd0268f6a51e3cc042a5a912679828d7cbb3f79dc6216689b35
                                        
                                            GET /wp-content/plugins/yith-woocommerce-compare/assets/css/colorbox.css?ver=1.4.21 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 31 Aug 2022 13:58:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1060
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1060
Md5:    263b70217f905feda4c01edde0b2737a
Sha1:   5ee9d3538967433d441e6aa357bf166724200523
Sha256: 1c82d8152cb3112b7df9b40a89ac28db20e51562266c13d392e8530fc06cd5ce

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/fonts/flaticon/flaticon.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 563
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   563
Md5:    4a3f6bd8206873b5ec0e029498d0c7d9
Sha1:   7a9e00fcf8bf94c2608048536337a5a2982924e1
Sha256: 96749f5be9c5fd41ed7bfdfaa53b89e06a872524e076d4d008a0cd9a412dab58

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/jquery.scrollbar.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2922
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (682)
Size:   2922
Md5:    a42096aa0bc38d9e5a8a16db3996faae
Sha1:   31f8ceb607349057299e0e7c429c70106582ea50
Sha256: 0f4c56205d31e27c4b7cdf71deb0ac34006a0a3cefff3a8261ae40f0ca18101d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/jquery.growl.min.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 628
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (2115), with no line terminators
Size:   628
Md5:    e3fd66bc807e1548cc7d82279332748e
Sha1:   9037100976dfdc33c17ee65265c982b5fdebac92
Sha256: 98c8fa66dc17a3dd0f94692815fe70b3df4440e355df5f1ea917bdea25211269

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/chosen.min.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1823
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9686), with no line terminators
Size:   1823
Md5:    2958ae46507bb7ec8e452d96dfd883c8
Sha1:   80a4829d2bc8ebed50375dfd0d64551946a9f0f6
Sha256: 8f24dd1e8cc5cec76d59a20d82f5178c6a8859d9ab184335b076fb1999d95bbb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/pe-icon-7-stroke.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1683
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1683
Md5:    eafd532a9d530cbb91a75bd98d77b8db
Sha1:   9f90575082e9a0359928a277e681e467e20b02c7
Sha256: a023d8531a89d481d1892417a04d983a4315ab508d8bc31eff0b044984bb2f16

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/magnific-popup.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1679
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1679
Md5:    ce4ce941a89517d4a19cf7cc266ae0d3
Sha1:   a7c0aad584b8941245d195702b17add09a76736e
Sha256: bbe19f2a0cae112988859afb12bed2ae6e494bb7608437d24273ceda23448503
                                        
                                            GET /wp-content/themes/ecome/assets/css/slick.min.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 397
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1330), with no line terminators
Size:   397
Md5:    ac85c45abcc30f4d521928445ee2b369
Sha1:   66b69b56dfe4aebcdac67143b2a68af4e56af938
Sha256: deab7d6997b99829c6a9434002f551f70aa16b55186fa961e8803da53e3c5d3e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/style.css?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Sun, 16 May 2021 18:11:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 447
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (311)
Size:   447
Md5:    c21cce3033a53bf919417a764da2db46
Sha1:   10093a23a0a1df28a960dd2791f2fe933c4bbd0d
Sha256: aadd1e224f122cc9ed23a25dc48b93234a3ea37f236a2744844f6a7a07aa89cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/fami-buy-together/assets/vendors/jquery-lazy/jquery.lazy.min.js HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Mon, 01 Aug 2022 16:27:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2206
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4890)
Size:   2206
Md5:    f4e74ab6f9031ba1a684515ededc6b69
Sha1:   63c0630bbafec0944be7711333836bc6d0cce63e
Sha256: ab2a7343e8743ec8ee62deb447aac87a1e528e92f1a609515b468907ab40b8c6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/fami-buy-together/assets/js/frontend.js HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Mon, 01 Aug 2022 16:27:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2538
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   2538
Md5:    3655a952f540b1aeed24d2019587b010
Sha1:   07de3e9836d30a9cb800e1a20ea4ea69260eb47c
Sha256: 83f8b53385240a52b8cbd01e2c085f245533cf7ca776221714fed5d9649bf493

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/fami-sales-popup/assets/js/frontend.js HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Mon, 01 Aug 2022 16:27:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1168
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1168
Md5:    a8540f20d16c7ed0a95fca629542f1c0
Sha1:   5ab2fe6aa08b3050b0e1d8b3561ccc160ef04e2e
Sha256: 113d6b2523198c8a921bc12fbb8262e27ebb5293d01c8e01a0f5c175c6e5a569

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/framework/includes/megamenu/css/frontend.css?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 820
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   820
Md5:    b9a0e86f0f568c9ce0e5afafd2187756
Sha1:   c2d8102638a5f3e7f50fd8c4d5fcbdc095921c0e
Sha256: 6810bf8f1fad263198bc93aa2bf238a5d4cd69cfaa653929b3513fcc161c488e
                                        
