Overview

URLseriale-shqip123.com/
IP 216.239.36.21 (United States)
ASN#15169 GOOGLE
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-28 23:25:12 UTC
StatusLoading report..
IDS alerts0
Blocklist alert49
urlquery alerts No alerts detected
Tags None

Domain Summary (48)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-28 05:53:26 UTC 34.117.237.239
simplewebanalysis.com (12) 0 2022-02-25 04:06:25 UTC 2022-11-28 06:51:19 UTC 52.28.211.11 Unknown ranking
discriminationprovide.com (18) 0 2022-11-21 22:16:29 UTC 2022-11-28 22:16:33 UTC 173.233.137.36 Unknown ranking
blogger.googleusercontent.com (4) 16485 2012-05-25 17:41:01 UTC 2020-02-08 23:24:50 UTC 142.250.74.33
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-28 16:39:41 UTC 142.250.74.10
fonts.gstatic.com (1) 0 2014-09-09 00:40:21 UTC 2022-11-28 15:46:00 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
1.bp.blogspot.com (3) 8403 2013-05-06 20:18:52 UTC 2020-05-14 01:22:22 UTC 142.250.74.161
lightssyrupdecree.com (5) 0 2022-11-12 08:15:02 UTC 2022-11-28 22:16:52 UTC 192.243.59.20 Unknown ranking
www.highperformancedisplayformat.com (6) 0 2022-09-01 01:42:42 UTC 2022-11-28 18:02:37 UTC 192.243.61.225 Unknown ranking
www.google.com (1) 7 2016-03-22 03:56:07 UTC 2022-11-28 11:50:49 UTC 142.250.74.164
commentsengine.com (2) 0 2022-04-14 14:40:18 UTC 2022-11-28 16:48:03 UTC 172.67.190.246 Unknown ranking
strategicperplexanswered.com (1) 0 2022-09-09 09:37:02 UTC 2022-11-27 22:44:03 UTC 192.243.61.227 Unknown ranking
lh3.googleusercontent.com (4) 66 2013-05-30 23:27:19 UTC 2020-05-01 19:11:58 UTC 142.250.74.33
adservice.google.no (1) 96969 2018-06-19 23:38:38 UTC 2020-05-14 07:59:11 UTC 142.250.74.66
ocsp.digicert.com (8) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
e1.o.lencr.org (3) 6159 No data No data 23.36.76.226
hqq.to (13) 57515 2020-08-28 22:24:15 UTC 2022-11-28 06:18:21 UTC 190.115.19.71
voe.sx (21) 52042 2019-06-05 08:57:36 UTC 2022-11-28 17:05:03 UTC 186.2.163.208
wastedinvaluable.com (2) 0 2022-11-16 05:53:14 UTC 2022-11-28 19:17:38 UTC 173.233.137.36 Unknown ranking
www.seriale-shqip123.com (3) 0 No data No data 142.250.74.83 Unknown ranking
spiritualdiscussing.com (2) 0 2022-10-01 10:27:37 UTC 2022-11-05 15:41:22 UTC 173.233.137.44 Unknown ranking
img-getpocket.cdn.mozilla.net (7) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
reproductiontape.com (2) 0 2022-11-11 10:42:27 UTC 2022-11-28 17:35:05 UTC 192.243.59.20 Unknown ranking
alleviatepracticableaddicted.com (2) 0 2022-07-05 09:49:47 UTC 2022-11-28 11:49:24 UTC 192.243.61.227 Unknown ranking
integrityprinciplesthorough.com (1) 0 2022-11-11 10:44:19 UTC 2022-11-28 19:13:10 UTC 173.233.137.52 Unknown ranking
ocsp.pki.goog (29) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.35
ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.158
testingmetriksbre.ru (4) 0 2022-06-30 21:55:42 UTC 2022-11-28 15:07:02 UTC 104.26.1.119 Unknown ranking
pagead2.googlesyndication.com (2) 101 2021-02-20 15:52:05 UTC 2022-11-28 20:08:51 UTC 142.250.74.66
i.ytimg.com (3) 109 2019-09-28 06:57:57 UTC 2022-11-28 20:52:49 UTC 142.250.74.54
pl17772624.profitablegatetocontent.com (1) 0 No data No data 192.243.59.20 Unknown ranking
dood.re (19) 0 2022-02-05 05:54:55 UTC 2022-11-28 22:16:33 UTC 104.26.4.50 Unknown ranking
ocsp.globalsign.com (1) 2075 2012-07-20 17:46:16 UTC 2020-05-02 20:58:10 UTC 104.18.20.226
seriale-shqip123.com (1) 0 2022-03-02 15:45:55 UTC 2022-11-26 23:21:02 UTC 216.239.36.21 Unknown ranking
r3.o.lencr.org (22) 344 No data No data 23.36.76.226
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
www.blogger.com (2) 8975 2012-05-22 07:35:03 UTC 2020-05-05 09:48:25 UTC 142.250.74.105
imasdk.googleapis.com (1) 11661 2014-10-30 17:42:18 UTC 2022-11-28 16:47:07 UTC 142.250.74.138
specialistinsensitive.com (3) 0 2022-11-26 01:43:00 UTC 2022-11-28 14:51:58 UTC 173.233.137.36 Unknown ranking
partner.googleadservices.com (1) 798 2012-10-03 01:04:21 UTC 2022-11-28 15:24:31 UTC 172.217.21.162
cdn.jsdelivr.net (1) 439 2012-09-30 00:15:09 UTC 2020-08-10 12:12:39 UTC 151.101.85.229
static.ads-twitter.com (16) 614 2018-06-23 22:08:39 UTC 2020-04-02 08:58:40 UTC 151.101.84.157
unpkg.com (3) 11693 2016-01-07 23:26:01 UTC 2022-11-28 06:33:10 UTC 104.16.122.175
www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-11-28 19:40:44 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-28 05:55:58 UTC 34.102.187.140
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 35.162.52.254
cdnjs.cloudflare.com (6) 235 2015-04-17 20:46:33 UTC 2022-11-28 14:12:27 UTC 104.17.24.14
veilsuccessfully.com (3) 0 2022-11-04 03:52:04 UTC 2022-11-28 10:18:27 UTC 192.243.61.227 Unknown ranking

