Report - trk-mkt.tason.com/CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com

Report Overview

Submitted URL
trk-mkt.tason.com/CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com
IP
119.207.76.97
ASN
#4766 Korea Telecom
Submitted
2024-05-02 19:08:48
Access
public
Website Title
Ma&lbox S&gn-in
Final URL
pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
webmail.sotozen.us	unknown	2005-04-07	2021-02-26	2024-03-12	8.6 kB	113 kB	54.176.87.174
trk-mkt.tason.com	unknown	2002-06-26	2017-07-08	2024-04-23	3.4 kB	6.3 kB	119.207.76.97
googleads.g.doubleclick.net	42	1996-01-16	2021-02-20	2024-05-02	1.9 kB	45 kB	142.250.74.162
googleweblight.com	76814	2015-03-27	2015-05-26	2024-04-24	1.2 kB	47 kB	142.250.74.97
pub-e9086ba8723a4914898b03fa9153678b.r2.dev	unknown	unknown	No data	No data	1.1 kB	86 kB	104.18.3.35
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-05-02	458 B	31 kB	142.250.74.138

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com	84 B	2023-03-07	2024-05-17
Pretty URL pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:37 Last Seen2024-05-17 08:23:45 Times Seen1392 Hash f88baf75b8e07dd7ec741e96546bc4f7 a74b22312f7ce6ea751190a32f188b305f2e71e3 1e5f5c8697f7a5934a4e88d298805feb7272c5ae7b1a357b44ec0b5289b60a50 Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js	86 kB	2023-03-07	2024-05-17
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-17 11:11:59 Times Seen393247 Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e Loading...

	pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com	20 kB	2024-05-02	2024-05-02
Pretty URL pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-02 21:08:55 Last Seen2024-05-02 21:08:55 Times Seen1 Hash 06bcfa74b7ad79bda50c163ea13e31ad df38f3a16c81363ef1ea4f6541bad23ab8a1a8ea a63648651e45a4db6fd75e3ac47c09974d970e3cbd8a1ca84e92281c5e7ae7cb Loading...

	pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com	4.6 kB	2024-05-02	2024-05-02
Pretty URL pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-02 21:08:55 Last Seen2024-05-02 21:08:55 Times Seen1 Hash eed6f7ba755a367c9fe253db869b19ec 236248c708230b9e4e4747dbb7242ce1663d254f 1aa80d95b14505f9aeca74a4f3ad91fc35f4c584c1380295ebc8da083f62acf8 Loading...

HTTP Transactions (25)

	URL	IP	Response	Size
	trk-mkt.tason.com/CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html	119.207.76.97		2.0 kB
URL trk-mkt.tason.com/CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP 119.207.76.97:0 ASN #4766 Korea Telecom File type HTML document, ASCII text Size 2.0 kB (2041 bytes) Hash bcd41a2ea5801f47dc03936723259e07 f46acc833fde74b0a2e1293a4a57af0ceb63dda9 29e5e2228e53b28cfa5e0b53ca0a5e0819ce44349283e87c59f0ba02522f59f1 HTTP Headers GET /CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html HTTP/1.1 Host: trk-mkt.tason.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:23 GMT Server: Postman-WEB/5.0 Last-Modified: Wed, 02 Apr 2014 01:01:04 GMT ETag: "2ac4006-7f9-4f604d19ef400" Accept-Ranges: bytes Content-Length: 2041 Access-Control-Allow-Headers: Authorization, Content-Type, X-Requested-With, X-Authorization Connection: close Content-Type: text/html Set-Cookie: SVID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/ Cache-control: private`