                                            GET /wp-content/plugins/ecome-toolkit/includes/admin/live-search/live-search.js?ver=1.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Mon, 01 Aug 2022 16:27:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1049
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (448), with CRLF line terminators
Size:   1049
Md5:    0fdf93ef794130a8ff86d9d37d3c79db
Sha1:   318c55f0470c22ea2851f91b8e0b7df2fe65274b
Sha256: 7795dae495cecc47118b46891c3a5875ad0a8ba4fde6dbae3c83dbf126da4b67
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 18 Nov 2020 19:36:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   3995
Md5:    7e058b51f939eacfa31cdface14dded5
Sha1:   9d732e5afdeb42edef9e1b9631b7e95e054787cc
Sha256: 4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3245
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9115)
Size:   3245
Md5:    66c388e07cfb57895688b3347ab7290b
Sha1:   f23bd7a31995b3b19924575f2afa297a29257856
Sha256: 3971f3ab5179d1f4f91d2c102f27c2bf1dac2c04e2f62ff3eae3ebfa8c28494e
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 27 Jul 2022 16:46:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12482
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size:   12482
Md5:    dc07606c6f1719f22e60b5a66b6c83ee
Sha1:   0007da6b48940b57407d4345d997cdea4b062fc4
Sha256: dfc4458610794e60eb66675406a99ffbfc5ece7ac2b6cc172050c32621aaf31a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/font-awesome.min.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 06 Sep 2018 19:44:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6583
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30758), with no line terminators
Size:   6583
Md5:    7bf2a039d8c1c8bdac9e771b009ad318
Sha1:   b70aae17d4b99d0ef67df4a21363423e1aff2543
Sha256: 7618d0c2a6b4303a9223b40b5d4757131b8413fc8ecc0a7dc5a07c3402a8cc63

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/ecome/assets/css/style.css?ver=1.5.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Tue, 08 Jun 2021 04:20:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36851
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (904)
Size:   36851
Md5:    c24ef7b09a3630fb50e8429a736c1235
Sha1:   976f993d3c37df224835a91459e3903a32acf91e
Sha256: 33a0ac1654e31a9c11fdeb731037870ff5a9c314ceedff8be6f35bc1fdc2efbb
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 321
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   321
Md5:    159e4731a0ffba6862ee2a1bbcc8a805
Sha1:   7fb2a5ca7a80d96187fda406d0a1b7db23867fa7
Sha256: c6f102a76dc397d94cfbadcd292d64bb45acaa29b0391b41a9f1cc68c2274ae2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.4 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 974
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (3037), with no line terminators
Size:   974
Md5:    fd8b126d3265cc6afc5b672273f78531
Sha1:   5058e579885cccf36c44bdeb5b7318bd75952af9
Sha256: 72da6709db061566cb5f67322f674a77f68acb69ac6181d37f9ca4a1bb7287b7
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=6.9.4 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 21 Oct 2020 03:38:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 857
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3287), with no line terminators
Size:   857
Md5:    f91b0cde1c3ae9c4865dbe50b94b7e96
Sha1:   26c7baee70eca5d442f5f30a7c0ccd0a6187c105
Sha256: 224aecccc666e90a5607c1ee584952f275cae6c6f8cad50f9d9834d7499c4bd9
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3952
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (34217)
Size:   3952
Md5:    e00926a3c189b2f2396d96d90ac77785
Sha1:   f61219b1a1e4924051c4e5c7acb70cd925173bdb
Sha256: 30a6fd0e5a3610d5074e2a634513348ff8a5a92510d45c6c2621d6bda6b2fd27

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Tue, 12 Apr 2022 15:26:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   4619
Md5:    0232689bd203f330529b36a437f41a68
Sha1:   9046583f7469ad38297969f10a9513eb895d5316
Sha256: feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11779
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (56243)
Size:   11779
Md5:    bc62c79810f6d9ff2023a3ce01fb17e8
Sha1:   c176d3254f491913c5567d35c85d0d02c6c9300a
Sha256: abe49ff5c57ab5013f8eac78076ef149837282fce42df3f0f526cb440e3d155b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 18 Feb 2021 16:35:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3500
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Size:   3500
Md5:    8e3bd2af5dfce9709733e4adabb032ad
Sha1:   94aa210458d7103cecb401ef0a71100ea48c2ed7
Sha256: a24331f6cb5f0d263a8aa7a78e9105ec5956f82162f30d718fd23fb325d7b669

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=6.9.4 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 11 Dec 2019 07:19:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1728
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7887), with no line terminators
Size:   1728
Md5:    494afef7fdbd631433fe8b40049c9733
Sha1:   e927f43e6ee2f70854247363612dab1107c514ad
Sha256: 54b56f475540254274fa193380ab680e39913768d9a227660bd571bba3456b7f
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.4 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 24 Nov 2021 03:30:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2938), with no line terminators
Size:   934
Md5:    cf25dd071a208312bdc07f34d2cee027
Sha1:   76119563119eaae392ecc8903c989d98d0b93002
Sha256: 8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 01 Sep 2022 12:44:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3689
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (12211), with no line terminators
Size:   3689
Md5:    b3777786fbf0ac18aa59c687154a9db8
Sha1:   3f24b0cfae49dc3e70f149edaf203a661cd59c88
Sha256: 8e3993f3b5eb33611a7c40d80d1cb048b4329ebb9ad0d9e8eb583e48fda70bb5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Tue, 18 May 2021 21:00:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2139), with no line terminators
Size:   677
Md5:    a43fc0dde8fdd69656ad0957e62849c7
Sha1:   4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
Sha256: 1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 01 Sep 2022 12:44:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2799
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9680), with no line terminators
Size:   2799
Md5:    8a91034fce0e4a2464d2170d38d31382
Sha1:   f00c20cfcbd136ee9aa20d07085c10f470548fe4
Sha256: 1a8f0bcd2b76caf977b08ed30bdd29eb77405ca4c1fe2315b41f8fe2542f1528