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-28 2 seriale-shqip123.com/ Phishing
2022-11-28 2 www.seriale-shqip123.com/ Phishing
2022-11-28 2 www.seriale-shqip123.com/ Phishing
2022-11-28 2 www.seriale-shqip123.com/js/cookienotice.js Phishing
2022-11-28 2 integrityprinciplesthorough.com/f9/f0/4e/f9f04e429487bb9ba54c1aa49ea7bed4.js Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
Scan Date Severity Indicator Comment
2022-11-28 2 profitablegatetocontent.com Sinkholed
2022-11-28 2 lightssyrupdecree.com Sinkholed
2022-11-28 2 highperformancedisplayformat.com Sinkholed
2022-11-28 2 highperformancedisplayformat.com Sinkholed
2022-11-28 2 highperformancedisplayformat.com Sinkholed
2022-11-28 2 lightssyrupdecree.com Sinkholed
2022-11-28 2 highperformancedisplayformat.com Sinkholed
2022-11-28 2 lightssyrupdecree.com Sinkholed
2022-11-28 2 highperformancedisplayformat.com Sinkholed
2022-11-28 2 reproductiontape.com Sinkholed
2022-11-28 2 lightssyrupdecree.com Sinkholed
2022-11-28 2 highperformancedisplayformat.com Sinkholed
2022-11-28 2 wastedinvaluable.com Sinkholed
2022-11-28 2 lightssyrupdecree.com Sinkholed
2022-11-28 2 reproductiontape.com Sinkholed
2022-11-28 2 veilsuccessfully.com Sinkholed
2022-11-28 2 specialistinsensitive.com Sinkholed
2022-11-28 2 strategicperplexanswered.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 wastedinvaluable.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 veilsuccessfully.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 specialistinsensitive.com Sinkholed
2022-11-28 2 specialistinsensitive.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 alleviatepracticableaddicted.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 alleviatepracticableaddicted.com Sinkholed
2022-11-28 2 discriminationprovide.com Sinkholed
2022-11-28 2 veilsuccessfully.com Sinkholed
2022-11-28 2 integrityprinciplesthorough.com Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 216.239.36.21
Date UQ / IDS / BL URL IP
2023-01-27 20:22:13 +0000 0 - 3 - 0 encr.pw/wS0nC 216.239.36.21
2023-01-27 02:29:34 +0000 0 - 0 - 4 xn--eckfca4feb.xn--tckwe/ 216.239.36.21
2023-01-23 09:33:55 +0000 0 - 0 - 8 intl-paypal-taxes.com/ 216.239.36.21
2023-01-23 01:19:50 +0000 0 - 0 - 1 whsdeca.com/OKhy/MSthOffice/login.php 216.239.36.21
2023-01-21 13:11:09 +0000 0 - 0 - 2 jowy-hax.net/dc.txt 216.239.36.21


Last 5 reports on ASN: GOOGLE
Date UQ / IDS / BL URL IP
2023-01-28 06:38:00 +0000 0 - 0 - 1 biayatariftransaksi.com/login.php/ 34.98.99.30
2023-01-28 06:37:15 +0000 0 - 0 - 4 littmansamu1987.blogspot.co.uk/ 142.250.74.1
2023-01-28 06:36:07 +0000 0 - 0 - 1 global-pubgmobile.com/ 34.98.99.30
2023-01-28 06:36:04 +0000 0 - 0 - 3 howtocopyrobloxgames2019.blogspot.ba/ 172.217.21.161
2023-01-28 06:34:20 +0000 0 - 0 - 1 zoomitglobal.com/W/wstpc/login.php 34.102.136.180


Last 2 reports on domain: seriale-shqip123.com
Date UQ / IDS / BL URL IP
2022-12-05 03:00:21 +0000 0 - 0 - 25 seriale-shqip123.com/ 216.239.36.21
2022-11-28 23:25:12 +0000 0 - 0 - 49 seriale-shqip123.com/ 216.239.36.21


No other reports with similar screenshot

JavaScript

Executed Scripts (163)