	trk-mkt.tason.com/img/no_img.gif	119.207.76.97		811 B
URL trk-mkt.tason.com/img/no_img.gif IP 119.207.76.97:0 ASN #4766 Korea Telecom File type GIF image data, version 89a, 1 x 2 Size 811 B (811 bytes) Hash acb27a3cfef252caedea19b812feb1e9 0c1349b390e9cb2064a4bed26edea83ebe14897d f48bb48b6962309f3c3a07f7c1494d98ef94959f1cd320b7390da795e35a7cab HTTP Headers GET /img/no_img.gif HTTP/1.1 Host: trk-mkt.tason.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://trk-mkt.tason.com/CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:24 GMT Server: Postman-WEB/5.0 Last-Modified: Tue, 27 Nov 2012 08:23:25 GMT ETag: "2b44abd-32b-4cf75c3815940" Accept-Ranges: bytes Content-Length: 811 Expires: Thu, 02 May 2024 19:08:24 GMT Access-Control-Allow-Headers: Authorization, Content-Type, X-Requested-With, X-Authorization Connection: close Content-Type: image/gif Set-Cookie: SVID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/ Cache-Control: max-age=2592000, public, private`

	googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html	142.250.74.162		0 B
URL googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP 142.250.74.162:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html HTTP/1.1 Host: googleads.g.doubleclick.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://trk-mkt.tason.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" timing-allow-origin: * cross-origin-resource-policy: cross-origin accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64 cache-control: private location: https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html content-type: text/html; charset=UTF-8 x-content-type-options: nosniff date: Thu, 02 May 2024 19:08:24 GMT server: cafe content-length: 0 x-xss-protection: 0 set-cookie: IDE=AHWqTUkiW5vKzdD8_aVkaqyawprwnuWxYxNaLfrzLnVPP0OLWqFgxMFttOrmD9mQvPI; expires=Sat, 02-May-2026 19:08:24 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html	142.250.74.97		0 B
URL googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP 142.250.74.97:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html HTTP/1.1 Host: googleweblight.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://trk-mkt.tason.com/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 301 Moved Permanently content-type: application/binary vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Thu, 02 May 2024 19:08:25 GMT location: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." content-security-policy: require-trusted-types-for 'script';report-uri /_/WebLightSmartphoneHttp/cspreport, script-src 'nonce-VKcfTM9UiDdaAzf19AdUTw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/WebLightSmartphoneHttp/cspreport;worker-src 'self' cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: same-site content-security-policy-report-only: script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://pagead2.googlesyndication.com https://adservice.google.com https://partner.googleadservices.com https://tpc.googlesyndication.com https://fundingchoicesmessages.google.com;report-uri /_/WebLightSmartphoneHttp/cspreport/allowlist permissions-policy: ch-ua-arch=, ch-ua-bitness=, ch-ua-full-version=, ch-ua-full-version-list=, ch-ua-model=, ch-ua-wow64=, ch-ua-form-factor=, ch-ua-platform=, ch-ua-platform-version=* accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version server: ESF content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff set-cookie: NID=513=QizE2WJIoeOQNXuEmAPXYS01lL45SA6dCrb2rp8CyLemKZfazgtFYCkt8RnDZ6UCNvBr1CaGxDLGJcWsqa49kVtrq1_Ex2iwe9g9z3-kQG0s2mg3HZY-dCSHbJbAVx6NtYwTNLIlvN1MC9J0V0VoznDEMzZMWGKspw1UN9kRXHw; expires=Fri, 01-Nov-2024 19:08:25 GMT; path=/; domain=.googleweblight.com; HttpOnly alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html	104.18.3.35		43 kB
URL pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP 104.18.3.35:0 ASN #13335 CLOUDFLARENET File type JavaScript source, Unicode text, UTF-8 text, with very long lines (11179), with CRLF line terminators Size 43 kB (42587 bytes) Hash b2213d5fc5bc4c649e456f253ae3ed7a 405d587af1ce29b5eafc474afdaa35a43a9e7e3b 29e03bb19bd19d4245459ae9750145ffd19c0d975587d5f2708d9415f06da5a7 HTTP Headers GET /1oAJr1u08UNTa5i8.html HTTP/1.1 Host: pub-e9086ba8723a4914898b03fa9153678b.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://trk-mkt.tason.com/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:26 GMT Content-Type: text/html Content-Length: 42587 Connection: keep-alive Accept-Ranges: bytes ETag: "b2213d5fc5bc4c649e456f253ae3ed7a" Last-Modified: Wed, 01 May 2024 00:34:41 GMT Vary: Accept-Encoding Server: cloudflare CF-RAY: 87da4cc4886bb4fd-OSL`

	ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js	142.250.74.138	200 OK	30 kB
URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP 142.250.74.138:443 ASN #15169 GOOGLE Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT File type JavaScript source, ASCII text, with very long lines (32065) Size 30 kB (30028 bytes) Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e HTTP Headers `GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 30028 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 02 May 2024 02:01:31 GMT expires: Fri, 02 May 2025 02:01:31 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 last-modified: Tue, 03 Mar 2020 19:15:00 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding age: 61615 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/open_sans.min.css	54.176.87.174	200 OK	522 B
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/open_sans.min.css IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type ASCII text, with very long lines (6358), with no line terminators Size 522 B (522 bytes) Hash 952b5c93a75a89c458fe5093480dd1bc 564d17e569cb59cf7043d7f777727c19a3cbda3a 17781767b9edf1ebdde3529494d5cb3d8403702893db10258bedd3f9b8002f20 HTTP Headers GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/open_sans.min.css HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:27 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: text/css Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:27 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Encoding: gzip Content-Length: 522 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive`

	webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css	54.176.87.174	200 OK	33 kB
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type ASCII text, with very long lines (35968) Size 33 kB (33187 bytes) Hash ba0da0937bfe0ce3ce7ce4a2c65dbab4 53c5b3e575f013fd0858fafd7a331299f89c7723 2490545a5f4c11994593128d9de855ea2e1ded0efea1ab56c31a23f674125bb8 HTTP Headers `GET /cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:27 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: text/css Last-Modified: Wed, 05 Jul 2023 16:25:17 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:27 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Encoding: gzip Content-Length: 33187 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive`

	webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/webmail-logo.svg	54.176.87.174	200 OK	2.4 kB
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/webmail-logo.svg IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type SVG Scalable Vector Graphics image Size 2.4 kB (2399 bytes) Hash bc0c956653325b9e694d4dd1dfb78020 e1196e4db68ed573355ade966152a084581b40ec 998cd48cdc0414f694d0a3a299dd2beb1134769d5666c7e5567e7d20b4174ef8 HTTP Headers GET /cPanel_magic_revision_1688567669/unprotected/cpanel/images/webmail-logo.svg HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:27 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: image/svg+xml Last-Modified: Wed, 05 Jul 2023 14:34:29 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:27 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Encoding: gzip Content-Length: 2399 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive`

	webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/icon-username.png	54.176.87.174	200 OK	320 B
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/icon-username.png IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced Size 320 B (320 bytes) Hash 07ff84f8c855e5fe9d510ff5c9a4b1e4 11c262053e2b9be57d1dba7cb3d916ef041a0e50 05ce0f813e6236158fa1d115faba62cd2041aab1878cac0960a0f45575cece1e HTTP Headers GET /cPanel_magic_revision_1688567669/unprotected/cpanel/images/icon-username.png HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:27 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: image/png Last-Modified: Wed, 05 Jul 2023 14:34:29 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:27 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Length: 320 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive`

	webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/icon-password.png	54.176.87.174	200 OK	450 B
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/icon-password.png IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced Size 450 B (450 bytes) Hash 7ac1cefcb7eab93c6d6981ecde6c1635 1523f8cb80ab19108549d0b7db31a58b71c05d39 a02998df88a6efb0baa526796b2b682ce9fdd6471ceb19170b326320f22f7053 HTTP Headers GET /cPanel_magic_revision_1688567669/unprotected/cpanel/images/icon-password.png HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:27 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: image/png Last-Modified: Wed, 05 Jul 2023 14:34:29 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:27 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Length: 450 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive`

	webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-error.png	54.176.87.174	200 OK	1.0 kB
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-error.png IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced Size 1.0 kB (1026 bytes) Hash a3265cc598ae28633c060889e790f80c 57530d6996c8f36711ef05681474b8f63d4184b3 bcaf01928e5c7246ab0bb7e83f609b485a67a5e442d3dd94539a883c11fb70cd HTTP Headers GET /cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-error.png HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:27 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: image/png Last-Modified: Wed, 05 Jul 2023 14:34:29 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:27 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Length: 1026 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive`

	webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-info.png	54.176.87.174	200 OK	976 B
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-info.png IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced Size 976 B (976 bytes) Hash 14146cf832470d9beca95a708a1d6f8d d4b506f92876baea69409f3a78c4718757a53b33 95f8a142dd96c310afeb75329ef504f162ab3102a81fc07f20b268361990f526 HTTP Headers GET /cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-info.png HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:27 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: image/png Last-Modified: Wed, 05 Jul 2023 14:34:29 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:27 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Length: 976 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive`

	webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-success.png	54.176.87.174	200 OK	962 B
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-success.png IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced Size 962 B (962 bytes) Hash 0a0ec2a6468d4d1aa3fc2baa70271ac8 a31fb01790aca8dc1976450e4234cb6ccc328956 cafbe3036533fe094931f5745f8cb9962a34409522e93d63ac8427acb9a02c79 HTTP Headers GET /cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-success.png HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:27 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: image/png Last-Modified: Wed, 05 Jul 2023 14:34:29 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:27 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Length: 962 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive`

	webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/warning.png	54.176.87.174	200 OK	1.1 kB
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/warning.png IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced Size 1.1 kB (1060 bytes) Hash a64b8c7407bf94cc4448cb210bb882e7 a526cf52b2c5b6c2d0409b886de4aa968000fcd8 7ecb82019606d891c5197d2f8ba24ec323d9b10a089facc82d089ff1ec3d399b HTTP Headers GET /cPanel_magic_revision_1688567669/unprotected/cpanel/images/warning.png HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:27 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: image/png Last-Modified: Wed, 05 Jul 2023 14:34:29 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:27 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Length: 1060 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive`

	webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.woff	54.176.87.174	200 OK	24 kB
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.woff IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type Web Open Font Format, TrueType, length 22660, version 1.0 Size 24 kB (24264 bytes) Hash b60a5a1801bdc4c26dbdfefa0f14e6d0 eea7261e765344aa3356667e9ea36229496603f3 85df4dde6a09a4dcec068f8a75b4f7f7cbae58ec66f3f7154fafe06a5c2cde17 HTTP Headers GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.woff HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev DNT: 1 Connection: keep-alive Referer: https://webmail.sotozen.us/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:27 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: application/font-woff Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:27 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Length: 22660 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive`

	webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.ttf	54.176.87.174	200 OK	8.2 kB
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.ttf IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type TrueType Font data, 19 tables, 1st "FFTM" Size 8.2 kB (8192 bytes) Hash 3b0e714628e90763fd2f9ff2f9e11f98 f1d7f483a77d77b97eae9cfc9784461d0f95f707 748472fb9010292fe10a7931d087d0c44606d7c6fa7a9913adb5f3fa34890d47 HTTP Headers GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.ttf HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev DNT: 1 Connection: keep-alive Referer: https://webmail.sotozen.us/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:28 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: application/octet-stream Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:28 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Length: 38452 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive`

	pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html	104.18.3.35	200 OK	43 kB
URL User Request GET HTTP/1.1 pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type Size 43 kB (42587 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /1oAJr1u08UNTa5i8.html HTTP/1.1 Host: pub-e9086ba8723a4914898b03fa9153678b.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://trk-mkt.tason.com/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:26 GMT Content-Type: text/html Content-Length: 42587 Connection: keep-alive Accept-Ranges: bytes ETag: "b2213d5fc5bc4c649e456f253ae3ed7a" Last-Modified: Wed, 01 May 2024 00:34:41 GMT Vary: Accept-Encoding Server: cloudflare CF-RAY: 87da4cc4886bb4fd-OSL`

	webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.ttf	54.176.87.174	200 OK	8.2 kB
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.ttf IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type TrueType Font data, 19 tables, 1st "FFTM" Size 8.2 kB (8192 bytes) Hash eaf3bbed9dc2b80d6e5a15b689d0c164 f36374f6584eb2f342d9b13905cadd833e732155 6da36c8a97a6e3e86586fad7b0fce799c6bd427b1e45c2c9cd32e2f093ddac41 HTTP Headers GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.ttf HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev DNT: 1 Connection: keep-alive Referer: https://webmail.sotozen.us/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:28 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: application/octet-stream Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:28 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Length: 38232 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive`

	webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.ttf	54.176.87.174	200 OK	8.2 kB
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.ttf IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type TrueType Font data, 19 tables, 1st "FFTM" Size 8.2 kB (8192 bytes) Hash 049cd8df45019efe856b8a52a9cd1d4e cbcdec8f954c6b394becd527b469876825eb4bea 822f55671df5141b30fc982a326c0b36230ee5912d6f7d9aa58297791ba0ba47 HTTP Headers GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.ttf HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev DNT: 1 Connection: keep-alive Referer: https://webmail.sotozen.us/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:28 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: application/octet-stream Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:28 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Length: 39476 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive`

	trk-mkt.tason.com/CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html	119.207.76.97	200 OK	2.0 kB
URL User Request GET HTTP/1.1 trk-mkt.tason.com/CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP 119.207.76.97:443 ASN #4766 Korea Telecom Certificate IssuerGlobalSign nv-sa Subject.tason.com FingerprintAB:58:5C:D7:B1:8F:41:A7:92:F3:2F:38:93:29:42:E9:00:BF:50:5C ValidityMon, 10 Jul 2023 03:43:39 GMT - Sat, 10 Aug 2024 03:43:38 GMT File type HTML document, ASCII text, with very long lines (2197), with no line terminators Size 2.0 kB (2041 bytes) Hash b4a6c2be3dd32c917730db75d0913224 f0f8b4e4544710ee31b21e7f316d3a22527f5a51 9ebc01808627cd06a4a66acb12e2740ef8ed033406d63543af0af7955f5e4676 HTTP Headers GET /CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html HTTP/1.1 Host: trk-mkt.tason.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:23 GMT Server: Postman-WEB/5.0 Last-Modified: Wed, 02 Apr 2014 01:01:04 GMT ETag: "2ac4006-7f9-4f604d19ef400" Accept-Ranges: bytes Content-Length: 2041 Access-Control-Allow-Headers: Authorization, Content-Type, X-Requested-With, X-Authorization Connection: close Content-Type: text/html Set-Cookie: SVID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/ Cache-control: private`

	googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html	142.250.74.97	301 Moved Permanently	43 kB
URL User Request GET HTTP/2 googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP 142.250.74.97:443 ASN #15169 GOOGLE Certificate IssuerGoogle Trust Services LLC Subject.googleusercontent.com FingerprintD1:64:F1:6B:AC:65:FC:D3:5F:42:54:08:AE:BC:0A:AC:D1:EA:88:2C ValidityMon, 08 Apr 2024 07:27:47 GMT - Mon, 01 Jul 2024 07:27:46 GMT File type Size 43 kB (42587 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html HTTP/1.1 Host: googleweblight.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://trk-mkt.tason.com/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 301 Moved Permanently content-type: application/binary vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Thu, 02 May 2024 19:08:25 GMT location: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." content-security-policy: require-trusted-types-for 'script';report-uri /_/WebLightSmartphoneHttp/cspreport, script-src 'nonce-VKcfTM9UiDdaAzf19AdUTw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/WebLightSmartphoneHttp/cspreport;worker-src 'self' cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: same-site content-security-policy-report-only: script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://pagead2.googlesyndication.com https://adservice.google.com https://partner.googleadservices.com https://tpc.googlesyndication.com https://fundingchoicesmessages.google.com;report-uri /_/WebLightSmartphoneHttp/cspreport/allowlist permissions-policy: ch-ua-arch=, ch-ua-bitness=, ch-ua-full-version=, ch-ua-full-version-list=, ch-ua-model=, ch-ua-wow64=, ch-ua-form-factor=, ch-ua-platform=, ch-ua-platform-version= accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version server: ESF content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff set-cookie: NID=513=QizE2WJIoeOQNXuEmAPXYS01lL45SA6dCrb2rp8CyLemKZfazgtFYCkt8RnDZ6UCNvBr1CaGxDLGJcWsqa49kVtrq1_Ex2iwe9g9z3-kQG0s2mg3HZY-dCSHbJbAVx6NtYwTNLIlvN1MC9J0V0VoznDEMzZMWGKspw1UN9kRXHw; expires=Fri, 01-Nov-2024 19:08:25 GMT; path=/; domain=.googleweblight.com; HttpOnly alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.woff	54.176.87.174	200 OK	8.2 kB
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.woff IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type Web Open Font Format, TrueType, length 22908, version 1.0 Size 8.2 kB (8192 bytes) Hash c4d06b4e16680f41609f41253544d6ea c486e5b7651528cfda6c13902671fafa4802cb41 85fac009ac02a1a61abe79fc1947d115ae35be2e7d4366e00b84ea7fec3da698 HTTP Headers GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.woff HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev DNT: 1 Connection: keep-alive Referer: https://webmail.sotozen.us/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:27 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: application/font-woff Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:27 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Length: 22908 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive`

	webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.woff	54.176.87.174	200 OK	8.2 kB
URL GET HTTP/1.1 webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.woff IP 54.176.87.174:443 ASN #16509 AMAZON-02 Requested by https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com Certificate IssuerLet's Encrypt Subject.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT File type Web Open Font Format, TrueType, length 22432, version 1.0 Size 8.2 kB (8192 bytes) Hash bfe716101e5513b83df592d30305a75c e015f6776c06604d98b8c1b4b0ce2a206509fe55 9964516688600a52bc319dfc514f5df0cd02e7d65ca10857768b4e1634b25437 HTTP Headers GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.woff HTTP/1.1 Host: webmail.sotozen.us User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev DNT: 1 Connection: keep-alive Referer: https://webmail.sotozen.us/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 02 May 2024 19:08:27 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubDomains; preload Content-Type: application/font-woff Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT Cache-Control: max-age=5184000, public Expires: Mon, 01 Jul 2024 19:08:27 GMT X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Length: 22432 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive`

	googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html	142.250.74.162	302 Found	43 kB
URL User Request GET HTTP/2 googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP 142.250.74.162:443 ASN #15169 GOOGLE Certificate IssuerGoogle Trust Services LLC Subject.g.doubleclick.net Fingerprint30:89:D4:C8:96:C6:D4:7B:F7:49:8D:DB:57:A1:D2:5A:D1:D3:D1:B4 ValidityMon, 08 Apr 2024 06:34:54 GMT - Mon, 01 Jul 2024 06:34:53 GMT File type Size 43 kB (42587 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html HTTP/1.1 Host: googleads.g.doubleclick.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://trk-mkt.tason.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" timing-allow-origin: cross-origin-resource-policy: cross-origin accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64 cache-control: private location: https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html content-type: text/html; charset=UTF-8 x-content-type-options: nosniff date: Thu, 02 May 2024 19:08:24 GMT server: cafe content-length: 0 x-xss-protection: 0 set-cookie: IDE=AHWqTUkiW5vKzdD8_aVkaqyawprwnuWxYxNaLfrzLnVPP0OLWqFgxMFttOrmD9mQvPI; expires=Sat, 02-May-2026 19:08:24 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (25)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type