| trk-mkt.tason.com/CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html | 119.207.76.97 | | 2.0 kB |
URL trk-mkt.tason.com/CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP119.207.76.97:0
File typeHTML document, ASCII text Hashbcd41a2ea5801f47dc03936723259e07 f46acc833fde74b0a2e1293a4a57af0ceb63dda9 29e5e2228e53b28cfa5e0b53ca0a5e0819ce44349283e87c59f0ba02522f59f1
GET /CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html HTTP/1.1
Host: trk-mkt.tason.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:23 GMT
Server: Postman-WEB/5.0
Last-Modified: Wed, 02 Apr 2014 01:01:04 GMT
ETag: "2ac4006-7f9-4f604d19ef400"
Accept-Ranges: bytes
Content-Length: 2041
Access-Control-Allow-Headers: Authorization, Content-Type, X-Requested-With, X-Authorization
Connection: close
Content-Type: text/html
Set-Cookie: SVID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Cache-control: private
|
|
| trk-mkt.tason.com/img/no_img.gif | 119.207.76.97 | | 811 B |
URL trk-mkt.tason.com/img/no_img.gif IP119.207.76.97:0
File typeGIF image data, version 89a, 1 x 2 Hashacb27a3cfef252caedea19b812feb1e9 0c1349b390e9cb2064a4bed26edea83ebe14897d f48bb48b6962309f3c3a07f7c1494d98ef94959f1cd320b7390da795e35a7cab
GET /img/no_img.gif HTTP/1.1
Host: trk-mkt.tason.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trk-mkt.tason.com/CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:24 GMT
Server: Postman-WEB/5.0
Last-Modified: Tue, 27 Nov 2012 08:23:25 GMT
ETag: "2b44abd-32b-4cf75c3815940"
Accept-Ranges: bytes
Content-Length: 811
Expires: Thu, 02 May 2024 19:08:24 GMT
Access-Control-Allow-Headers: Authorization, Content-Type, X-Requested-With, X-Authorization
Connection: close
Content-Type: image/gif
Set-Cookie: SVID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Cache-Control: max-age=2592000, public, private
|
|
| googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html | 142.250.74.162 | | 0 B |
URL googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP142.250.74.162:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trk-mkt.tason.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
location: https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 02 May 2024 19:08:24 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: IDE=AHWqTUkiW5vKzdD8_aVkaqyawprwnuWxYxNaLfrzLnVPP0OLWqFgxMFttOrmD9mQvPI; expires=Sat, 02-May-2026 19:08:24 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html | 142.250.74.97 | | 0 B |
URL googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP142.250.74.97:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html HTTP/1.1
Host: googleweblight.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trk-mkt.tason.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 May 2024 19:08:25 GMT
location: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: require-trusted-types-for 'script';report-uri /_/WebLightSmartphoneHttp/cspreport, script-src 'nonce-VKcfTM9UiDdaAzf19AdUTw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/WebLightSmartphoneHttp/cspreport;worker-src 'self'
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: same-site
content-security-policy-report-only: script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://pagead2.googlesyndication.com https://adservice.google.com https://partner.googleadservices.com https://tpc.googlesyndication.com https://fundingchoicesmessages.google.com;report-uri /_/WebLightSmartphoneHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=513=QizE2WJIoeOQNXuEmAPXYS01lL45SA6dCrb2rp8CyLemKZfazgtFYCkt8RnDZ6UCNvBr1CaGxDLGJcWsqa49kVtrq1_Ex2iwe9g9z3-kQG0s2mg3HZY-dCSHbJbAVx6NtYwTNLIlvN1MC9J0V0VoznDEMzZMWGKspw1UN9kRXHw; expires=Fri, 01-Nov-2024 19:08:25 GMT; path=/; domain=.googleweblight.com; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html | 104.18.3.35 | | 43 kB |
URL pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP104.18.3.35:0
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (11179), with CRLF line terminators Hashb2213d5fc5bc4c649e456f253ae3ed7a 405d587af1ce29b5eafc474afdaa35a43a9e7e3b 29e03bb19bd19d4245459ae9750145ffd19c0d975587d5f2708d9415f06da5a7
GET /1oAJr1u08UNTa5i8.html HTTP/1.1
Host: pub-e9086ba8723a4914898b03fa9153678b.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trk-mkt.tason.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:26 GMT
Content-Type: text/html
Content-Length: 42587
Connection: keep-alive
Accept-Ranges: bytes
ETag: "b2213d5fc5bc4c649e456f253ae3ed7a"
Last-Modified: Wed, 01 May 2024 00:34:41 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87da4cc4886bb4fd-OSL
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js | 142.250.74.138 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP142.250.74.138:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:01:31 GMT
expires: Fri, 02 May 2025 02:01:31 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 61615
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/open_sans.min.css | 54.176.87.174 | 200 OK | 522 B |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/open_sans.min.css IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typeASCII text, with very long lines (6358), with no line terminators Hash952b5c93a75a89c458fe5093480dd1bc 564d17e569cb59cf7043d7f777727c19a3cbda3a 17781767b9edf1ebdde3529494d5cb3d8403702893db10258bedd3f9b8002f20
GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/open_sans.min.css HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:27 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: text/css
Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:27 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Length: 522
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
|
|
| webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css | 54.176.87.174 | 200 OK | 33 kB |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typeASCII text, with very long lines (35968) Hashba0da0937bfe0ce3ce7ce4a2c65dbab4 53c5b3e575f013fd0858fafd7a331299f89c7723 2490545a5f4c11994593128d9de855ea2e1ded0efea1ab56c31a23f674125bb8
GET /cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:27 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: text/css
Last-Modified: Wed, 05 Jul 2023 16:25:17 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:27 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Length: 33187
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
|
|
| webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/webmail-logo.svg | 54.176.87.174 | 200 OK | 2.4 kB |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/webmail-logo.svg IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typeSVG Scalable Vector Graphics image Hashbc0c956653325b9e694d4dd1dfb78020 e1196e4db68ed573355ade966152a084581b40ec 998cd48cdc0414f694d0a3a299dd2beb1134769d5666c7e5567e7d20b4174ef8
GET /cPanel_magic_revision_1688567669/unprotected/cpanel/images/webmail-logo.svg HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:27 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: image/svg+xml
Last-Modified: Wed, 05 Jul 2023 14:34:29 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:27 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Length: 2399
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
|
|
| webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/icon-username.png | 54.176.87.174 | 200 OK | 320 B |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/icon-username.png IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typePNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced Hash07ff84f8c855e5fe9d510ff5c9a4b1e4 11c262053e2b9be57d1dba7cb3d916ef041a0e50 05ce0f813e6236158fa1d115faba62cd2041aab1878cac0960a0f45575cece1e
GET /cPanel_magic_revision_1688567669/unprotected/cpanel/images/icon-username.png HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:27 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: image/png
Last-Modified: Wed, 05 Jul 2023 14:34:29 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:27 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 320
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
|
|
| webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/icon-password.png | 54.176.87.174 | 200 OK | 450 B |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/icon-password.png IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typePNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced Hash7ac1cefcb7eab93c6d6981ecde6c1635 1523f8cb80ab19108549d0b7db31a58b71c05d39 a02998df88a6efb0baa526796b2b682ce9fdd6471ceb19170b326320f22f7053
GET /cPanel_magic_revision_1688567669/unprotected/cpanel/images/icon-password.png HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:27 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: image/png
Last-Modified: Wed, 05 Jul 2023 14:34:29 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:27 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 450
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
|
|
| webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-error.png | 54.176.87.174 | 200 OK | 1.0 kB |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-error.png IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typePNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced Hasha3265cc598ae28633c060889e790f80c 57530d6996c8f36711ef05681474b8f63d4184b3 bcaf01928e5c7246ab0bb7e83f609b485a67a5e442d3dd94539a883c11fb70cd
GET /cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-error.png HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:27 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: image/png
Last-Modified: Wed, 05 Jul 2023 14:34:29 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:27 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 1026
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
|
|
| webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-info.png | 54.176.87.174 | 200 OK | 976 B |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-info.png IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typePNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced Hash14146cf832470d9beca95a708a1d6f8d d4b506f92876baea69409f3a78c4718757a53b33 95f8a142dd96c310afeb75329ef504f162ab3102a81fc07f20b268361990f526
GET /cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-info.png HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:27 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: image/png
Last-Modified: Wed, 05 Jul 2023 14:34:29 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:27 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 976
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
|
|
| webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-success.png | 54.176.87.174 | 200 OK | 962 B |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-success.png IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typePNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced Hash0a0ec2a6468d4d1aa3fc2baa70271ac8 a31fb01790aca8dc1976450e4234cb6ccc328956 cafbe3036533fe094931f5745f8cb9962a34409522e93d63ac8427acb9a02c79
GET /cPanel_magic_revision_1688567669/unprotected/cpanel/images/notice-success.png HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:27 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: image/png
Last-Modified: Wed, 05 Jul 2023 14:34:29 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:27 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 962
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
|
|
| webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/warning.png | 54.176.87.174 | 200 OK | 1.1 kB |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1688567669/unprotected/cpanel/images/warning.png IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typePNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced Hasha64b8c7407bf94cc4448cb210bb882e7 a526cf52b2c5b6c2d0409b886de4aa968000fcd8 7ecb82019606d891c5197d2f8ba24ec323d9b10a089facc82d089ff1ec3d399b
GET /cPanel_magic_revision_1688567669/unprotected/cpanel/images/warning.png HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webmail.sotozen.us/cPanel_magic_revision_1688574317/unprotected/cpanel/style_v2_optimized.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:27 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: image/png
Last-Modified: Wed, 05 Jul 2023 14:34:29 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:27 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 1060
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
|
|
| webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.woff | 54.176.87.174 | 200 OK | 24 kB |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.woff IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typeWeb Open Font Format, TrueType, length 22660, version 1.0 Hashb60a5a1801bdc4c26dbdfefa0f14e6d0 eea7261e765344aa3356667e9ea36229496603f3 85df4dde6a09a4dcec068f8a75b4f7f7cbae58ec66f3f7154fafe06a5c2cde17
GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.woff HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://webmail.sotozen.us/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:27 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: application/font-woff
Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:27 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 22660
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
|
|
| webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.ttf | 54.176.87.174 | 200 OK | 8.2 kB |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.ttf IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typeTrueType Font data, 19 tables, 1st "FFTM" Hash3b0e714628e90763fd2f9ff2f9e11f98 f1d7f483a77d77b97eae9cfc9784461d0f95f707 748472fb9010292fe10a7931d087d0c44606d7c6fa7a9913adb5f3fa34890d47
GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.ttf HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://webmail.sotozen.us/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:28 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: application/octet-stream
Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:28 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 38452
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
|
|
| pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html | 104.18.3.35 | 200 OK | 43 kB |
URL User Request GET HTTP/1.1pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP104.18.3.35:443
CertificateIssuerLet's Encrypt Subject*.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1oAJr1u08UNTa5i8.html HTTP/1.1
Host: pub-e9086ba8723a4914898b03fa9153678b.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trk-mkt.tason.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:26 GMT
Content-Type: text/html
Content-Length: 42587
Connection: keep-alive
Accept-Ranges: bytes
ETag: "b2213d5fc5bc4c649e456f253ae3ed7a"
Last-Modified: Wed, 01 May 2024 00:34:41 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87da4cc4886bb4fd-OSL
|
|
| webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.ttf | 54.176.87.174 | 200 OK | 8.2 kB |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.ttf IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typeTrueType Font data, 19 tables, 1st "FFTM" Hasheaf3bbed9dc2b80d6e5a15b689d0c164 f36374f6584eb2f342d9b13905cadd833e732155 6da36c8a97a6e3e86586fad7b0fce799c6bd427b1e45c2c9cd32e2f093ddac41
GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.ttf HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://webmail.sotozen.us/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:28 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: application/octet-stream
Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:28 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 38232
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
|
|
| webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.ttf | 54.176.87.174 | 200 OK | 8.2 kB |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.ttf IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typeTrueType Font data, 19 tables, 1st "FFTM" Hash049cd8df45019efe856b8a52a9cd1d4e cbcdec8f954c6b394becd527b469876825eb4bea 822f55671df5141b30fc982a326c0b36230ee5912d6f7d9aa58297791ba0ba47
GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.ttf HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://webmail.sotozen.us/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:28 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: application/octet-stream
Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:28 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 39476
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
|
|
| trk-mkt.tason.com/CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html | 119.207.76.97 | 200 OK | 2.0 kB |
URL User Request GET HTTP/1.1trk-mkt.tason.com/CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP119.207.76.97:443
CertificateIssuerGlobalSign nv-sa Subject*.tason.com FingerprintAB:58:5C:D7:B1:8F:41:A7:92:F3:2F:38:93:29:42:E9:00:BF:50:5C ValidityMon, 10 Jul 2023 03:43:39 GMT - Sat, 10 Aug 2024 03:43:38 GMT
File typeHTML document, ASCII text, with very long lines (2197), with no line terminators Hashb4a6c2be3dd32c917730db75d0913224 f0f8b4e4544710ee31b21e7f316d3a22527f5a51 9ebc01808627cd06a4a66acb12e2740ef8ed033406d63543af0af7955f5e4676
GET /CheckNew.html?HvKWLTloyYL8L40rTiKQ0eEfW9O6R2XzUudbBNiom7lrqC==&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ=&1jOsdoj5Rs6aCxPyavnWrxykD7Q9mIXEWZ==&UE9TVF9JRD0yMDE4MTIxNDEwMDAxMTY1MzMwOQ==&VEM9MjAxODEyMjg=&S0lORD1D&Q0lEPTAwMg==&URL=https://googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html HTTP/1.1
Host: trk-mkt.tason.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:23 GMT
Server: Postman-WEB/5.0
Last-Modified: Wed, 02 Apr 2014 01:01:04 GMT
ETag: "2ac4006-7f9-4f604d19ef400"
Accept-Ranges: bytes
Content-Length: 2041
Access-Control-Allow-Headers: Authorization, Content-Type, X-Requested-With, X-Authorization
Connection: close
Content-Type: text/html
Set-Cookie: SVID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Cache-control: private
|
|
| googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html | 142.250.74.97 | 301 Moved Permanently | 43 kB |
URL User Request GET HTTP/2googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP142.250.74.97:443
CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com FingerprintD1:64:F1:6B:AC:65:FC:D3:5F:42:54:08:AE:BC:0A:AC:D1:EA:88:2C ValidityMon, 08 Apr 2024 07:27:47 GMT - Mon, 01 Jul 2024 07:27:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html HTTP/1.1
Host: googleweblight.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trk-mkt.tason.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 May 2024 19:08:25 GMT
location: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: require-trusted-types-for 'script';report-uri /_/WebLightSmartphoneHttp/cspreport, script-src 'nonce-VKcfTM9UiDdaAzf19AdUTw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/WebLightSmartphoneHttp/cspreport;worker-src 'self'
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: same-site
content-security-policy-report-only: script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://pagead2.googlesyndication.com https://adservice.google.com https://partner.googleadservices.com https://tpc.googlesyndication.com https://fundingchoicesmessages.google.com;report-uri /_/WebLightSmartphoneHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=513=QizE2WJIoeOQNXuEmAPXYS01lL45SA6dCrb2rp8CyLemKZfazgtFYCkt8RnDZ6UCNvBr1CaGxDLGJcWsqa49kVtrq1_Ex2iwe9g9z3-kQG0s2mg3HZY-dCSHbJbAVx6NtYwTNLIlvN1MC9J0V0VoznDEMzZMWGKspw1UN9kRXHw; expires=Fri, 01-Nov-2024 19:08:25 GMT; path=/; domain=.googleweblight.com; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.woff | 54.176.87.174 | 200 OK | 8.2 kB |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.woff IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typeWeb Open Font Format, TrueType, length 22908, version 1.0 Hashc4d06b4e16680f41609f41253544d6ea c486e5b7651528cfda6c13902671fafa4802cb41 85fac009ac02a1a61abe79fc1947d115ae35be2e7d4366e00b84ea7fec3da698
GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.woff HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://webmail.sotozen.us/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:27 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: application/font-woff
Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:27 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 22908
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
|
|
| webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.woff | 54.176.87.174 | 200 OK | 8.2 kB |
URL GET HTTP/1.1webmail.sotozen.us/cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.woff IP54.176.87.174:443
Requested byhttps://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html#infoturkey@solaredge.com CertificateIssuerLet's Encrypt Subject*.sotozen.us FingerprintB6:BB:6B:0F:89:54:67:5F:10:89:3F:E3:ED:AF:06:1C:77:73:FD:AB ValidityThu, 07 Mar 2024 00:58:30 GMT - Wed, 05 Jun 2024 00:58:29 GMT
File typeWeb Open Font Format, TrueType, length 22432, version 1.0 Hashbfe716101e5513b83df592d30305a75c e015f6776c06604d98b8c1b4b0ce2a206509fe55 9964516688600a52bc319dfc514f5df0cd02e7d65ca10857768b4e1634b25437
GET /cPanel_magic_revision_1648610195/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.woff HTTP/1.1
Host: webmail.sotozen.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://webmail.sotozen.us/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 19:08:27 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Content-Type: application/font-woff
Last-Modified: Wed, 30 Mar 2022 03:16:35 GMT
Cache-Control: max-age=5184000, public
Expires: Mon, 01 Jul 2024 19:08:27 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 22432
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
|
|
| googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html | 142.250.74.162 | 302 Found | 43 kB |
URL User Request GET HTTP/2googleads.g.doubleclick.net/pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html IP142.250.74.162:443
CertificateIssuerGoogle Trust Services LLC Subject*.g.doubleclick.net Fingerprint30:89:D4:C8:96:C6:D4:7B:F7:49:8D:DB:57:A1:D2:5A:D1:D3:D1:B4 ValidityMon, 08 Apr 2024 06:34:54 GMT - Mon, 01 Jul 2024 06:34:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/click?xai=AKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCuxpoweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5zg&sig=Cg0ArKJSzFtr0kI2Y6Ll&adurl=https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trk-mkt.tason.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
location: https://googleweblight.com/i?u=https://pub-e9086ba8723a4914898b03fa9153678b.r2.dev/1oAJr1u08UNTa5i8.html
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 02 May 2024 19:08:24 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: IDE=AHWqTUkiW5vKzdD8_aVkaqyawprwnuWxYxNaLfrzLnVPP0OLWqFgxMFttOrmD9mQvPI; expires=Sat, 02-May-2026 19:08:24 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|