Executed Evals (10)
#1 JavaScript::Eval (size: 2091) - SHA256: 87370146eb2526a2c1a6cf1fcb5aa656b88f2ef49f2b7f3e8647d1f407f42844
               (function() {
                   var bn;
                   if (bn = document.getElementById('atLink-fb866e7b401f197b5e12a2b78590cd45')) {
                       var callback = function() {
                           (new Image()).src = '//lightssyrupdecree.com/clk.gif?landing_id=3569807&placement_id=17672262&sid=H4sIAAAAAAAC%2F1RTzWsd1Rs%2B0%2Fb3QxEXFjeiyF24UDDJOfN5xiJiWiPBftFW6vZ8TXLM3Jlxzsyd26yKRSlujDvdTZ6kjR9FLLgV5MaNFoTeLiQL808IdSs3DVx9F%2FM%2Bz%2FvM4nnOec%2Bn2%2B0hoWjFweUL5abNc7EULdLBq9dtocvODS5eGzC6SM8MrtsiDs8MxrNPPXqD0WiRvjZ416iNcsmnjFJG2WDF1iYrx0tHKmx1L2WLKV0M%2FUUWhRjX%2F%2BWu9eCEBz06JKdh9fR%2F67%2Feh1UTFMMfzhm30ZTV6%2B8M21w0ZY2R3nu%2F2CjKrsBwDrPaQ1bsHf%2BN0k0J%2BfIEymLvOAHK0e4sAaSdEu8PBlnsHduEHN154lTmMAWkfgbdaAKT78OKCVR5C1Y%2FJIDSuHgJxfDuxbLuxI0nqpipU3Lq8V%2Bw3ZSc%2BvN5FMPvl3M7Hlwt87axZeEwznrY8QR2bYKq3Uez6cF2%2B1DNx7D6d7L0%2BDyK4e4ll5ew%2BuAV4cdCBbG%2FwH3KFsJYhgucs2RBmzBKI02jIAuOjsjaCWw2QW62INxJtM5Daz20mYe28jDUBwMRpRmlSSazIOChUioIlIp4rCMdhDyjaNUswxaaagsq34Kqb6Kqb2LDfvEwOo26%2FRlu%2FeCu8k0Qca5DJXiUBUmgBJMi9lVIYxZTkZksDrhRkVHU%2BAGPGDUykinnqaYsTISKM8EDydOUp5wLKWUiYxaGKolTn3EV%2BDQJuM4yFad%2BIBXTlGoaJEZSJdIgTBlLE5rpUDEZCKNSxmSScZXSJGU8TlOWphmc9uAagpHu0RmCzhF0gqCzBF1D0I36Ozp3vuvv6ty1kh13%2F7gH%2FU7ZrG2LO2WzZgqyXR2S52ZX7D379Qo2zMEgkzyOTSJDyjKWJjIyzBe%2BTHiUUqXDCM72sO4EhPOwaafk5eUPUNkpeWr1EaTYh8v3oexJiPZFiG4njDnEOmKKzeJHZ2orcrPg1j%2ByFfODRVUOocseVXMKzQ1vOz8kLxxtXDz%2BHEY9IMcFVfeo6h4f2l8I1vLbO1fKjuxeKTtH7l%2BqGju0m2K2jVcb0Zj%2Ff%2FueudGVtV4957a%2BeVvNhBm8d8245rwotC3WHPlu2Wpt6pWyVob8tOquG3m5devLbV201fnLZ1dWh1VtnLNlMYGwD81vUHZKnv7szaN39tJXf8PWE9Rtj2E7d2rLfajqJlw1n7mSoM7nXFYEXdvv1L6cD3NLkJs5F7KH%2BxeXc7ztbmOt9iCaWyiGPUZ1j1HeQ%2BRbcO3JnaaqH7z1KDgqyNzbkXlNdmVez3R7MOAyjbI0iyOukiQL%2FJhGEdWaZzITkoYSjZuqT85e%2BAcAAP%2F%2FAQAA%2F%2F8VzGqSOgUAAA%3D%3D&psid=';
                       };
                       if (bn.addEventListener) bn.addEventListener('click', callback, false);
                       else if (bn.attachEvent) bn.attachEvent('onclick', callback);
                       else bn.onclick = callback;
                   }
               })();
#2 JavaScript::Eval (size: 754) - SHA256: 5536098ce1412ccc24488be62fe53e63f2039874958bc7f2b55bfde2fd7a126b
function ilRRBDk(e) {
    if (('isTrusted' in e) && (e.isTrusted) && (!beekZI || !zVhzVy)) {
        beekZI = !0;
        zVhzVy = !0;
        document.removeEventListener('mousemove', ilRRBDk, passiveSupported ? {
            passive: true
        } : false);
        was_click = true;
        if (navigator.userAgent.toLowerCase().match(/wv/i)) {
            createcxt();
        }
        NXrnEs = 'f4ed5f1363e9e1e4123f893f6258ec973b4eeb28';
        vnWFTAaa = '1669677902';
        xpDgUIWs = 'a6dfd969c895ad74d0aa3d451320b29dab4e5e93';
    }
}
document.addEventListener('mousemove', ilRRBDk, passiveSupported ? {
    passive: true
} : false);
#3 JavaScript::Eval (size: 65) - SHA256: e95194c60ba35e5329dfc389f1b7e872782b39c8cd16dbbcc38ef192e23dcf4d
/^https?:\/\/(www[0-9]?\.)?(.[^\/:]+)\/e\//.test(window.location)
#4 JavaScript::Eval (size: 469) - SHA256: d1513c4a7f2110bb4abe7307db85891d8c6d864549b4b4c36698c20382103390
           if (typeof dfc221c35e !== 'undefined') {
               if (!isNaN(dfc221c35e) && dfc221c35e > 0) setTimeout(function() {
                   window.top.location = 'https://www.spikereekvelocity.com/dyfc1k09?key=863705bcbb4b6a554ddb359665395a6f&psid=17672262';
               }, dfc221c35e * 1000);
               else window.top.location = 'https://www.spikereekvelocity.com/dyfc1k09?key=863705bcbb4b6a554ddb359665395a6f&psid=17672262';
           }
#5 JavaScript::Eval (size: 469) - SHA256: 598ba5ab2461f32eecbf0b67a151aed765cabf72f372d69ea666610541235e72
           if (typeof dfc221c35e !== 'undefined') {
               if (!isNaN(dfc221c35e) && dfc221c35e > 0) setTimeout(function() {
                   window.top.location = 'https://www.spikereekvelocity.com/dyfc1k09?key=863705bcbb4b6a554ddb359665395a6f&psid=17672177';
               }, dfc221c35e * 1000);
               else window.top.location = 'https://www.spikereekvelocity.com/dyfc1k09?key=863705bcbb4b6a554ddb359665395a6f&psid=17672177';
           }
#6 JavaScript::Eval (size: 12) - SHA256: 4ab4edee422a7a6e621718d1ae7180b13ba13f18c0ce3e7e3e26fd68e57e119c
class Foo {}
#7 JavaScript::Eval (size: 20) - SHA256: fc0d820f6f6693ccd6462b02714dcea358f75a12b72a7fe3f38e24168433f487
var bar = (x) => x + 1
#8 JavaScript::Eval (size: 753) - SHA256: 0eed10b03eabb72cc47ff7515902108f4260c301fd10194764c583ce0cd73b73
function txnYKgi(e) {
    if (('isTrusted' in e) && (e.isTrusted) && (!qbIlvu || !DyXODcpb)) {
        qbIlvu = !0;
        DyXODcpb = !0;
        document.removeEventListener('mousemove', txnYKgi, passiveSupported ? {
            passive: true
        } : false);
        was_click = true;
        if (navigator.userAgent.toLowerCase().match(/wv/i)) {
            createcxt();
        }
        WGRB = '34a527f6c4a1c87d1356cba51a821cd0d65c7439';
        VogNnD = '1669677902';
        gFsKRpo = 'ef5af310e50987142eace9b438c46b7ffacd85de';
    }
}
document.addEventListener('mousemove', txnYKgi, passiveSupported ? {
    passive: true
} : false);
#9 JavaScript::Eval (size: 31) - SHA256: 6e4c074bba968f3a2899edcbccf9e893ebdad7a5a533463e4d9630f28f3baed1
(a = 0) => {
    let b;
    const c = class {};
}
#10 JavaScript::Eval (size: 29) - SHA256: b2ebc210c5c379879d07a4a9e046a4ea803d56dcc91d533db817ec272cbcfaf4
var dfc221c35e = Number('');

Executed Writes (5)
#1 JavaScript::Write (size: 134) - SHA256: e182fb0441fd3c9ee4c0afa5737d6bf102b005cb8f917d0acb289a3666f8e074
< script type = "text/javascript"
src = "https://www.highperformancedisplayformat.com/8e51e259fd1a1aa9fcd9c3a978dc532d/invoke.js" > < /script>
#2 JavaScript::Write (size: 134) - SHA256: 05d127a9387f2c016f38e076762e261c97a387245d2c218550ebcfb10669c147
< script type = "text/javascript"
src = "https://www.highperformancedisplayformat.com/6b89af69f49621c6c443dd9b71e61d32/invoke.js" > < /script>
#3 JavaScript::Write (size: 134) - SHA256: 5debecb30db9b49b2c3b29617cd19ffea8c546df3d56bc080f4ea08fbc0d7579
< script type = "text/javascript"
src = "https://www.highperformancedisplayformat.com/fb866e7b401f197b5e12a2b78590cd45/invoke.js" > < /script>
#4 JavaScript::Write (size: 121) - SHA256: 45ffd132813a0336ea17cc6680887642bb101f7c523dd353c41884a314eb7a48
< script type = "text/javascript"
src = "https://spiritualdiscussing.com/43db73d118f408de255d93e402b10dd5/invoke.js" > < /script>
#5 JavaScript::Write (size: 134) - SHA256: c2a6394c1086ce2f45a67943b031e899383eb2e7514939b819c0db42122bbd57
< script type = "text/javascript"
src = "https://www.highperformancedisplayformat.com/43db73d118f408de255d93e402b10dd5/invoke.js" > < /script>


HTTP Transactions (248)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: seriale-shqip123.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         216.239.36.21
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.seriale-shqip123.com/
Date: Mon, 28 Nov 2022 23:24:58 GMT
Server: ghs
Content-Length: 229
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   229
Md5:    03624e37e152a1c4219020d5873de96f
Sha1:   928572c956e865200cee05e1a38c727e401122fe
Sha256: 409ece6bce78a63be17eba0ee4887c7a48703e54e148d76b0947fe5437e3e91b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3835
Expires: Tue, 29 Nov 2022 00:28:53 GMT
Date: Mon, 28 Nov 2022 23:24:58 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3593
Cache-Control: max-age=129976
Date: Mon, 28 Nov 2022 23:24:58 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:31:14 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 23:17:50 GMT
cache-control: public,max-age=3600
age: 428
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7478
Expires: Tue, 29 Nov 2022 01:29:36 GMT
Date: Mon, 28 Nov 2022 23:24:58 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: O6Ewuu70NHCxUTWrJBJwEAqJBfCuuTcBXLV8SAWUl3Q08iTOp9GJJm9cQblJLsYoV/1RgspW/sM=
x-amz-request-id: MAGMRM4MH5MX9N3J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 22:42:15 GMT
age: 2563
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 28 Nov 2022 23:24:58 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET / HTTP/1.1 
Host: www.seriale-shqip123.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         142.250.74.83
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: https://www.seriale-shqip123.com/
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 23:24:58 GMT
Expires: Mon, 28 Nov 2022 23:24:58 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 181
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   181
Md5:    c0cdc588fcc1b50c6fb03989c2691d9f
Sha1:   70dc73ed31870c67a299fa50b81ee0b818867df1
Sha256: ed5ecf4fe7ac526559c0e4b62c4803a0dc141a37c93dcf9085407f73a95ad591

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /s/gts1d4/hvOXnEUejGU HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:24:59 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 23:11:12 GMT
cache-control: public,max-age=3600
age: 827
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5861
Cache-Control: max-age=127177
Date: Mon, 28 Nov 2022 23:24:59 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:44:36 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: www.seriale-shqip123.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         142.250.74.83
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
expires: Mon, 28 Nov 2022 23:24:59 GMT
date: Mon, 28 Nov 2022 23:24:59 GMT
cache-control: private, max-age=0
last-modified: Mon, 28 Nov 2022 21:41:16 GMT
etag: W/"ab95026b7825595e6d79d4cfc70a2674480ed7bfaac1338ad57ad27057302ad4"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 26138
server: GSE
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1495)
Size:   26138
Md5:    034cb4d28b4cbcfb9535fe069351392c
Sha1:   bc94b265b770922f7becbaabe09495b7e8ee68d7
Sha256: e44933ead2e1331591464aefd53465d36609c2346d7166bf28aea4658875d993

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/cookienotice.js HTTP/1.1 
Host: www.seriale-shqip123.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         142.250.74.83
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Mon, 28 Nov 2022 23:24:59 GMT
expires: Mon, 05 Dec 2022 23:24:59 GMT
cache-control: public, max-age=604800
last-modified: Mon, 28 Nov 2022 22:53:48 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2026
Md5:    c4e1ed83d89245089b8a1203be20a377
Sha1:   f3940e1215b89300ef97d57a25993f25243b8688
Sha256: afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:24:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.105
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 18:12:52 GMT
expires: Wed, 22 Nov 2023 18:12:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 18:53:15 GMT
age: 537127
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35959)
Size:   7776
Md5:    5aa2d3297bdc86bc81322aedecbb5e79
Sha1:   1c0a3c007e41726e167e79b70ddea76198650884
Sha256: feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:24:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:24:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:24:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:24:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.105
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 16:02:03 GMT
expires: Tue, 28 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 27 Nov 2022 15:52:40 GMT
age: 26576
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2221)
Size:   56726
Md5:    1217c8e34acb09c7cea97bae4d386ea1
Sha1:   55ee17703d0a7710943e93913bacb49220d98b4b
Sha256: c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:24:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:24:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /vi/DHcwKSZHUvM/maxresdefault.jpg HTTP/1.1 
Host: i.ytimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.54
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 103306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 23:10:42 GMT
expires: Tue, 29 Nov 2022 01:10:42 GMT
cache-control: public, max-age=7200
age: 857
etag: "1669151417"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size:   103306
Md5:    8cb8e3565e13317db8beeff9dad1759b
Sha1:   80a214655cb0040a9a65317ff27ce8ab75c4955c
Sha256: 94078f229d145af541518c9f48709c20d3ff31e41d9ee2f0705ef5c3a05c9fd8
                                        
                                            GET /vi/Jb_AiRh0Xtg/mqdefault.jpg HTTP/1.1 
Host: i.ytimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.54
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 12938
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 22:51:48 GMT
expires: Tue, 29 Nov 2022 00:51:48 GMT
cache-control: public, max-age=7200
etag: "1669366718"
age: 1991
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Size:   12938
Md5:    772cd307439e421867364399125dd401
Sha1:   a0b57d496c7a3243d8ae4f59b94cc481bb090afd
Sha256: 61aa15d0cc361a4a2f1be012b80921cbb695c82b1df36c2307b309b88ee6011e
                                        
                                            GET /-yLg7EfHkaJk/Xbci2i9Ry7I/AAAAAAAADRw/9keSGio6ra4_fzouG_A8Cx43eEZ3dLciwCLcBGAsYHQ/s1600/banner3.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="banner3.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 32754
x-xss-protection: 0
date: Mon, 28 Nov 2022 23:24:59 GMT
expires: Wed, 16 Nov 2022 18:20:34 GMT
cache-control: public, max-age=86400, no-transform
etag: "vd1d"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1150x186, components 3\012- data
Size:   32754
Md5:    05d536aa482722103750da836074972d
Sha1:   58388e5d9acbb334dbbf92a84d7390992f9880a3
Sha256: 356739893f997c348033a5c13b9acb0313ae16b3428732b85394048af7afa4b1
                                        
                                            GET /vi/T2yjfiVskeg/maxresdefault.jpg HTTP/1.1 
Host: i.ytimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.54
HTTP/2 200 OK
content-type: image/jpeg
                                        
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 199328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 23:24:59 GMT
expires: Tue, 29 Nov 2022 01:24:59 GMT
cache-control: public, max-age=7200
etag: "1668191953"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size:   199328
Md5:    6d3cf0f507cdf995156e484be2556844
Sha1:   aa05e8fb672812f527dbad2e13680677efe9aada
Sha256: 92b1f71b4ed849d20ddd5d21440b88d0b748e9a967809f2ff70d9865f7a7f50f
                                        
                                            GET /-mLEW87QkkgQ/Xbci2TZjGFI/AAAAAAAADRs/PboPo8Hz0fsONwiIAbgEyv4QbG2BKOfMgCLcBGAsYHQ/s1600/banner2.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="banner2.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 34070
x-xss-protection: 0
date: Mon, 28 Nov 2022 23:24:59 GMT
expires: Mon, 28 Nov 2022 12:57:51 GMT
cache-control: public, max-age=86400, no-transform
etag: "vd1d"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1150x186, components 3\012- data
Size:   34070
Md5:    19a18c113003b5a5f2c72095cef80474
Sha1:   35daa174c33013a8196d6b9253deba88ec5ed2ca
Sha256: 76fa58b43bfbc20262b82b4065306205316cda37a452e0c676fd9d909ef1ff6c
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:24:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:24:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:24:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:24:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MNu5zne9OIRk3e/Yz6fTzA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.162.52.254
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3xk0WPWNhk/FZq0T4yJa9YFF+5g=

                                        
                                            GET /-UFyaNMQZgEc/Ya9VJnETMuI/AAAAAAAAAQg/V7v70VKUHpo1lfLOJn7c7n2t-OFwokA0ACNcBGAsYHQ/s803/FB_IMG_1638880449574.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="FB_IMG_1638880449574.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 10348
x-xss-protection: 0
date: Mon, 28 Nov 2022 23:24:59 GMT
expires: Mon, 28 Nov 2022 12:57:51 GMT
cache-control: public, max-age=86400, no-transform
etag: "v109"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 803x453, components 3\012- data
Size:   10348
Md5:    c9e15fce287d59739a2b8fcb2db25382
Sha1:   5cf3cb244bd33fca22345b5300bc3878cae532dd
Sha256: 174ad67da3a5f7d611c4e0abb7fb41db98ee86adb837399c29ba876d7be12734
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C139FB6925B39D9CEDEDC8ACE77D1E74F67B09021BD1AB9071EB3E304090520B"
Last-Modified: Sun, 27 Nov 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2804
Expires: Tue, 29 Nov 2022 00:11:44 GMT
Date: Mon, 28 Nov 2022 23:25:00 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F572499B3EA5577FB5B0641645A5C735D2C5B6AAD918DE009978D3A8B9D9378C"
Last-Modified: Mon, 28 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21565
Expires: Tue, 29 Nov 2022 05:24:25 GMT
Date: Mon, 28 Nov 2022 23:25:00 GMT
Connection: keep-alive

                                        
                                            GET /2542b9376e69e7c9ab59020b52823532/invoke.js HTTP/1.1 
Host: spiritualdiscussing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         173.233.137.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 23:25:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 91d7a2b2083a13c5ac72df0ad602e294
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (25114), with no line terminators
Size:   9286
Md5:    771f897c113c42d2b52193e2f61c905c
Sha1:   f0b293e35a87868f2ba504b67575608c194d7257
Sha256: 6cbc3fc67304186bbb61416d9e0525a37ca3468b6383f64511c39b87101da723
                                        
                                            GET /56/04/92/5604922e93a976af1c03625784afd2ff.js HTTP/1.1 
Host: pl17772624.profitablegatetocontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.243.59.20
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 23:25:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2b204f689e9ee428cfe05445bc2ad0c4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (60150), with no line terminators
Size:   20706
Md5:    4fb0fc47ee5e1e6db353ba65011f9d23
Sha1:   e68c7c9574f95acb293ebdca006f5038adc9787c
Sha256: 076c796e01f03716277674cf5131f57f7e8fbaca622d8726026997911817c58d

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.158
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=141525
Date: Mon, 28 Nov 2022 23:25:00 GMT
Etag: "6384b816-1d7"
Expires: Wed, 30 Nov 2022 14:43:45 GMT
Last-Modified: Mon, 28 Nov 2022 13:31:02 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: O7fLVJpHLHgqvurSQYI2y_BY_ACPIT1zozC7M25jNJ6X7mXbZg6yeg==
Age: 4363

                                        
                                            GET /stats HTTP/1.1 
Host: simplewebanalysis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.seriale-shqip123.com
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         52.28.211.11
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Mon, 28 Nov 2022 23:25:00 GMT
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.seriale-shqip123.com
access-control-allow-credentials: true
set-cookie: uid_id2=a26ac362-8201-46b4-8817-de4595d053f3:3:1; expires=Thu, 25 Nov 2032 23:25:00 GMT; secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   40
Md5:    57188f903a82effb34ce19c914dfb747
Sha1:   b144829a128ebe6eec80e7bb58f375ad4d9fd5dc
Sha256: dd6f1b7c2d8131397fc1cd5bb8e1266577d24c0c075235427ec6053b86fd2dd4
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "937E883CAE16F19760094E80022AE925E2723678DFDE030638EBD64E72523820"
Last-Modified: Sun, 27 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7750
Expires: Tue, 29 Nov 2022 01:34:10 GMT
Date: Mon, 28 Nov 2022 23:25:00 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BBB7E8E737F830C110D78F3D1E6EC5FA4EEA832471EB1ECC5C872A3BDBFE1A38"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14022
Expires: Tue, 29 Nov 2022 03:18:42 GMT
Date: Mon, 28 Nov 2022 23:25:00 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6839
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Mon, 28 Nov 2022 23:25:00 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6839
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Mon, 28 Nov 2022 23:25:00 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6839
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Mon, 28 Nov 2022 23:25:00 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8921
x-amzn-requestid: 98baf100-c007-4c44-89aa-b9cf55fa3f94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnwFYToAMFoWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852964-1227b5a9100c206e0c64f4b2;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: awi49MMMlK51wHPbyBrBkL4N4g9lX3ea40LxyrYbYxe_FsfqelTcTQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:57:05 GMT
etag: "c501de9eaa581a10b0b5fce40b54bb10f57f7c29"
age: 5275
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8921
Md5:    823e92f62ff7b3c2093828817d7f2866
Sha1:   c501de9eaa581a10b0b5fce40b54bb10f57f7c29
Sha256: 7d89669e23682f167b2fe1eff9edc5939112ec66b6b4e6389ef8aec78ccbdfe5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4871
x-amzn-requestid: e2dfa7b8-ded7-4104-a913-1b84746a3c6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLDUUEy_oAMFgSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638118e8-0b229e0f60ff019d26800dd9;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 19:35:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9BUuT9WFwAQMnl8JiTDKo-zHgDL0AdjAAAIh0Mx405zbGwhvRouebQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 12:30:42 GMT
age: 39258
etag: "d0dff35eb78f129b5da407043037bcf9c27e55c0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4871
Md5:    a4058fd62595d15c58b3d3266de9865a
Sha1:   d0dff35eb78f129b5da407043037bcf9c27e55c0
Sha256: ab996c23d58871a2ad53f0c34688c87f0d7c0eac5d0c1d8265b86951248449fe
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8578
x-amzn-requestid: 4f948bb9-74db-4a5d-927d-a6b893735531
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFxnWHq-IAMF4LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637efc95-2f9e98ca2dad65a80e2195c2;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 05:09:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vSvGc0JIh4JOWTlagt4uDD_CDPiWOSfYYEI4lUBPsQb4qJMOEbBcmw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 04:09:24 GMT
age: 69336
etag: "5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8578
Md5:    4b7d3821d0bd11c196724846a7b9fe22
Sha1:   5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c
Sha256: b4f820555c4daf6e112c1a395bc57e22f0ef8e2e4299a0ffbb54e0bf18c87f47
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3004
x-amzn-requestid: 1e6e228a-fb73-4ed3-881b-6b0e5c8297c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrFRXoAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-45059338501b45d943d7e08c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: iSUNjVxAMdZYo5z7KyOT7WN5VWxPElRWiVO3u2E3AonLWkr8bT9Img==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 02:07:31 GMT
age: 76649
etag: "035a1b4a2a7889787532ec2637d5c21e06daf672"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3004
Md5:    22e7d3e11e78242383e452adb9299016
Sha1:   035a1b4a2a7889787532ec2637d5c21e06daf672
Sha256: 990f18423bafc9cc3daaa1bd1290313b6cb3d3a391f642d01fd6797ad4fc9ca8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3905
x-amzn-requestid: bf50db76-dd95-44fc-abbe-1a26a5559ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMFcYHE6IAMFmpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638182b5-50b6d010058c6cb75c05c6de;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 03:06:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 73Fr-7-mRcw9_OVt8Wdi4pjFBHkqi_vBa-zgLtbHKEx1ay9s8wDSgQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 06:26:11 GMT
age: 61129
etag: "3bbc44cb84a37ce6a067db4301dd81647a77c29f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3905
Md5:    06723cdab42df9b5334f540a8c7ebc60
Sha1:   3bbc44cb84a37ce6a067db4301dd81647a77c29f
Sha256: 9f6f064b16044c510650635690c61003fb2f6439021a2e681431136f5e7a08b3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b0dcfcd-38d5-4614-ad4e-405d8ad4ee91.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6037
x-amzn-requestid: eb17903e-1fd3-4a41-a6d1-8b671d890400
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPAJjFa3oAMFcLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382ad70-3db95fcd1aeb9c411c55d173;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 00:21:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mFiEmh1axlMNuIBb1YSzcciCdHzHGG7q0f3lQOuHJmjugWgdZKKiSg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 11:27:11 GMT
age: 43069
etag: "3348f081a3357490a704592d105d02e81886df89"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6037
Md5:    b5e2bc1651b37b8e0467c2a6cb860fb3
Sha1:   3348f081a3357490a704592d105d02e81886df89
Sha256: 751c601e075c9338335c05b0f430ba8065b4e97440e6630993afd943f302b253
                                        
                                            GET /pixel/purst?dl=0&th=0&sc=0&rs=2032&rd=2032&fd=868&bv=22.10.v.9&tmpl=70 HTTP/1.1 
Host: lightssyrupdecree.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.243.59.20
HTTP/1.1 200 OK
                                        
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 23:25:01 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /8e51e259fd1a1aa9fcd9c3a978dc532d/invoke.js HTTP/1.1 
Host: www.highperformancedisplayformat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.243.61.225
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Mon, 28 Nov 2022 23:25:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f1185a459caa53739e5d26408eca351a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26949), with no line terminators
Size:   9777
Md5:    2110d7153b493064cd1a9dfaef190af6
Sha1:   f947123d6536a9f49d4a00a34a8ef0eb4feff90f
Sha256: e9fd21bec879b843e3c72324df2f02061f93eaf706947cfea215122edb367cf8

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /6b89af69f49621c6c443dd9b71e61d32/invoke.js HTTP/1.1 
Host: www.highperformancedisplayformat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.243.61.225
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Mon, 28 Nov 2022 23:25:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 45d1a9d2db3b6b7ab2c37e08cab46a5a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26949), with no line terminators
Size:   9778
Md5:    4f8800eb9c3eb452408cba1a0a54f196
Sha1:   64cfde6d597ebb8e2759140353341eb78be85398
Sha256: 9b580cb995b47252cf2e610bbd155b64b9f3ad540556621c45f0a27b038831d9

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /fb866e7b401f197b5e12a2b78590cd45/invoke.js HTTP/1.1 
Host: www.highperformancedisplayformat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.243.61.225
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Mon, 28 Nov 2022 23:25:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c9b088e54d2b1be4859e65a106876285
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26951), with no line terminators
Size:   9784
Md5:    6973821f2ae6d400843eb152a21951df
Sha1:   16b59408d1b2803dbd5922eb91a129054d67e57d
Sha256: 322ea4095c48fb13a4aa48b0e32294e8bc4bce49c7288f2771d6bd2631747ba1

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /43db73d118f408de255d93e402b10dd5/invoke.js HTTP/1.1 
Host: spiritualdiscussing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         173.233.137.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 23:25:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a030d01132a5406fd38bd01310580cb4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26949), with no line terminators
Size:   9783
Md5:    a0ee7d8e00387af2b23a90b7c64436af
Sha1:   3518fb461b49f013f8f99d6c80d0c933a4460845
Sha256: 0b9dda1702bf00464c890ada2ffea988dad6266b07d93ccc5b831e64532884a1
                                        
                                            GET /watch.690049753922.js?key=fb866e7b401f197b5e12a2b78590cd45&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1 HTTP/1.1 
Host: lightssyrupdecree.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.seriale-shqip123.com
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         192.243.59.20
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html
                                        
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 23:25:01 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.seriale-shqip123.com
Access-Control-Allow-Origin: https://www.seriale-shqip123.com
Access-Control-Allow-Credentials: true
Location: https://lightssyrupdecree.com/watch.690049753922.js?key=fb866e7b401f197b5e12a2b78590cd45&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1&shu=c2e3588d4ca85f373ca1ba62c406160afef638ec5ec0e238510eb5b9889d0147ac6fa83b8998988abbb7b6144c769218c320738dffc6923bc1d00d037eb0ca934911970fd4c1b3aec911b7f8c907918699199f&pst=1669677961&rmtc=t
Set-Cookie: u_pl=17672262; expires=Tue, 29 Nov 2022 23:25:01 GMT; secure; SameSite=None ain=eyJhbGciOiJIUzI1NiJ9.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.UcpvsW69GtGvzGacq7cy1xokMgZtw_p6MjmqHo4TKZM; expires=Mon, 28 Nov 2022 23:26:01 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5fc7804ed0a415b61bb1b58b40bc74a6
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /s/gts1p5/CdZu0duK_F8 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:25:01 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /6b89af69f49621c6c443dd9b71e61d32/invoke.js HTTP/1.1 
Host: www.highperformancedisplayformat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.243.61.225
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Mon, 28 Nov 2022 23:25:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1abab65d0df1ffa5e23015affd075fbb
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26959), with no line terminators
Size:   9787
Md5:    e109677f24dd894b0cc78c8c5a34d0e5
Sha1:   44b354d4e619e407bf4ef6927482f7cdb482f149
Sha256: b158e0a4a4c56465c214d0376b06ad3d66f179ecb7a57aaacb1b853bccbd2e90

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /watch.690049753922.js?key=fb866e7b401f197b5e12a2b78590cd45&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1&shu=c2e3588d4ca85f373ca1ba62c406160afef638ec5ec0e238510eb5b9889d0147ac6fa83b8998988abbb7b6144c769218c320738dffc6923bc1d00d037eb0ca934911970fd4c1b3aec911b7f8c907918699199f&pst=1669677961&rmtc=t HTTP/1.1 
Host: lightssyrupdecree.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.seriale-shqip123.com
Referer: https://www.seriale-shqip123.com/
Connection: keep-alive
Cookie: u_pl=17672262; ain=eyJhbGciOiJIUzI1NiJ9.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.UcpvsW69GtGvzGacq7cy1xokMgZtw_p6MjmqHo4TKZM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         192.243.59.20
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 23:25:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.seriale-shqip123.com
Access-Control-Allow-Origin: https://www.seriale-shqip123.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=a26ac362-8201-46b4-8817-de4595d053f3:3:1; expires=Mon, 05 Dec 2022 23:25:01 GMT; secure; SameSite=None iprc04600c990aab5806f11a4b38e3ed5908=3569807; expires=Tue, 29 Nov 2022 03:25:01 GMT; secure; SameSite=None pdhtkv=true; expires=Tue, 29 Nov 2022 23:25:01 GMT; secure; SameSite=None uncs=1; expires=Tue, 29 Nov 2022 23:25:01 GMT; secure; SameSite=None pdhtkv27=true; expires=Tue, 29 Nov 2022 23:25:01 GMT; secure; SameSite=None uncs27=1; expires=Tue, 29 Nov 2022 23:25:01 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 33654b7b1dd9d85eae7b6ad33d712e95
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (2627)
Size:   2095
Md5:    7a904ae0af7c03595aa8711fe2b57e4c
Sha1:   0b272e937aa44e10ada5687dcad72c3893d3b266
Sha256: 51a9fa4b464641f8b128e01db43642a851b1e2a690b8cafad2f3b179abac4ead

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /s/gts1p5/CdZu0duK_F8 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:25:01 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C2261EB9D64FFA5218230A3B4EDDDDA9496061863ABAB7CF1AAFFA428F1F0D1B"
Last-Modified: Sun, 27 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8661
Expires: Tue, 29 Nov 2022 01:49:22 GMT
Date: Mon, 28 Nov 2022 23:25:01 GMT
Connection: keep-alive

                                        
                                            GET /fb866e7b401f197b5e12a2b78590cd45/invoke.js HTTP/1.1 
Host: www.highperformancedisplayformat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.243.61.225
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Mon, 28 Nov 2022 23:25:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 41316a86e72946e777e82e2273490205
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26951), with no line terminators
Size:   9784
Md5:    6973821f2ae6d400843eb152a21951df
Sha1:   16b59408d1b2803dbd5922eb91a129054d67e57d
Sha256: 322ea4095c48fb13a4aa48b0e32294e8bc4bce49c7288f2771d6bd2631747ba1

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /s/gts1p5/CdZu0duK_F8 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:25:02 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /watch.834203728842.js?key=8e51e259fd1a1aa9fcd9c3a978dc532d&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1 HTTP/1.1 
Host: reproductiontape.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.seriale-shqip123.com
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         192.243.59.20
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html
                                        
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 23:25:02 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.seriale-shqip123.com
Access-Control-Allow-Origin: https://www.seriale-shqip123.com
Access-Control-Allow-Credentials: true
Location: https://reproductiontape.com/watch.834203728842.js?key=8e51e259fd1a1aa9fcd9c3a978dc532d&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1&shu=1919e8d0222b20b828c5cc9d301ac26df7248472418d4bc6c3e589374527da5dcffc4c3f023ff9fc8292b788ddfa033b410b39244108e7ddcf14952b97947dd22940ebf7c7a8214d7e2efba234c9a53e6bd90715047f9023b84fee4340c9357a615857b17a&pst=1669677962&rmtc=t
Set-Cookie: u_pl=17672177; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None ain=eyJhbGciOiJIUzI1NiJ9.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.f6AO_37PU3Nib27Piiyulwe3iH3ZXw0rc4fhWPzBIDc; expires=Mon, 28 Nov 2022 23:26:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a1a407d06e4665f9e93ade3e5795a880
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "43A89AFF0D5663F10018AF94CD9C10405D370CD507AB79FAB97EC43D04CF4C5C"
Last-Modified: Sat, 26 Nov 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2004
Expires: Mon, 28 Nov 2022 23:58:26 GMT
Date: Mon, 28 Nov 2022 23:25:02 GMT
Connection: keep-alive

                                        
                                            POST /s/gts1p5/CdZu0duK_F8 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:25:02 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2CCFC08C412397BCF4F9DF402F2EDC215BD33D4543747EEB36F98A119C406C11"
Last-Modified: Sun, 27 Nov 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6865
Expires: Tue, 29 Nov 2022 01:19:27 GMT
Date: Mon, 28 Nov 2022 23:25:02 GMT
Connection: keep-alive

                                        
                                            GET /watch.688846785417.js?key=fb866e7b401f197b5e12a2b78590cd45&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1 HTTP/1.1 
Host: lightssyrupdecree.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.seriale-shqip123.com
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Cookie: u_pl=17672262; ain=eyJhbGciOiJIUzI1NiJ9.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.UcpvsW69GtGvzGacq7cy1xokMgZtw_p6MjmqHo4TKZM; uid_id2=a26ac362-8201-46b4-8817-de4595d053f3:3:1; iprc04600c990aab5806f11a4b38e3ed5908=3569807; pdhtkv=true; uncs=1; pdhtkv27=true; uncs27=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         192.243.59.20
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html
                                        
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 23:25:02 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.seriale-shqip123.com
Access-Control-Allow-Origin: https://www.seriale-shqip123.com
Access-Control-Allow-Credentials: true
Location: https://lightssyrupdecree.com/watch.688846785417.js?key=fb866e7b401f197b5e12a2b78590cd45&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1&shu=d58502f3436c3e01c3b4faefdbe7dfd91d7e700fb76fe3e3aa6fb92e81323a68ac4f9ca778fd01c01c750d42b5bee6a7b8b474c4e357240af45fffa4957761d8d821f0156b4540e111ae72ae4c23f4e8d27f4ce461ee44a8a0e579c9125c6c&pst=1669677962&rmtc=t
Set-Cookie: ain=eyJhbGciOiJIUzI1NiJ9.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.THxp3o3hykPvSORQStNFzbGjYZR_vxKG2dAXpB7as2Y; expires=Mon, 28 Nov 2022 23:26:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d1f2868aceb02c1b4db94c0757888376
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2CCFC08C412397BCF4F9DF402F2EDC215BD33D4543747EEB36F98A119C406C11"
Last-Modified: Sun, 27 Nov 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6865
Expires: Tue, 29 Nov 2022 01:19:27 GMT
Date: Mon, 28 Nov 2022 23:25:02 GMT
Connection: keep-alive

                                        
                                            GET /43db73d118f408de255d93e402b10dd5/invoke.js HTTP/1.1 
Host: www.highperformancedisplayformat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         192.243.61.225
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Mon, 28 Nov 2022 23:25:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7fb548f99246ac51e798e6a53804e8d5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26959), with no line terminators
Size:   9787
Md5:    e109677f24dd894b0cc78c8c5a34d0e5
Sha1:   44b354d4e619e407bf4ef6927482f7cdb482f149
Sha256: b158e0a4a4c56465c214d0376b06ad3d66f179ecb7a57aaacb1b853bccbd2e90