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 20 Jan 2021 04:55:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1668)
Size:   899
Md5:    22d65ba38528349e705d912ce26bf8ac
Sha1:   c89ba006009043d93b88ff155b4fec8797330550
Sha256: 6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc892aae9-4381-46ed-9dd8-bd581d7389ee.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8621
x-amzn-requestid: 5a828651-41c2-4aa0-931d-6522098a8438
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZASUWEYvIAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ffdb5-5ace75523a98a9237fabca8f;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 07:05:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2a-Ip86QEcmn31zRYLuD9dtCXduTOd0OZO0JdpfbTvJK7Z7wRGxEaQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:21:35 GMT
age: 61014
etag: "883e61d46ef6c09013724aa7b8f560272ee08574"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8621
Md5:    59163c799f3d48e74abdd285ee615119
Sha1:   883e61d46ef6c09013724aa7b8f560272ee08574
Sha256: e1bafc575ff4274b210bee481a8e73c065de5bc14ddf46c269ef91eda0df8d84
                                        
                                            GET /wp-content/plugins/yith-woocommerce-compare/assets/js/woocompare.min.js?ver=2.18.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 31 Aug 2022 13:58:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1201
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4602), with no line terminators
Size:   1201
Md5:    6a5cf02c457796835cd28c6197b3b064
Sha1:   c58cdd6ea85cc624e313c7cfec9ed2d27e609703
Sha256: d596e6c774b8f750e18905d4279d8dc1adbe532b7b6faf90241e01eede68d44a
                                        
                                            GET /wp-content/plugins/yith-woocommerce-quick-view/assets/js/frontend.min.js?ver=1.19.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 15 Apr 2021 13:49:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 875
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2014), with CRLF line terminators
Size:   875
Md5:    5720e01542059f32467265876b344f35
Sha1:   7c7fc90b634d60337fb4beb8fad6155bb0c0b276
Sha256: 61b47b87d57ef0ae60ad79e8c3f3cd7fa16768aeff18768bbdda1066bdaa7f8a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         66.29.146.165
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://xpodeal.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: public,max-age=3600
x-litespeed-tag: 520_HTTP.404,520_404,520_URL.e26b59d909a0b63f716805705183b4c4,520_
x-litespeed-cache: miss
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 15:18:23 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (21275), with CRLF, LF line terminators
Size:   34930
Md5:    01a8198873980e76b19b04fcd096f5e1
Sha1:   0cf531ad0840bcbbbc1c5d5a10241bbc047a14d6
Sha256: 722b523f2d6f4c68f3f5b903d6d91cf05b61cbeeee70fe560d4c6bceba905d7b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Tue, 19 Jul 2022 23:16:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5350
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (21310), with no line terminators
Size:   5350
Md5:    33081d75af44148dbfd85f7f8f4382ff
Sha1:   a2bac4c76a6a40839a6682df66eb40cd8c4d470d
Sha256: b8dad2c0f7d74cdfcf2b9f96a17f72886b64edab3e392f7d72df15e1c1ac3119

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/yith-woocommerce-compare/assets/js/jquery.colorbox-min.js?ver=1.4.21 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 31 Aug 2022 13:58:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4457
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11827)
Size:   4457
Md5:    ad837a8d18fb12f3db5d03cef2956caa
Sha1:   520179c7b4cd32f94386f4576e439e3689e18747
Sha256: b6618604f7dadbad0b877cf727356465919707ceec7965c340adeca61d824b36

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Thu, 11 Mar 2021 01:37:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30273
Md5:    34f918ada1fe4f01c5a4b90065bbc37a
Sha1:   a731f6ce2d413805e39ae45994012b1bd5ea1e2b
Sha256: eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 27 Jul 2022 16:46:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 45472
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 27 Jul 2022 16:46:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 91616
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Rubik%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%7CLato%3A300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%7CRoboto%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 15:18:24 GMT
date: Wed, 28 Sep 2022 15:18:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2018/03/logo-1.png HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 03 Aug 2022 22:12:17 GMT
accept-ranges: bytes
content-length: 33352
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0 HTTP/1.1 
Host: xpodeal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xpodeal.com/wp-content/email/ali/li/ali1/ali/login.php?email=general@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         66.29.146.165
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 05 Oct 2022 15:18:24 GMT
last-modified: Wed, 27 Jul 2022 16:46:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 42005
date: Wed, 28 Sep 2022 15:18:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing