r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16946
Expires: Tue, 31 Jan 2023 11:24:37 GMT
Date: Tue, 31 Jan 2023 06:42:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17328
Expires: Tue, 31 Jan 2023 11:30:59 GMT
Date: Tue, 31 Jan 2023 06:42:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 05:43:17 GMT
content-type: application/json
age: 3534
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8223
Expires: Tue, 31 Jan 2023 08:59:14 GMT
Date: Tue, 31 Jan 2023 06:42:11 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: q65SHMB8/QCgyZWTWqynyWnZn7I8MDUqxjROihlHlrvFUuo3Fq7YrSe6JarRF6H6O2hsL5sQmAI=
x-amz-request-id: CZYFVNMDYDV0C7DY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 05:51:03 GMT
age: 3068
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 06:42:11 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 05:49:04 GMT
age: 3187
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11655
Expires: Tue, 31 Jan 2023 09:56:27 GMT
Date: Tue, 31 Jan 2023 06:42:12 GMT
Connection: keep-alive
www.millenniumcityltd.com/
108.167.140.18301 Moved Permanently 0 B URL HTTP/1.1 www.millenniumcityltd.com/
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 31 Jan 2023 06:42:11 GMT
Server: Apache
X-Pingback: http://www.millenniumcityltd.com/xmlrpc.php
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://www.millenniumcityltd.com/
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
52.43.158.219101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.158.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vYB/DAhQVE7dFI2HxVBDLA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pnsZ5O2hlUugy9QTHAOOnSpsAj0=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dc3860ee877fa6155021f53b9540854d
73bfa5b54e8ae5578d258f830626dc7cc258a43a
0101e8811670f352c2b7f036416763209c348d8cba06a547f94b6256d8e6237a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0101E8811670F352C2B7F036416763209C348D8CBA06A547F94B6256D8E6237A"
Last-Modified: Sat, 28 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21574
Expires: Tue, 31 Jan 2023 12:41:46 GMT
Date: Tue, 31 Jan 2023 06:42:12 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Poppins%3A400%2C&display=fallback&ver=3.9.4
142.250.74.106200 OK 879 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins%3A400%2C&display=fallback&ver=3.9.4
IP 142.250.74.106:0
Hash 3d6cd288c63f3b3541cce4a9ad241782
5c9db97d3453a68a9c18e2a3e1d5d9e6d8147975
e0363115dfcb4385fd7c8fd7ed84e053a3ae5fcf5c7cd1403e1f5c92b8422400
GET /css?family=Poppins%3A400%2C&display=fallback&ver=3.9.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 31 Jan 2023 06:42:13 GMT
date: Tue, 31 Jan 2023 06:42:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/cache/wpfc-minified/qkqui9jj/7s1c.css
108.167.140.18200 OK 14 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/cache/wpfc-minified/qkqui9jj/7s1c.css
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (915)
Hash 6c11831402e8e91920bdbf298f7d21ec
4d62ce99ab6f6e5e517c938e218fb07981fd55a0
e3529093a8e578d5ba669dd483ffca17108da2cdefcd7946b60b2f0cab1c769e
GET /wp-content/cache/wpfc-minified/qkqui9jj/7s1c.css HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 20:56:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14045
content-type: text/css
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/uploads/elementor/css/post-386.css?ver=1675015902
108.167.140.18200 OK 414 B URL HTTP/2 www.millenniumcityltd.com/wp-content/uploads/elementor/css/post-386.css?ver=1675015902
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1262), with no line terminators
Hash 42fc3f31f5662fb1aa7ad35e24deebcd
985dd47e77c050e89304a33e20657aa936a64df3
985c1407b83ae535e754b70c83c1d188b8ef6e9a9065c4dc8c28b93891fa5ad0
GET /wp-content/uploads/elementor/css/post-386.css?ver=1675015902 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 18:11:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 414
content-type: text/css
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/uploads/elementor/css/post-24.css?ver=1675023845
108.167.140.18200 OK 11 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/uploads/elementor/css/post-24.css?ver=1675023845
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash b9e8e3822478c6beee9bb736503c8498
98fa00d4690086a9cd58c71447891e5e2e990abc
1572aeffc0986a39ff25cba602de065baef7301d7dc1fd4e198b286a5a1d0719
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-24.css?ver=1675023845 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 20:24:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10994
content-type: text/css
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/uploads/elementor/css/post-3623.css?ver=1675015903
108.167.140.18200 OK 1.5 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/uploads/elementor/css/post-3623.css?ver=1675015903
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8883), with no line terminators
Hash 9cae21d8841d7a9fc155c93fbeeadfdd
a2d967f7ea21949f7405a4b317f18b8bcbbcda05
d465c76f247eef81daaadc01c8f8f56bc7e6d1de8fb3f28c8092774766aad1c7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-3623.css?ver=1675015903 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 18:11:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1456
content-type: text/css
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7961
Expires: Tue, 31 Jan 2023 08:54:54 GMT
Date: Tue, 31 Jan 2023 06:42:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7961
Expires: Tue, 31 Jan 2023 08:54:54 GMT
Date: Tue, 31 Jan 2023 06:42:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7961
Expires: Tue, 31 Jan 2023 08:54:54 GMT
Date: Tue, 31 Jan 2023 06:42:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7961
Expires: Tue, 31 Jan 2023 08:54:54 GMT
Date: Tue, 31 Jan 2023 06:42:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7961
Expires: Tue, 31 Jan 2023 08:54:54 GMT
Date: Tue, 31 Jan 2023 06:42:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1925abe-5fa6-440b-8e23-d92b1e3bf273.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1925abe-5fa6-440b-8e23-d92b1e3bf273.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 63486f2a937aa8fd013fc2c2d1b32f2d
e8868de34c2f79348c1edad764259eb70bebd7a6
fa6e5ce374031c0df3b3f2d6de823cf1fe08fdaf9957a0722770867cfdec0ed1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1925abe-5fa6-440b-8e23-d92b1e3bf273.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13639
x-amzn-requestid: 8131c878-620a-4972-ba8f-1456859acae2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYcJSF0SIAMFe1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d340a1-18c7280940d508c440c0182c;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 03:10:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mXlQ5A2PHadECkKglPquN9x68ubYk8s2to-_JjCgEQe7axfJo6K8Jw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 07:53:36 GMT
age: 82117
etag: "e8868de34c2f79348c1edad764259eb70bebd7a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CSecular+One%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.106200 OK 6.9 kB URL HTTP/2 fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CSecular+One%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.106:0
Hash 006c7285cef1aa7138c7dd62b3a8c710
fcc7325d517fce2c61bb3c88107bea5915681834
883e9551d621d252d418a67110060241d7a5b5adaa670f5545adfa1f5b5fcc4d
GET /css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CSecular+One%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 31 Jan 2023 06:42:13 GMT
date: Tue, 31 Jan 2023 06:42:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffea501ff-acf4-4b37-aa0a-baf417cf3694.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffea501ff-acf4-4b37-aa0a-baf417cf3694.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60fc180ec5b99ac357db8775775c3c11
c9856a488e82bc330881377528bf2e53274ef5f3
a31fd6fc84f79b0f5fb79cccf490ddf61eb58bdaf57ca27f57a911332e550d11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffea501ff-acf4-4b37-aa0a-baf417cf3694.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5394
x-amzn-requestid: 16d876fb-0afd-4b5d-b19e-1029506fd6f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIgq2E4CIAMFiFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce178-1f08dc2105b6e182677004e7;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:10:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FoTKdVc567GRCEDn8JoMOs4-enQPpdvFhPafmSRsgCFZC78q8ba5pA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 12:51:52 GMT
age: 64221
etag: "c9856a488e82bc330881377528bf2e53274ef5f3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5965fef2-c5a7-4a82-bcdc-41aebc355aff.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5965fef2-c5a7-4a82-bcdc-41aebc355aff.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83d9e98a4575077e7400343c7f2038d2
6ac3ca84e97fa35afff9045f35d45499c0b34a23
da6d6d90a5ea8f5a864f3739591693b5f4b9793f2c4bb971486572f6bf2e940c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5965fef2-c5a7-4a82-bcdc-41aebc355aff.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7334
x-amzn-requestid: e62c149b-ca5f-4d0c-8d2d-e8bb2a7f9d8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbvSzH2soAMFiYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d49278-1214fc750a312e46527b2fd7;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 03:11:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DHpGf24wNNYDg2RxvPCY6S011xYLiXzP1pP7O-kPNKnnP50CihUfDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:28:52 GMT
age: 11601
etag: "6ac3ca84e97fa35afff9045f35d45499c0b34a23"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: v9Wphg34UGE5kkZ9RKBcphcpPuCn54oVyepzTW5rZ3J9nkL9J501PA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 22:03:23 GMT
age: 31130
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa70b0b84-f0e7-44e4-a574-ee3e55fbc0d3.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa70b0b84-f0e7-44e4-a574-ee3e55fbc0d3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b43468b05cd1fd11c398263a80e4edb2
02e964ea5a88c866267ac6c5601bfcde26ffd42b
19783f05297f7ed5d7ca8cec0fc0e1676831275ac48f1510a4f410dbe2802314
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa70b0b84-f0e7-44e4-a574-ee3e55fbc0d3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4634
x-amzn-requestid: 2941da94-203c-47d1-99ee-d864bdbf6993
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffCAHF9kIAMFrUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e39a-78bb7189351d830a7ef70c67;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hWONP8eVA6h5VMyREx_CgRY2zeb9KUxipWiXdx9dHBtU2YDV07lGXQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 04:46:51 GMT
age: 6922
etag: "02e964ea5a88c866267ac6c5601bfcde26ffd42b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2ac1bcdceabf1fc4e07017906aa8a815
ba00b737325fc50b35af8d851ced0fe13d1cba22
c6c54f5dbbfc40b454b9c67a7972827f500d83b10a1594f7cb56c69158278c08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.millenniumcityltd.com/wp-content/cache/wpfc-minified/md1o3hv7/7s1c.css
108.167.140.18200 OK 11 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/cache/wpfc-minified/md1o3hv7/7s1c.css
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash 071a4a4154f6502bf8b126afc028201e
a47d4b066698a4c257b6b4122a0ff2759c64b4ae
3b6820ba1d00279920c3c962e3cd3e91e4e1eb4bdcb6f3a99c96329d31ec5bee
GET /wp-content/cache/wpfc-minified/md1o3hv7/7s1c.css HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 20:56:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10557
content-type: text/css
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/uploads/elementor/css/post-3616.css?ver=1675015903
108.167.140.18200 OK 1.6 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/uploads/elementor/css/post-3616.css?ver=1675015903
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5668)
Hash 353a00ad1fcdbb29057a709fc3b2868e
2887ba13dd10757db8fe494ba308524c173e91aa
5d35ed969bde1e8eee322f2b8cfd265f6628079a459a4bfa75c0183906c16ae4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-3616.css?ver=1675015903 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 18:11:43 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1647
content-type: text/css
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?hl=en_US&onload=forminator_render_captcha&render=explicit&ver=1.22.1
142.250.74.132200 OK 584 B URL HTTP/2 www.google.com/recaptcha/api.js?hl=en_US&onload=forminator_render_captcha&render=explicit&ver=1.22.1
IP 142.250.74.132:0
File type ASCII text, with very long lines (920), with no line terminators
Hash 24d274369e38de72748149308fcadc08
470537efdee28392a431a6e2e311c6d23b59fcb9
fb28e544b7792506fa60d40ddb68c04bf0c5513b4dd246ec36fd514a4e5a64c0
GET /recaptcha/api.js?hl=en_US&onload=forminator_render_captcha&render=explicit&ver=1.22.1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 31 Jan 2023 06:42:13 GMT
date: Tue, 31 Jan 2023 06:42:13 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps-api-ssl.google.com/maps/api/js?libraries=places&language=en_US&key=AIzaSyD2nwVRL2TJW-wUk6tHTrJuzdIX-ABLrmw&ver=4.1.3
172.217.21.174200 OK 55 kB URL HTTP/2 maps-api-ssl.google.com/maps/api/js?libraries=places&language=en_US&key=AIzaSyD2nwVRL2TJW-wUk6tHTrJuzdIX-ABLrmw&ver=4.1.3
IP 172.217.21.174:0
File type ASCII text, with very long lines (2411)
Hash f2fb5d67d2fa4b0b6a81f8517e6fba01
393443986b318f3c1177c9f279a374f87e0b4322
d87c886289889c1338c603ff87557520b0e43910876ca52770b33e8622a3633d
GET /maps/api/js?libraries=places&language=en_US&key=AIzaSyD2nwVRL2TJW-wUk6tHTrJuzdIX-ABLrmw&ver=4.1.3 HTTP/1.1
Host: maps-api-ssl.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Tue, 31 Jan 2023 06:42:13 GMT
expires: Tue, 31 Jan 2023 07:12:13 GMT
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 55265
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=39
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/cache/wpfc-minified/l1j2bf4l/7s1c.css
108.167.140.18200 OK 13 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/cache/wpfc-minified/l1j2bf4l/7s1c.css
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 32d434f1e8282940495a8a207a1dddc5
946f846a383762d1a7577bc5be922af12da21034
d757c43dc89d77c629d1b633398683bafb33e190f7d7e4a9ee712537f3a8cf80
GET /wp-content/cache/wpfc-minified/l1j2bf4l/7s1c.css HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 20:56:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13239
content-type: text/css
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/cache/wpfc-minified/7ydkrnjf/7s1c.js
108.167.140.18200 OK 4.7 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/cache/wpfc-minified/7ydkrnjf/7s1c.js
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15378)
Hash db80e2669377aaff1f40c7c3bac881b6
63cfa301cddef7cf40311cd0652fa7fb51b13f73
bd3d965919b434896d7fed8fb7eda13087ba99331af3579cd126177401f3d111
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/wpfc-minified/7ydkrnjf/7s1c.js HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 20:56:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4720
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.millenniumcityltd.com/wp-content/themes/astra/assets/js/unminified/frontend.js?ver=3.9.4
108.167.140.18200 OK 11 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/themes/astra/assets/js/unminified/frontend.js?ver=3.9.4
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (453), with CRLF line terminators
Hash 295a7a0b8bbd53c68378a7dfeafb15e1
68e8ed7d26f2067aff55e9066c6f388531a6a61c
78d37262b6d5490f8f16ae8b2b5261a9bf8141880d67cf3f4515372bf5ea2f54
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/js/unminified/frontend.js?ver=3.9.4 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 18:12:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10876
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/cache/wpfc-minified/g09k1fpc/7s1c.css
108.167.140.18200 OK 3.0 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/cache/wpfc-minified/g09k1fpc/7s1c.css
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10019)
Hash c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59
GET /wp-content/cache/wpfc-minified/g09k1fpc/7s1c.css HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 20:56:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2997
content-type: text/css
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/millennium-city/assets/js/mi-city-style.js?ver=6.1.1
108.167.140.18200 OK 0 B URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/millennium-city/assets/js/mi-city-style.js?ver=6.1.1
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/millennium-city/assets/js/mi-city-style.js?ver=6.1.1 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 23 Oct 2021 05:13:58 GMT
accept-ranges: bytes
content-length: 0
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/mystickymenu/js/detectmobilebrowser.js?ver=2.6.2
108.167.140.18200 OK 1.4 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/mystickymenu/js/detectmobilebrowser.js?ver=2.6.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2065)
Hash c3b50d284b99510f89656936379649c6
8ae1ea66e875299ae8158718110517212b3e2299
1571e16072b26846d00db4483c67c5402464e98ec8300b6fc2e1ac34e77a49d3
GET /wp-content/plugins/mystickymenu/js/detectmobilebrowser.js?ver=2.6.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 17:28:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1381
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/smooth-back-to-top-button/assets/js/smooth-back-to-top-button.js?ver=1.1.7
108.167.140.18200 OK 371 B URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/smooth-back-to-top-button/assets/js/smooth-back-to-top-button.js?ver=1.1.7
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash eed86438830a539ce4f8cd68a4392a4a
4385365438b2e337b25049e5970acec3938e72c4
3b9630c322e964a42598c022061afb1272b173a9e9612db424b1720f99942e70
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/smooth-back-to-top-button/assets/js/smooth-back-to-top-button.js?ver=1.1.7 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 13 Sep 2022 05:09:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 371
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
108.167.140.18200 OK 2.1 kB URL HTTP/2 www.millenniumcityltd.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 05:23:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2103
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/packages/light-gallery/js/lightgallery-all.min.js?ver=1.2.18
108.167.140.18200 OK 17 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/packages/light-gallery/js/lightgallery-all.min.js?ver=1.2.18
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1141)
Hash 16e8b5b99d0a7627e86c5a970334ce46
6bdcbdc1438ece002cffa30dd7c695e96200f869
ea3a9fa5b5f05f1056c108324c1f7b147a898d4f507c3860816ebb44b7f38aa0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-real-estate/public/assets/packages/light-gallery/js/lightgallery-all.min.js?ver=1.2.18 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 18:11:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16777
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/mystickymenu/js/mystickymenu.min.js?ver=2.6.2
108.167.140.18200 OK 1.6 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/mystickymenu/js/mystickymenu.min.js?ver=2.6.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3980), with no line terminators
Hash 83577bca57e843bd21e0866acb7bbff3
924728492940504acfe3d3132e04c13d61f769f5
3d19fbbc352a2edc76ee38f4eedc8eecf714fa2cd0e0bcae1b78ac233389944f
GET /wp-content/plugins/mystickymenu/js/mystickymenu.min.js?ver=2.6.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 17:28:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1584
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/js/infobox.min.js?ver=1.1.13
108.167.140.18200 OK 3.3 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/js/infobox.min.js?ver=1.1.13
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9355)
Hash 10e4e5bc2f331246640d02ccf62694fb
9753dd071a3fdd1aa4efdc9970ed7b22c7078622
4ee26dc00e7ac01ee778c55e7ac5ef04278ef0677348143cbc81a19ed94a8b03
GET /wp-content/plugins/essential-real-estate/public/assets/js/infobox.min.js?ver=1.1.13 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 18:11:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3327
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/js/jquery.validate.min.js?ver=1.17.0
108.167.140.18200 OK 9.3 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/js/jquery.validate.min.js?ver=1.17.0
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (23122)
Hash 31da626c2f4428ec1c974f451d22d557
4fd7b25b2215606923401022811fdd1d9a10b6a3
461cd37584438f563cc2aa62b10f6196e7c41b7d6888ac880f7228d5763feee2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-real-estate/public/assets/js/jquery.validate.min.js?ver=1.17.0 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 18:11:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9271
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-includes/js/wp-util.js?ver=6.1.1
108.167.140.18200 OK 1.8 kB URL HTTP/2 www.millenniumcityltd.com/wp-includes/js/wp-util.js?ver=6.1.1
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d1dae91e2f9f47daa8e078f9d6806178
5d114f7946beee79748e3d6ebaada6be04bfa767
57a0bf031684dc0cf3dff47b042aa0fad02720608b981e758baeb46eefdc4ee4
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.js?ver=6.1.1 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Jan 2023 17:08:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1829
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/
108.167.140.18200 OK 61 kB URL HTTP/2 www.millenniumcityltd.com/
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (39225)
Hash 407a1ad36fefc21c66a57b6800a7682d
bdc80d335160baf851a6356faf05df464a552abc
bd7d186180c8581eb67fc7df9aef251e372afda01a3629b4def120b3a5621e77
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 20:56:08 GMT
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=utf-8
date: Tue, 31 Jan 2023 06:42:12 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/cache/wpfc-minified/kqavyils/7s1c.css
108.167.140.18200 OK 35 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/cache/wpfc-minified/kqavyils/7s1c.css
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (60583)
Hash d4eb474ca3fba4bb4d0fe4542a6fcdb8
dd474b06dc65dd90799d64e04c70cb21f9d357f3
64b44ac23be23bae88970f6a622ec30d15a802215468751ee081bfbde6a48565
GET /wp-content/cache/wpfc-minified/kqavyils/7s1c.css HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 20:56:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-includes/js/underscore.min.js?ver=1.13.4
108.167.140.18200 OK 8.3 kB URL HTTP/2 www.millenniumcityltd.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18798)
Hash ac9c7baaab74ef2576932d5798161987
fa202113e12b09696788a7024984879bddd29143
c03d52f8f157e9209646e3e696e9845d7d2b3cf3e73c8204f371b7393e738026
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Jan 2023 17:08:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8305
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-includes/js/jquery/ui/draggable.js?ver=1.13.2
108.167.140.18200 OK 11 kB URL HTTP/2 www.millenniumcityltd.com/wp-includes/js/jquery/ui/draggable.js?ver=1.13.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 539783297543abb78404d3ce310395ec
9249918b87f74b17484db66c1904dc1dbaa5ff5a
8a2c7be620484181000f2c1bfdcfa308ac19f95f5dbc32515304a12e2a097762
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/draggable.js?ver=1.13.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Jan 2023 17:08:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11245
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-includes/js/jquery/ui/button.js?ver=1.13.2
108.167.140.18200 OK 3.9 kB URL HTTP/2 www.millenniumcityltd.com/wp-includes/js/jquery/ui/button.js?ver=1.13.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 2544a6aeb410e5b244439d6cc858be23
71e7caf642829908592b53a408b1e22163e11432
d93edc2e9db77c2835912154762051c44d3422bfc0093102338ac7d558ed6d1c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/button.js?ver=1.13.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Jan 2023 17:08:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3924
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-includes/js/jquery/ui/sortable.js?ver=1.13.2
108.167.140.18200 OK 16 kB URL HTTP/2 www.millenniumcityltd.com/wp-includes/js/jquery/ui/sortable.js?ver=1.13.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash f53ca2483405368d4c39a8ee81b410f0
96ceeecb15df58d0f4c9b22230e6fb29db172d7f
78baea9d7fdcb085b0e4646eed58232f081b89641d855c18e826f505a6a9d33f
GET /wp-includes/js/jquery/ui/sortable.js?ver=1.13.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Jan 2023 17:08:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15743
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-includes/js/jquery/ui/dialog.js?ver=1.13.2
108.167.140.18200 OK 8.4 kB URL HTTP/2 www.millenniumcityltd.com/wp-includes/js/jquery/ui/dialog.js?ver=1.13.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 36982dc4c88563d8a8919f6bbffc045a
f99a4bbc2b970acf5127333eeee7c2a22f895195
1d46ab1e1783b36a50f1e51c226c3dafbaea51653466ebf37431237f14aa2635
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/dialog.js?ver=1.13.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Jan 2023 17:08:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8355
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/js/account/ere-login.min.js?ver=4.1.3
108.167.140.18200 OK 718 B URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/js/account/ere-login.min.js?ver=4.1.3
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2352), with no line terminators
Hash 771f3f01879a9415b466c427250fa291
9b1fdc311b1a90463cd9e69133ba6c63dec863cf
d360ac0bc753176835bce4246afb9a229e401afb9646cc6c705d688099966ef7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-real-estate/public/assets/js/account/ere-login.min.js?ver=4.1.3 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 18:11:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 718
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
108.167.140.18200 OK 6.4 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 1a7cae61a8acbbcbd0eee38e317f0252
9234b65965a461535a05fc527c9ab420d13e5da0
54e1cad5404f393f2edf04a7c90a79acdec2eeaae6d7cf167701f952dc8d7e9b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 13 Sep 2022 05:09:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6389
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-includes/js/jquery/ui/checkboxradio.js?ver=1.13.2
108.167.140.18200 OK 2.7 kB URL HTTP/2 www.millenniumcityltd.com/wp-includes/js/jquery/ui/checkboxradio.js?ver=1.13.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 60f67adad5d5a0a621f8360209c233ef
d4bdd4c9146053448b8737f3af206e7811a8b30e
83f1ddce56aef7347b2f018bd308f857ec3fcdf220665f64a60242938476b3c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/checkboxradio.js?ver=1.13.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Jan 2023 17:08:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2721
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/js/ere-main.min.js?ver=4.1.3
108.167.140.18200 OK 5.5 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/js/ere-main.min.js?ver=4.1.3
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (16637), with no line terminators
Hash 499b9f5696084a30bcf1959ee387a8d8
6822190fe44e1745f37ba5aa4b3038dcaa47cb39
4ce1d2ed6cdfa58a9c09844b4e6d0f5611c2d7c5ee437ff7bac73e64b1bb47aa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-real-estate/public/assets/js/ere-main.min.js?ver=4.1.3 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 18:11:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5523
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/forminator/assets/forminator-ui/js/forminator-form.min.js?ver=1.22.1
108.167.140.18200 OK 3.7 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/forminator/assets/forminator-ui/js/forminator-form.min.js?ver=1.22.1
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13126)
Hash 505f3deb1641775962ecf4452eb9a361
3e976c9e5aa20eb44814fc0a59ae2049c9fd6229
44f38a1f2be68f484149cc4632d045cd2a09976663b899c3a90458915bd8fadc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/forminator/assets/forminator-ui/js/forminator-form.min.js?ver=1.22.1 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Dec 2022 13:54:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3714
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/forminator/assets/js/library/jquery.validate.min.js?ver=1.22.1
108.167.140.18200 OK 9.7 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/forminator/assets/js/library/jquery.validate.min.js?ver=1.22.1
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (24292)
Hash 2d29a91f4da2add72ef6d7a71d2a29a6
67a3dfcd09c184128f76d7b3a33507f0ae3d86ee
9fe41ee1c8bbe47173dd9fd6cd6951029df7fb6f90c89513570b1ed95305d3ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/forminator/assets/js/library/jquery.validate.min.js?ver=1.22.1 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Dec 2022 13:54:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9726
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/js/property/ere-compare.min.js?ver=4.1.3
108.167.140.18200 OK 1.3 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/js/property/ere-compare.min.js?ver=4.1.3
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4335), with no line terminators
Hash bd77b60eaf54a7d4f20bb281ec0fff3f
64217c7fe44fb44039d64bf25747135957e50a24
6def702ca75a1b0d56811d32c9d89f02b061db93a95b7c85e31ea2b0ec9a5cfd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-real-estate/public/assets/js/property/ere-compare.min.js?ver=4.1.3 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 18:11:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1347
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4
108.167.140.18200 OK 4.0 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7874)
Hash 084ee597d9c96fbe362d18cea4fd0ccc
d9737fc0a725b654dbb6ed445a8a752156bf8849
727e817f449359cd310ba42651dc44b2194bd9f3838f2febd855307da5feba0d
GET /wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 18:11:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3989
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/forminator/assets/js/library/intlTelInput.min.js?ver=1.22.1
108.167.140.18200 OK 13 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/forminator/assets/js/library/intlTelInput.min.js?ver=1.22.1
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (27010)
Hash 9cc56dc29ff84c192976ee96e9c849b8
931357538334988681054bd748b229312102e884
1204a4e6ed186f69c27a2922940e56e1b248fa2b9571e707fafa07377c558459
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/forminator/assets/js/library/intlTelInput.min.js?ver=1.22.1 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Dec 2022 13:54:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12976
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/packages/jquery-ui/jquery.ui.touch-punch.min.js?ver=0.2.3
108.167.140.18200 OK 597 B URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/packages/jquery-ui/jquery.ui.touch-punch.min.js?ver=0.2.3
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (1090)
Hash 386e7e3b5208d2820ec7f34a0b53c5af
439567cba8d628d4f76c88817039b531a357e7ed
8dcbaaf28a91ce1b3444fc314a613205ca747ce5f7ff21bc169b03a628167d85
GET /wp-content/plugins/essential-real-estate/public/assets/packages/jquery-ui/jquery.ui.touch-punch.min.js?ver=0.2.3 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 18:11:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 597
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/js/ere-carousel.min.js?ver=4.1.3
108.167.140.18200 OK 511 B URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/js/ere-carousel.min.js?ver=4.1.3
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (907), with no line terminators
Hash ac6ffbf334e5f52906fcc5f8456e67dc
68dedb09d2c5ddb9918f232bea83e17bc7064ade
a11964f3ee2d742af7738025b5b1dba61f07b54df48eba5a8f1371ef79dc5fc4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-real-estate/public/assets/js/ere-carousel.min.js?ver=4.1.3 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 18:11:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 511
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-includes/js/jquery/ui/controlgroup.js?ver=1.13.2
108.167.140.18200 OK 3.1 kB URL HTTP/2 www.millenniumcityltd.com/wp-includes/js/jquery/ui/controlgroup.js?ver=1.13.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 7d7fc515aeed7e7a8fdd4ecd2b12db34
775d13e912cbb5d8760d3737b5a3691f629cedf0
2e6b010d49f5ce1a7ed2d652acbd36897959a14fc665426208709725fe625fb0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/controlgroup.js?ver=1.13.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Jan 2023 17:08:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3145
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/templates/shortcodes/property-search/assets/js/property-search.min.js?ver=4.1.3
108.167.140.18200 OK 2.5 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/templates/shortcodes/property-search/assets/js/property-search.min.js?ver=4.1.3
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8749), with no line terminators
Hash 88fc86b49cfe4b3c9ab2ddf044cdabf3
4f4790b4da7ea44183398a932b73ae04d8dd24b2
1f2d0801c35112354014005d95543a98561779ea43b2993fc77333a4fae4e011
GET /wp-content/plugins/essential-real-estate/public/templates/shortcodes/property-search/assets/js/property-search.min.js?ver=4.1.3 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 18:11:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2520
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.js?ver=4.0.2
108.167.140.18200 OK 4.9 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.js?ver=4.0.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d1fdfdab95ce5a25ea03318a9388b474
1337d6c6fb7afe925fe3d5f045d75bc2138517af
bed3cfeb62625f739e8c178972e132a966a0285dc231f761f3cad53aae107748
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.js?ver=4.0.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 17:55:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4898
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/elementor/assets/js/webpack.runtime.js?ver=3.10.2
108.167.140.18200 OK 4.7 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/elementor/assets/js/webpack.runtime.js?ver=3.10.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 214eb38a1f5652db5a5a533afa4cc82d
7d42f2c90bc03a59a4ad39949b85b52401d14d50
585a5b687833c5066707c86c4373e3dc03ee1122ecb08e8efc939ad468e5409c
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.js?ver=3.10.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 17:55:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4657
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
216.58.207.227200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.millenniumcityltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 14:34:21 GMT
expires: Fri, 26 Jan 2024 14:34:21 GMT
cache-control: public, max-age=31536000
age: 403673
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.227200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.millenniumcityltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 04:05:29 GMT
expires: Tue, 30 Jan 2024 04:05:29 GMT
cache-control: public, max-age=31536000
age: 95805
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.227200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.millenniumcityltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 02:42:35 GMT
expires: Wed, 31 Jan 2024 02:42:35 GMT
cache-control: public, max-age=31536000
age: 14379
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/secularone/v11/8QINdiTajsj_87rMuMdKyqDiOOg.woff2
216.58.207.227200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/secularone/v11/8QINdiTajsj_87rMuMdKyqDiOOg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 11256, version 1.0\012- data
Hash 7e658386bfd50e6287a7cf252ac7aa74
69728ec344feb150496cf3d8add19a890b190032
46989820a9b0643099415ba7b00bd0e2e48ba06142c0b5ab3035818c2b303e0f
GET /s/secularone/v11/8QINdiTajsj_87rMuMdKyqDiOOg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.millenniumcityltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11256
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:06:11 GMT
expires: Sat, 27 Jan 2024 02:06:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:54:59 GMT
content-type: font/woff2
age: 362163
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
216.58.207.227200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.millenniumcityltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 09:41:14 GMT
expires: Wed, 24 Jan 2024 09:41:14 GMT
cache-control: public, max-age=31536000
age: 594060
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/elementor/assets/js/frontend.js?ver=3.10.2
108.167.140.18200 OK 33 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/elementor/assets/js/frontend.js?ver=3.10.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 4aa0290f676d7ff879903d233b9595dd
9bdbf472cac3958aac8977220f745fe84ebcd844
e31eea6dd0e5ccd9b7c0b0042e47e66f469f6a435c62c47be402ebe4531c7ad8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.js?ver=3.10.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 17:55:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/uploads/2022/06/Untitled-1.png
108.167.140.18200 OK 552 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/uploads/2022/06/Untitled-1.png
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1200 x 675, 8-bit/color RGBA, non-interlaced\012- data
Size 552 kB (551681 bytes)
Hash ba8885c6ec2b8a33a897a5cae163ed7e
ea2ba1675c0b35e66a6dea0afdedc3c59e4ea7a9
4808e665a47384556d4cfec025a349140a2ca9b99b38b56c320ad457d246516f
GET /wp-content/uploads/2022/06/Untitled-1.png HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/wp-content/uploads/elementor/css/post-24.css?ver=1675023845
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 08:48:39 GMT
accept-ranges: bytes
content-length: 551681
content-type: image/png
date: Tue, 31 Jan 2023 06:42:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/packages/bootstrap/js/bootstrap.bundle.min.js?ver=4.6.2
108.167.140.18200 OK 286 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/packages/bootstrap/js/bootstrap.bundle.min.js?ver=4.6.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 286 kB (286461 bytes)
Hash 34e615f5797b549a6fa9878e18d7f589
e7985241c6b15e39ed60ec5ea341639626b48d15
c8d84a96cffebdfe4a04fbad00e48dbab5a392838c73661900d23dbd38a6d62c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-real-estate/public/assets/packages/bootstrap/js/bootstrap.bundle.min.js?ver=4.6.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 18:11:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
108.167.140.18200 OK 77 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/wp-content/cache/wpfc-minified/l1j2bf4l/7s1c.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 17:55:24 GMT
accept-ranges: bytes
content-length: 76764
content-type: font/woff2
date: Tue, 31 Jan 2023 06:42:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
108.167.140.18200 OK 78 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/wp-content/cache/wpfc-minified/l1j2bf4l/7s1c.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 17:55:24 GMT
accept-ranges: bytes
content-length: 78196
content-type: font/woff2
date: Tue, 31 Jan 2023 06:42:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
108.167.140.18200 OK 13 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/wp-content/cache/wpfc-minified/l1j2bf4l/7s1c.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 17:55:24 GMT
accept-ranges: bytes
content-length: 13276
content-type: font/woff2
date: Tue, 31 Jan 2023 06:42:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/smooth-back-to-top-button/assets/fonts/wpxpress.ttf?9zg56
108.167.140.18200 OK 2.1 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/smooth-back-to-top-button/assets/fonts/wpxpress.ttf?9zg56
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash a140d42416f9bd4c1de1574210a9424a
4bd70248a4426cbfbb69111e62f9f5636ea9a6e3
7613f88667432d2b7c096cb01bf5fce0279bea9476d0895caed2884940362487
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/smooth-back-to-top-button/assets/fonts/wpxpress.ttf?9zg56 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/wp-content/cache/wpfc-minified/kempccpk/7s1c.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 13 Sep 2022 05:09:51 GMT
accept-ranges: bytes
content-length: 2100
content-type: font/ttf
date: Tue, 31 Jan 2023 06:42:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/uploads/2021/10/admin-ajax.png
108.167.140.18200 OK 60 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/uploads/2021/10/admin-ajax.png
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 400 x 296, 8-bit/color RGBA, non-interlaced\012- data
Hash b499080725a69d1d617eb0288ebae632
5a9801a18c4dcb213703a058543bf0156c138820
73f2214c261ee21e30c05776297beb7c004b95a3d15f49f908bf24ef4e26e484
GET /wp-content/uploads/2021/10/admin-ajax.png HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 10 Dec 2021 11:51:38 GMT
accept-ranges: bytes
content-length: 59718
content-type: image/png
date: Tue, 31 Jan 2023 06:42:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
142.250.74.35200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.millenniumcityltd.com
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 17:09:34 GMT
expires: Tue, 30 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
age: 48760
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.138200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.138:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.millenniumcityltd.com
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 31 Jan 2023 06:42:14 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.millenniumcityltd.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/uploads/2021/11/cropped-favicon-mille-2-300x300.png
108.167.140.18200 OK 14 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/uploads/2021/11/cropped-favicon-mille-2-300x300.png
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 300, 8-bit colormap, non-interlaced\012- data
Hash c3bb29c208a690e5bae23900369da574
bf4451e8a283619d59aa1dcd1a218bef1e31d8f8
1d74f0716483efdb2eefd91b4b18ea8838882cea03edefe2e67eb0e38bfaeccd
GET /wp-content/uploads/2021/11/cropped-favicon-mille-2-300x300.png HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 26 Nov 2021 18:31:53 GMT
accept-ranges: bytes
content-length: 14015
content-type: image/png
date: Tue, 31 Jan 2023 06:42:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/uploads/2021/11/cropped-favicon-mille-2-150x150.png
108.167.140.18200 OK 6.1 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/uploads/2021/11/cropped-favicon-mille-2-150x150.png
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit colormap, non-interlaced\012- data
Hash 03779887edf97cf408f49d5cb653c177
ab58bf0e68c5ca24747b9466c4343068005c113d
a66df5b3a975823cf60affeed175a1668e721a3b87adeb7b802de29bfd673bd6
GET /wp-content/uploads/2021/11/cropped-favicon-mille-2-150x150.png HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 26 Nov 2021 18:31:54 GMT
accept-ranges: bytes
content-length: 6074
content-type: image/png
date: Tue, 31 Jan 2023 06:42:14 GMT
server: Apache
X-Firefox-Spdy: h2
translate.googleapis.com/translate_static/css/translateelement.css
172.217.21.170200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 172.217.21.170:0
File type ASCII text, with very long lines (22967)
Hash f7bf2121608909b56672e6398ac2335c
864ef3bac46b08ab6609fad23f00d5f09815647d
b9d3a8600d9b6edf9c71b793c42782282ecfb01e2026e0128608b949e91e152c
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3632
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 06:09:28 GMT
expires: Tue, 31 Jan 2023 07:09:28 GMT
cache-control: public, max-age=3600
age: 1966
last-modified: Mon, 09 Jan 2023 20:58:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/forminator/assets/forminator-ui/fonts/forminator-icons-font.woff2?1.7.4
108.167.140.18200 OK 3.8 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/forminator/assets/forminator-ui/fonts/forminator-icons-font.woff2?1.7.4
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 3756, version 1.0\012- data
Hash 76ac0c03c4147b88b946df82689f2b04
3b7c240d12f29d1e0f9b9094102bf63aa91c74e3
154a512fbe95c41addebadb7b3973b2f9f281993cc4f62dcdbb8d0f2472a120a
GET /wp-content/plugins/forminator/assets/forminator-ui/fonts/forminator-icons-font.woff2?1.7.4 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/wp-content/cache/wpfc-minified/7ah1e3n1/7s1c.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Dec 2022 13:54:32 GMT
accept-ranges: bytes
content-length: 3756
content-type: font/woff2
date: Tue, 31 Jan 2023 06:42:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/elementor/assets/js/text-editor.26e9c597fc0c1765a519.bundle.js
108.167.140.18200 OK 1.1 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/elementor/assets/js/text-editor.26e9c597fc0c1765a519.bundle.js
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash f28c542960fce4534f701e7a6ad0e36a
335768dc5d2b34a5a92b490b32bda2d571574515
c8215d90cb90e06dfd179e1b7f065d56b8dfac992c8dd0abd354901ad790d569
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/text-editor.26e9c597fc0c1765a519.bundle.js HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 17:55:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1062
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/cache/wpfc-minified/8m1iiett/7s1c.js
108.167.140.18200 OK 124 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/cache/wpfc-minified/8m1iiett/7s1c.js
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 124 kB (124045 bytes)
Hash 437e93f96626ce1aaea155ef9c314bd3
455e29ee91261a435abd4b0dfb78022111e54367
3c78ca9bfa02bcd9b56dec9b09403c9c3e3b1d7ea51b8f4546b5f5e1f3fc09ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/wpfc-minified/8m1iiett/7s1c.js HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 20:56:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 377652
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-admin/admin-ajax.php
108.167.140.18200 OK 56 B URL HTTP/2 www.millenniumcityltd.com/wp-admin/admin-ajax.php
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JSON data\012- , ASCII text, with no line terminators
Hash f01e9b81a15c189def53911ffbaa5c97
5e17cf2382e18a9729dab502caee88df080a9e04
e447403547888f6004308daf6e39e7c0f7855dbaf6b46a3c2d103ec9238faec5
Analyzer Verdict Alert fortinet Phishing
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 27
Origin: https://www.millenniumcityltd.com
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.millenniumcityltd.com
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding
content-encoding: gzip
content-length: 56
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 06:42:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/uploads/2022/06/DSC_0129-Copy-scaled.jpg
108.167.140.18200 OK 141 kB URL HTTP/2 www.millenniumcityltd.com/wp-content/uploads/2022/06/DSC_0129-Copy-scaled.jpg
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 1200x800, components 3\012- data
Size 141 kB (141122 bytes)
Hash 0f9b40f2d012d41280e760a73dcb28c8
62a7dbc448e15f9a4f5d3186be5f14bd0fa421a7
981a8015afdb65488bea4282fc7412730fed4ccdaaaa7113b9431233b77c3a3f
GET /wp-content/uploads/2022/06/DSC_0129-Copy-scaled.jpg HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 08:28:58 GMT
accept-ranges: bytes
content-length: 141122
content-type: image/jpeg
date: Tue, 31 Jan 2023 06:42:15 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:40:43 GMT
expires: Fri, 26 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 396092
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 33e403367d183257be0f03f28da923d2
a586e4052008741f8f535e7bd12a94bde81b264e
82ce104749546e6a6f76a8ddf19b67795784c06256581c13f499e80e4f713131
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 31 Jan 2023 06:42:16 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 06:27:52 GMT
expires: Tue, 31 Jan 2023 06:42:52 GMT
cache-control: public, max-age=900
age: 864
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.162302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Tue, 31 Jan 2023 06:42:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 3119ebfe42ba261e1ea8403856ef9a81
c7862d437c29dc45993e799022a030bc944cd74c
4f065ffb485f8f205f62398a77a08976c1c0b94a90c508898571ab5d4c55099e
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 31 Jan 2023 06:42:16 GMT
server: ESF
cache-control: private
content-length: 30978
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 33e403367d183257be0f03f28da923d2
a586e4052008741f8f535e7bd12a94bde81b264e
82ce104749546e6a6f76a8ddf19b67795784c06256581c13f499e80e4f713131
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c3a242e6132fe39e40953523bb8d3175
c9914952910c863f533f0c7bf6451b77b12d10b7
423bd4744c6b389c23fccdfab4dc8731bf553232a6bf14782c946183e8119a04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 750f718797fc50f8465259f62a6da6ba
e9b7abb1a4dff4896c9fb48e7c7b1407885790de
8e3c0c96771c92bcee1d63055e2aa46aa5e0e3125da993844a9297340166873d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/DkQDUtb3kSQ/maxresdefault.webp
142.250.74.86200 OK 79 kB URL HTTP/2 i.ytimg.com/vi_webp/DkQDUtb3kSQ/maxresdefault.webp
IP 142.250.74.86:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 63d711ceffd0e7d7e459ec16ba20e7af
d34ebd5d07da42d0fcb75d89afa2d068958eb03f
625d2b4406d2c0682104e822dbfab41a7dad2d46e5108d75f1490193c8b42675
GET /vi_webp/DkQDUtb3kSQ/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 78762
date: Tue, 31 Jan 2023 06:42:16 GMT
expires: Tue, 31 Jan 2023 08:42:16 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
142.250.74.174200 OK 29 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
IP 142.250.74.174:0
Hash 18516f365f9ded788e861ecc629ed881
80aec4bbf8b6ec6f53e8c19ae88dbdefe39502ed
0e9d762bce755cb691ec9c6430fa77514d3ac8ee32f6ed23ecbd0e2b09bf9196
GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 31 Jan 2023 06:42:14 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+653; expires=Thu, 30-Jan-2025 06:42:14 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c3a242e6132fe39e40953523bb8d3175
c9914952910c863f533f0c7bf6451b77b12d10b7
423bd4744c6b389c23fccdfab4dc8731bf553232a6bf14782c946183e8119a04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 750f718797fc50f8465259f62a6da6ba
e9b7abb1a4dff4896c9fb48e7c7b1407885790de
8e3c0c96771c92bcee1d63055e2aa46aa5e0e3125da993844a9297340166873d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.138200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 31 Jan 2023 06:42:16 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.138200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5fbce649544dc06f8ea29a28fe5a004d
0c927fc56a81a2b403ba5638ca7d786cf6d37b67
c32e4495f7227605ed0ec7e978e6aada9eb72533af9596578a74bca6410f2b25
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 895
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 31 Jan 2023 06:42:16 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 269364a671d1eea8cfea514e17faa205
0b24ee477849252c95eb28e841c19dc673ab7e3b
e21ab9222d6c4ad247994983d12bf12137cf5b563ac28bb35e6dd878abd18b65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 269364a671d1eea8cfea514e17faa205
0b24ee477849252c95eb28e841c19dc673ab7e3b
e21ab9222d6c4ad247994983d12bf12137cf5b563ac28bb35e6dd878abd18b65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=244&aitags=133%2C134%2C135%2C136%2C160%2C242%2C243%2C244%2C247%2C278%2C298%2C302&source=yt_otf&requiressl=yes&mh=tg&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2123750&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=video%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&otf=1&otfp=1&dur=0.000&lmt=1637949530261377&mt=1675147051&fvip=4&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOOicbltjoFh0_Pl5SwvajEVn9udviqgiYDBShIj8xdpAiB0x8xEgTEBySHvxNctuDGn3rPCf7_EnSvZ56AeIlUhuA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgeQULyphGWFDfxUp8EGcwHFWeI0KId2Yzc1kbivdyPkUCIEEpMeeP0dlpGEbAwQQCMzChG3ThY--_H9_zpof6H6mB&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&sq=0&rn=1&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg=
91.90.45.172200 OK 1.2 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=244&aitags=133%2C134%2C135%2C136%2C160%2C242%2C243%2C244%2C247%2C278%2C298%2C302&source=yt_otf&requiressl=yes&mh=tg&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2123750&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=video%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&otf=1&otfp=1&dur=0.000&lmt=1637949530261377&mt=1675147051&fvip=4&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOOicbltjoFh0_Pl5SwvajEVn9udviqgiYDBShIj8xdpAiB0x8xEgTEBySHvxNctuDGn3rPCf7_EnSvZ56AeIlUhuA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgeQULyphGWFDfxUp8EGcwHFWeI0KId2Yzc1kbivdyPkUCIEEpMeeP0dlpGEbAwQQCMzChG3ThY--_H9_zpof6H6mB&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&sq=0&rn=1&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg=
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1224), with no line terminators
Hash fde9d8d23458128ecc21b41704590a15
0727baee1410b4654d7f5910195b934c9a3673e3
1dc8c749007c3e44e9bf593ec3104755ab5e3abe301cb83e1ba79a234da67ee5
POST /videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=244&aitags=133%2C134%2C135%2C136%2C160%2C242%2C243%2C244%2C247%2C278%2C298%2C302&source=yt_otf&requiressl=yes&mh=tg&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2123750&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=video%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&otf=1&otfp=1&dur=0.000&lmt=1637949530261377&mt=1675147051&fvip=4&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOOicbltjoFh0_Pl5SwvajEVn9udviqgiYDBShIj8xdpAiB0x8xEgTEBySHvxNctuDGn3rPCf7_EnSvZ56AeIlUhuA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgeQULyphGWFDfxUp8EGcwHFWeI0KId2Yzc1kbivdyPkUCIEEpMeeP0dlpGEbAwQQCMzChG3ThY--_H9_zpof6H6mB&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&sq=0&rn=1&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Tue, 31 Jan 2023 06:42:17 GMT
Expires: Tue, 31 Jan 2023 06:42:17 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1224
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=251&source=youtube&requiressl=yes&mh=tg&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2123750&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=audio%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&gir=yes&clen=7069&otfp=1&dur=15.001&lmt=1637949525552354&mt=1675147051&fvip=4&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRgIhALhTm5sf6-kYrASQJPoDyieUtSnMbzC3rCsV0OmyL2AYAiEAt-p-YkMMsOr59StuvRoUoyLQHn-qQ39fZ8IXH9Aull4%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgeQULyphGWFDfxUp8EGcwHFWeI0KId2Yzc1kbivdyPkUCIEEpMeeP0dlpGEbAwQQCMzChG3ThY--_H9_zpof6H6mB&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&range=0-7068&rn=2&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg=
91.90.45.172200 OK 1.2 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=251&source=youtube&requiressl=yes&mh=tg&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2123750&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=audio%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&gir=yes&clen=7069&otfp=1&dur=15.001&lmt=1637949525552354&mt=1675147051&fvip=4&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRgIhALhTm5sf6-kYrASQJPoDyieUtSnMbzC3rCsV0OmyL2AYAiEAt-p-YkMMsOr59StuvRoUoyLQHn-qQ39fZ8IXH9Aull4%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgeQULyphGWFDfxUp8EGcwHFWeI0KId2Yzc1kbivdyPkUCIEEpMeeP0dlpGEbAwQQCMzChG3ThY--_H9_zpof6H6mB&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&range=0-7068&rn=2&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg=
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1170), with no line terminators
Hash ac37ca5c54f72a2a5d4fe7fcefdc9e2e
f334db733185c8bf4d645d52de67689af9e2c60e
c37fe17547171c3d6bdc990bf42fec9c4423563e02becdf10d727ededdaaf688
POST /videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=251&source=youtube&requiressl=yes&mh=tg&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2123750&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=audio%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&gir=yes&clen=7069&otfp=1&dur=15.001&lmt=1637949525552354&mt=1675147051&fvip=4&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRgIhALhTm5sf6-kYrASQJPoDyieUtSnMbzC3rCsV0OmyL2AYAiEAt-p-YkMMsOr59StuvRoUoyLQHn-qQ39fZ8IXH9Aull4%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgeQULyphGWFDfxUp8EGcwHFWeI0KId2Yzc1kbivdyPkUCIEEpMeeP0dlpGEbAwQQCMzChG3ThY--_H9_zpof6H6mB&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&range=0-7068&rn=2&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Tue, 31 Jan 2023 06:42:17 GMT
Expires: Tue, 31 Jan 2023 06:42:17 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1170
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 269364a671d1eea8cfea514e17faa205
0b24ee477849252c95eb28e841c19dc673ab7e3b
e21ab9222d6c4ad247994983d12bf12137cf5b563ac28bb35e6dd878abd18b65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69d928e816328ede04ac4ebae31ce4b4
4b01c41a007c625d0da9383a8fb9eb6dea66bd50
4f0ef0b94da439560ffbb5a80f29d1a457368f7fe417732204e39033111a823c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69d928e816328ede04ac4ebae31ce4b4
4b01c41a007c625d0da9383a8fb9eb6dea66bd50
4f0ef0b94da439560ffbb5a80f29d1a457368f7fe417732204e39033111a823c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=251&source=youtube&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=audio%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&gir=yes&clen=7069&otfp=1&dur=15.001&lmt=1637949525552354&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRgIhALhTm5sf6-kYrASQJPoDyieUtSnMbzC3rCsV0OmyL2AYAiEAt-p-YkMMsOr59StuvRoUoyLQHn-qQ39fZ8IXH9Aull4%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=tg&mm=29&mn=sn-5goeenez&ms=rdu&mt=1675147296&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAMnSx0vuv6-33VeFjCOttVzrLMKmr31cXLUby3xAHIznAiEAlsRWXtX1U7Lrz4iTZM0rRpHzyY9u5v5NFZSqplOQEuc%3D&range=0-7068&rn=4&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg=
74.125.111.9200 OK 1.2 kB URL HTTP/1.1 rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=251&source=youtube&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=audio%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&gir=yes&clen=7069&otfp=1&dur=15.001&lmt=1637949525552354&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRgIhALhTm5sf6-kYrASQJPoDyieUtSnMbzC3rCsV0OmyL2AYAiEAt-p-YkMMsOr59StuvRoUoyLQHn-qQ39fZ8IXH9Aull4%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=tg&mm=29&mn=sn-5goeenez&ms=rdu&mt=1675147296&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAMnSx0vuv6-33VeFjCOttVzrLMKmr31cXLUby3xAHIznAiEAlsRWXtX1U7Lrz4iTZM0rRpHzyY9u5v5NFZSqplOQEuc%3D&range=0-7068&rn=4&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg=
IP 74.125.111.9:0
File type ASCII text, with very long lines (1175), with no line terminators
Hash 862ec7e717c1a2ae39777535fabfc73b
347960c3e122532135cf31e4f2e90058a6b4e4ec
9fde63f24f3e7d07b77d3ff42edfc34f3f86107126e860bbf03bdf26bda9e59c
POST /videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=251&source=youtube&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=audio%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&gir=yes&clen=7069&otfp=1&dur=15.001&lmt=1637949525552354&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRgIhALhTm5sf6-kYrASQJPoDyieUtSnMbzC3rCsV0OmyL2AYAiEAt-p-YkMMsOr59StuvRoUoyLQHn-qQ39fZ8IXH9Aull4%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=tg&mm=29&mn=sn-5goeenez&ms=rdu&mt=1675147296&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAMnSx0vuv6-33VeFjCOttVzrLMKmr31cXLUby3xAHIznAiEAlsRWXtX1U7Lrz4iTZM0rRpHzyY9u5v5NFZSqplOQEuc%3D&range=0-7068&rn=4&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg= HTTP/1.1
Host: rr4---sn-5goeenez.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Tue, 31 Jan 2023 06:42:17 GMT
Expires: Tue, 31 Jan 2023 06:42:17 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1175
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=244&aitags=133%2C134%2C135%2C136%2C160%2C242%2C243%2C244%2C247%2C278%2C298%2C302&source=yt_otf&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=video%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&otf=1&otfp=1&dur=0.000&lmt=1637949530261377&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOOicbltjoFh0_Pl5SwvajEVn9udviqgiYDBShIj8xdpAiB0x8xEgTEBySHvxNctuDGn3rPCf7_EnSvZ56AeIlUhuA%3D%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=tg&mm=29&mn=sn-5goeenez&ms=rdu&mt=1675147296&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAKIotnZ_us_8PipM21fXzdzx4xDEhs3D0I0J7L2akwnIAiB6wSCS18cR-B_fOvPAlu_0OEV_1DvdHH13oyn4nNMc8g%3D%3D&sq=0&rn=3&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg=
74.125.111.9200 OK 1.2 kB URL HTTP/1.1 rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=244&aitags=133%2C134%2C135%2C136%2C160%2C242%2C243%2C244%2C247%2C278%2C298%2C302&source=yt_otf&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=video%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&otf=1&otfp=1&dur=0.000&lmt=1637949530261377&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOOicbltjoFh0_Pl5SwvajEVn9udviqgiYDBShIj8xdpAiB0x8xEgTEBySHvxNctuDGn3rPCf7_EnSvZ56AeIlUhuA%3D%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=tg&mm=29&mn=sn-5goeenez&ms=rdu&mt=1675147296&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAKIotnZ_us_8PipM21fXzdzx4xDEhs3D0I0J7L2akwnIAiB6wSCS18cR-B_fOvPAlu_0OEV_1DvdHH13oyn4nNMc8g%3D%3D&sq=0&rn=3&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg=
IP 74.125.111.9:0
File type ASCII text, with very long lines (1235), with no line terminators
Hash 9862c3eac49f99376093a8d03e66ad5b
9f100182265708553483f6e4a0759856c8b2da27
bb6c6a17646652ab67de6967d146f0c435b9bdbd1b5d0bc91a6b6da35d65c412
POST /videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=244&aitags=133%2C134%2C135%2C136%2C160%2C242%2C243%2C244%2C247%2C278%2C298%2C302&source=yt_otf&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=video%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&otf=1&otfp=1&dur=0.000&lmt=1637949530261377&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOOicbltjoFh0_Pl5SwvajEVn9udviqgiYDBShIj8xdpAiB0x8xEgTEBySHvxNctuDGn3rPCf7_EnSvZ56AeIlUhuA%3D%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=tg&mm=29&mn=sn-5goeenez&ms=rdu&mt=1675147296&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAKIotnZ_us_8PipM21fXzdzx4xDEhs3D0I0J7L2akwnIAiB6wSCS18cR-B_fOvPAlu_0OEV_1DvdHH13oyn4nNMc8g%3D%3D&sq=0&rn=3&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg= HTTP/1.1
Host: rr4---sn-5goeenez.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Tue, 31 Jan 2023 06:42:17 GMT
Expires: Tue, 31 Jan 2023 06:42:17 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1235
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69d928e816328ede04ac4ebae31ce4b4
4b01c41a007c625d0da9383a8fb9eb6dea66bd50
4f0ef0b94da439560ffbb5a80f29d1a457368f7fe417732204e39033111a823c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:42:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=244&aitags=133%2C134%2C135%2C136%2C160%2C242%2C243%2C244%2C247%2C278%2C298%2C302&source=yt_otf&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=video%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&otf=1&otfp=1&dur=0.000&lmt=1637949530261377&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOOicbltjoFh0_Pl5SwvajEVn9udviqgiYDBShIj8xdpAiB0x8xEgTEBySHvxNctuDGn3rPCf7_EnSvZ56AeIlUhuA%3D%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=tg&mm=29&mn=sn-5goeenez&ms=rdu&mt=1675147296&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgWdLzTPxoKc37kPT4KCCfHVK15T88HqCYq2Lvhdvc4coCIQD6tqzXIkXnBtGka2Y83lD3oV3uhrFqPeYQK3RMsKlsxQ%3D%3D&sq=0&rn=7&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg=
74.125.111.9200 OK 1.2 kB URL HTTP/1.1 rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=244&aitags=133%2C134%2C135%2C136%2C160%2C242%2C243%2C244%2C247%2C278%2C298%2C302&source=yt_otf&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=video%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&otf=1&otfp=1&dur=0.000&lmt=1637949530261377&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOOicbltjoFh0_Pl5SwvajEVn9udviqgiYDBShIj8xdpAiB0x8xEgTEBySHvxNctuDGn3rPCf7_EnSvZ56AeIlUhuA%3D%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=tg&mm=29&mn=sn-5goeenez&ms=rdu&mt=1675147296&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgWdLzTPxoKc37kPT4KCCfHVK15T88HqCYq2Lvhdvc4coCIQD6tqzXIkXnBtGka2Y83lD3oV3uhrFqPeYQK3RMsKlsxQ%3D%3D&sq=0&rn=7&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg=
IP 74.125.111.9:0
File type ASCII text, with very long lines (1235), with no line terminators
Hash 23d931615a58d6f32d4b2c099d045f33
6d98c015c3791193a00a3c39a187955ac2356ae2
8cf6bc09632ef8dd1c14b649505e6e019cbe163fdb81d9f7e035c70f5b6139e6
POST /videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=244&aitags=133%2C134%2C135%2C136%2C160%2C242%2C243%2C244%2C247%2C278%2C298%2C302&source=yt_otf&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=video%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&otf=1&otfp=1&dur=0.000&lmt=1637949530261377&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOOicbltjoFh0_Pl5SwvajEVn9udviqgiYDBShIj8xdpAiB0x8xEgTEBySHvxNctuDGn3rPCf7_EnSvZ56AeIlUhuA%3D%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=tg&mm=29&mn=sn-5goeenez&ms=rdu&mt=1675147296&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgWdLzTPxoKc37kPT4KCCfHVK15T88HqCYq2Lvhdvc4coCIQD6tqzXIkXnBtGka2Y83lD3oV3uhrFqPeYQK3RMsKlsxQ%3D%3D&sq=0&rn=7&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg= HTTP/1.1
Host: rr4---sn-5goeenez.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Tue, 31 Jan 2023 06:42:17 GMT
Expires: Tue, 31 Jan 2023 06:42:17 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1235
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr5---sn-5hne6n6l.googlevideo.com/videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=251&source=youtube&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=audio%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&gir=yes&clen=7069&otfp=1&dur=15.001&lmt=1637949525552354&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRgIhALhTm5sf6-kYrASQJPoDyieUtSnMbzC3rCsV0OmyL2AYAiEAt-p-YkMMsOr59StuvRoUoyLQHn-qQ39fZ8IXH9Aull4%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=tg&mm=34&mn=sn-5hne6n6l&ms=ltu&mt=1675147261&mv=m&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgbBuZMQuLdpxyV4qP8tc93NHHpRu88cxlP2eiXxzoj_gCIHAkG1bqIRvxEIp1whFjD0awUxDgwpW-eW-OFSTA5UNg&range=0-7068&rn=5&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg=
74.125.8.170200 OK 7.1 kB URL HTTP/1.1 rr5---sn-5hne6n6l.googlevideo.com/videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=251&source=youtube&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=audio%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&gir=yes&clen=7069&otfp=1&dur=15.001&lmt=1637949525552354&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRgIhALhTm5sf6-kYrASQJPoDyieUtSnMbzC3rCsV0OmyL2AYAiEAt-p-YkMMsOr59StuvRoUoyLQHn-qQ39fZ8IXH9Aull4%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=tg&mm=34&mn=sn-5hne6n6l&ms=ltu&mt=1675147261&mv=m&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgbBuZMQuLdpxyV4qP8tc93NHHpRu88cxlP2eiXxzoj_gCIHAkG1bqIRvxEIp1whFjD0awUxDgwpW-eW-OFSTA5UNg&range=0-7068&rn=5&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg=
IP 74.125.8.170:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash ec9cfb1d56f422274d21ebdba4cc08ab
5e392d0d049e52196cc39fa0c8e86580fb409a41
639fd66a433641790ff4b7bcf7e9e2740b14794b794c6130e0e40ebd0b91f269
POST /videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=251&source=youtube&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=audio%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&gir=yes&clen=7069&otfp=1&dur=15.001&lmt=1637949525552354&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRgIhALhTm5sf6-kYrASQJPoDyieUtSnMbzC3rCsV0OmyL2AYAiEAt-p-YkMMsOr59StuvRoUoyLQHn-qQ39fZ8IXH9Aull4%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=tg&mm=34&mn=sn-5hne6n6l&ms=ltu&mt=1675147261&mv=m&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgbBuZMQuLdpxyV4qP8tc93NHHpRu88cxlP2eiXxzoj_gCIHAkG1bqIRvxEIp1whFjD0awUxDgwpW-eW-OFSTA5UNg&range=0-7068&rn=5&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg= HTTP/1.1
Host: rr5---sn-5hne6n6l.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Fri, 26 Nov 2021 17:58:45 GMT
Content-Type: audio/webm
Date: Tue, 31 Jan 2023 06:42:17 GMT
Expires: Tue, 31 Jan 2023 06:42:17 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 7069
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr5---sn-5hne6n6l.googlevideo.com/videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=244&aitags=133%2C134%2C135%2C136%2C160%2C242%2C243%2C244%2C247%2C278%2C298%2C302&source=yt_otf&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=video%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&otf=1&otfp=1&dur=0.000&lmt=1637949530261377&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOOicbltjoFh0_Pl5SwvajEVn9udviqgiYDBShIj8xdpAiB0x8xEgTEBySHvxNctuDGn3rPCf7_EnSvZ56AeIlUhuA%3D%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=tg&mm=34&mn=sn-5hne6n6l&ms=ltu&mt=1675147261&mv=m&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgCs8NPVQXL5bAlJJaVXpSAq1kwnFW7CcymMjOpamQR30CIQDrYIssY5rNe5RYE241BqJOpUU6h5oN6j_ROJlHQHmsKQ%3D%3D&sq=0&rn=8&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg=
74.125.8.170200 OK 276 B URL HTTP/1.1 rr5---sn-5hne6n6l.googlevideo.com/videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=244&aitags=133%2C134%2C135%2C136%2C160%2C242%2C243%2C244%2C247%2C278%2C298%2C302&source=yt_otf&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=video%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&otf=1&otfp=1&dur=0.000&lmt=1637949530261377&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOOicbltjoFh0_Pl5SwvajEVn9udviqgiYDBShIj8xdpAiB0x8xEgTEBySHvxNctuDGn3rPCf7_EnSvZ56AeIlUhuA%3D%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=tg&mm=34&mn=sn-5hne6n6l&ms=ltu&mt=1675147261&mv=m&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgCs8NPVQXL5bAlJJaVXpSAq1kwnFW7CcymMjOpamQR30CIQDrYIssY5rNe5RYE241BqJOpUU6h5oN6j_ROJlHQHmsKQ%3D%3D&sq=0&rn=8&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg=
IP 74.125.8.170:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 8d72b9e8284070c82c23a7314f3db652
3533e542ab2cb4110b5eb6407936656aef2a4f72
7d315322efc11278b88062bcd0376fdff8d0f7404bfbe3b87c179a50a728bf63
POST /videoplayback?expire=1675168936&ei=SLjYY7zGL5OD0u8PzfyysAo&ip=91.90.42.154&id=o-ALuXXksriCzQrTqVacZPiTaYGPeibfXNaAOzAaJbkeNQ&itag=244&aitags=133%2C134%2C135%2C136%2C160%2C242%2C243%2C244%2C247%2C278%2C298%2C302&source=yt_otf&requiressl=yes&spc=H3gIhiq3mnODCgSqhNr3W_aaiC9-EQI&vprv=1&mime=video%2Fwebm&ns=oC1a4z4FIQnVZEpLZEFG90EL&otf=1&otfp=1&dur=0.000&lmt=1637949530261377&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=sJfvue5j5_AkHQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOOicbltjoFh0_Pl5SwvajEVn9udviqgiYDBShIj8xdpAiB0x8xEgTEBySHvxNctuDGn3rPCf7_EnSvZ56AeIlUhuA%3D%3D&alr=yes&cpn=3COCryhbvqKNGP9_&cver=1.20230111.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=tg&mm=34&mn=sn-5hne6n6l&ms=ltu&mt=1675147261&mv=m&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgCs8NPVQXL5bAlJJaVXpSAq1kwnFW7CcymMjOpamQR30CIQDrYIssY5rNe5RYE241BqJOpUU6h5oN6j_ROJlHQHmsKQ%3D%3D&sq=0&rn=8&rbuf=0&pot=D_VvYyLara4D9VdvWMdbzBkdRsuLPNvqkbvuy2j8S0-dGNw-NAC2R0TArocvuc-gTCgxlZHdxRHQjTCM2F5ore8iDl7eQIfW2OaLpadqPeT7QyHEiPNtF4T4_7WVtfFck9x3ELg= HTTP/1.1
Host: rr5---sn-5hne6n6l.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Fri, 20 Jan 2023 06:23:25 GMT
Content-Type: video/webm
Date: Tue, 31 Jan 2023 06:42:17 GMT
Expires: Tue, 31 Jan 2023 06:42:17 GMT
Cache-Control: private, max-age=21299
Transfer-Encoding: chunked
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd328471c-fc31-49a3-ae71-21d6171a8237.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd328471c-fc31-49a3-ae71-21d6171a8237.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e575f4c5e3aa793f846cadc8baf386c
f482a4e8e80ea5b6afc29e5cc1a9a2b8c2f0434d
09a5bbe4fb7f23ee43228267f30c1ef0cd8747e515e01c963df0756b866f23ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd328471c-fc31-49a3-ae71-21d6171a8237.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9700
x-amzn-requestid: 059475a7-d7de-4a44-9fc7-11fb24e201b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffB_9G8DIAMF64A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e399-57fea3031d1e93ec02308fac;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vzubP2I1xR5NF1amWIPiIlp6yPykWhz-CEbwDiJOs-eTWkTE-fvfjA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 04:16:21 GMT
age: 8759
etag: "f482a4e8e80ea5b6afc29e5cc1a9a2b8c2f0434d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-includes/js/jquery/ui/resizable.js?ver=1.13.2
108.167.140.18200 OK 0 B URL HTTP/2 www.millenniumcityltd.com/wp-includes/js/jquery/ui/resizable.js?ver=1.13.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/resizable.js?ver=1.13.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Jan 2023 17:08:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9743
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/forminator/build/front/front.multi.min.js?ver=1.22.1
108.167.140.18200 OK 0 B URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/forminator/build/front/front.multi.min.js?ver=1.22.1
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/forminator/build/front/front.multi.min.js?ver=1.22.1 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Dec 2022 13:54:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/elementor/assets/js/frontend-modules.js?ver=3.10.2
108.167.140.18200 OK 0 B URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/elementor/assets/js/frontend-modules.js?ver=3.10.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.js?ver=3.10.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 17:55:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/cache/wpfc-minified/kempccpk/7s1c.css
108.167.140.18200 OK 0 B URL HTTP/2 www.millenniumcityltd.com/wp-content/cache/wpfc-minified/kempccpk/7s1c.css
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/cache/wpfc-minified/kempccpk/7s1c.css HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 20:56:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-includes/js/jquery/ui/slider.js?ver=1.13.2
108.167.140.18200 OK 0 B URL HTTP/2 www.millenniumcityltd.com/wp-includes/js/jquery/ui/slider.js?ver=1.13.2
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/slider.js?ver=1.13.2 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Jan 2023 17:08:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6128
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/forminator/assets/forminator-ui/js/select2.full.min.js?ver=1.22.1
108.167.140.18200 OK 0 B URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/forminator/assets/forminator-ui/js/select2.full.min.js?ver=1.22.1
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/forminator/assets/forminator-ui/js/select2.full.min.js?ver=1.22.1 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Dec 2022 13:54:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/cache/wpfc-minified/7ah1e3n1/7s1c.css
108.167.140.18200 OK 0 B URL HTTP/2 www.millenniumcityltd.com/wp-content/cache/wpfc-minified/7ah1e3n1/7s1c.css
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/cache/wpfc-minified/7ah1e3n1/7s1c.css HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 20:56:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/packages/owl-carousel/owl.carousel.min.js?ver=2.3.4
108.167.140.18200 OK 0 B URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/packages/owl-carousel/owl.carousel.min.js?ver=2.3.4
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/essential-real-estate/public/assets/packages/owl-carousel/owl.carousel.min.js?ver=2.3.4 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 18:11:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/packages/select2/js/select2.full.min.js?ver=4.0.6-rc.1
108.167.140.18200 OK 0 B URL HTTP/2 www.millenniumcityltd.com/wp-content/plugins/essential-real-estate/public/assets/packages/select2/js/select2.full.min.js?ver=4.0.6-rc.1
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-real-estate/public/assets/packages/select2/js/select2.full.min.js?ver=4.0.6-rc.1 HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 18:11:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.millenniumcityltd.com/wp-content/cache/wpfc-minified/1o2f2oyu/7s1c.css
108.167.140.18200 OK 0 B URL HTTP/2 www.millenniumcityltd.com/wp-content/cache/wpfc-minified/1o2f2oyu/7s1c.css
IP 108.167.140.18:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/cache/wpfc-minified/1o2f2oyu/7s1c.css HTTP/1.1
Host: www.millenniumcityltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.millenniumcityltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 20:56:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Tue, 31 Jan 2023 06:42:13 GMT
server: Apache
X-Firefox-Spdy: h2