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2CCFC08C412397BCF4F9DF402F2EDC215BD33D4543747EEB36F98A119C406C11"
Last-Modified: Sun, 27 Nov 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6865
Expires: Tue, 29 Nov 2022 01:19:27 GMT
Date: Mon, 28 Nov 2022 23:25:02 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "21C884064648CE280ECBFF448FE69A9E9B25E605D408FF26A0BD1630191E4617"
Last-Modified: Mon, 28 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2175
Expires: Tue, 29 Nov 2022 00:01:17 GMT
Date: Mon, 28 Nov 2022 23:25:02 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6123
Cache-Control: max-age=168127
Date: Mon, 28 Nov 2022 23:25:02 GMT
Etag: "63851922-118"
Expires: Wed, 30 Nov 2022 22:07:09 GMT
Last-Modified: Mon, 28 Nov 2022 20:25:06 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:25:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6123
Cache-Control: max-age=168127
Date: Mon, 28 Nov 2022 23:25:02 GMT
Etag: "63851922-118"
Expires: Wed, 30 Nov 2022 22:07:09 GMT
Last-Modified: Mon, 28 Nov 2022 20:25:06 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "9A4397D75F08D8EAFE861B11FE24747E8A0DA5472C8E3594A1FED2FCA6918C48"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2185
Expires: Tue, 29 Nov 2022 00:01:27 GMT
Date: Mon, 28 Nov 2022 23:25:02 GMT
Connection: keep-alive

                                        
                                            GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 28 Nov 2022 23:25:02 GMT
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 15121606
expires: Sat, 18 Nov 2023 23:25:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iqzLGCKIKyjL3VvcexknuQVFvcKCXlDORKBl4WopkhkFpfduXmw1rSf3Ei1ifg9w8GGjiEr%2BsSSPZPlVYQcEhQuowXkC90y6lpcYoNk3y3GEPMdeJYLBWHM0rZivyGHkAV0yR0Fh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7716dc495bfa0b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   27958
Md5:    4b5f47439b640180cc3450f7de05d0d8
Sha1:   5a0dc9bcab80ddc409dd35fcb00a88fe6846fee2
Sha256: 1f85e8b327f42c17c025d69849914068536d9aa95412fe473ae90ffb2f4ebd82
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "72812F5EA803854BA9705BD5B322FF86AEFECF8A88B4F71196AEEB7E75B93E93"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14688
Expires: Tue, 29 Nov 2022 03:29:50 GMT
Date: Mon, 28 Nov 2022 23:25:02 GMT
Connection: keep-alive

                                        
                                            POST /s/gts1p5/CdZu0duK_F8 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:25:02 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/api.js?render=explicit HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dood.re/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Mon, 28 Nov 2022 23:25:02 GMT
date: Mon, 28 Nov 2022 23:25:02 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 554
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (852), with no line terminators
Size:   554
Md5:    0a628b8a14a877262721824930709597
Sha1:   31bbb380c04a4229a099a1fb6dea09cf717bcb5f
Sha256: 6c63432c24b1f8eed67f792c68214710fd6444ede5c28f56202e966770d20121
                                        
                                            GET /e/U1VhTlh1dzJhK3RIRTlzZVJhVU1OUT09 HTTP/1.1 
Host: hqq.to
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         190.115.19.71
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
server: ddos-guard
set-cookie: __ddg1_=0yRNImmGwRtZ1c9vZz3q; Domain=.hqq.to; HttpOnly; Path=/; Expires=Tue, 28-Nov-2023 23:25:02 GMT
date: Mon, 28 Nov 2022 23:25:01 GMT
vary: Accept-Encoding
x-robots-tag: 'none, noindex, nofollow, noarchive, nosnippet, noodp, notranslate, noimageindex'
x-content-type-options: nosniff
x-xss-protection: 1; mode=block;
p3p: policyref="http://www.example.com/w3c/p3p.xml", CP="CURa ADMa DEVa CONo HISa OUR IND DSP ALL COR"
link: <//hqq.to>; rel=preconnect; crossorigin, <//global.stun.twilio.com>; rel=dns-prefetch; crossorigin, <//counter.yadro.ru>; rel=preconnect; crossorigin, <//imasdk.googleapis.com>; rel=preconnect; crossorigin, <//stun2.l.google.com>; rel=dns-prefetch; crossorigin, <//unpkg.com>; rel=preconnect; crossorigin, <//mc.yandex.ru>; rel=preconnect; crossorigin, <//cdn.jsdelivr.net>; rel=preconnect; crossorigin, <//signal.netu.tv>; rel=dns-prefetch; crossorigin,<//wss.commentsengine.com>; rel=dns-prefetch; crossorigin, <//www.gstatic.com>; rel=preconnect; crossorigin, <//imasdk.googleapis.com>; rel=preconnect; crossorigin, <//storage.googleapis.com>; rel=preconnect; crossorigin, <//www.google.com>; rel=preconnect; crossorigin,<//deliver.vkcdnservice.com>; rel=preconnect; crossorigin, <//deliver.vkcdnservice.com>; rel=preconnect; crossorigin,<//vkcdnservice.appspot.com.storage.googleapis.com>; rel=preconnect; crossorigin, <//www.google.com>; rel=preconnect; crossorigin, <//www.recaptcha.net>; rel=preconnect; crossorigin, <//cdnjs.cloudflare.com>; rel=preconnect; crossorigin
x-origin-location: player
cache-control: public, stale-if-error=30, max-age=30
content-encoding: gzip
x-cache-status-inferno: EXPIRED
x-inferno-location: player
x-inferno-limit-req: PASSED
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   39828
Md5:    67d6e74162e74a0f3baf11562567f7df
Sha1:   920e2ea5a2bcfc81ddd7da9234a6a31244be25c1
Sha256: 60fa5c6c626776b78b7d565f3241901bd4dfa3da9433d2f4623607d3ecf67fa8
                                        
                                            GET /watch.562547319547.js?key=6b89af69f49621c6c443dd9b71e61d32&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1 HTTP/1.1 
Host: wastedinvaluable.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.seriale-shqip123.com
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         173.233.137.36
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html
                                        
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 23:25:02 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.seriale-shqip123.com
Access-Control-Allow-Origin: https://www.seriale-shqip123.com
Access-Control-Allow-Credentials: true
Location: https://wastedinvaluable.com/watch.562547319547.js?key=6b89af69f49621c6c443dd9b71e61d32&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1&shu=d352c05ba85fb23175704ae883d5e9aa8f07d3d2d94e5e5e91cf417f46dd338c93ba1c60769c07f8a631714842c43d3e699b307196c63c11c4b7b0d0c547ae1dc150444584b8df1fe310aa5f329e2c408219946fe09904472badb20c81a3a0&pst=1669677962&rmtc=t
Set-Cookie: u_pl=17672407; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None ain=eyJhbGciOiJIUzI1NiJ9.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.WuxPO8nvgaCS--rBk_i4BOwhkUzxbGpnB-_-e_ma1GA; expires=Mon, 28 Nov 2022 23:26:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ab78097658fbe4190018d9710d94ca30
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /e/hvz4pt3xgeni HTTP/1.1 
Host: dood.re
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.26.4.50
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Mon, 28 Nov 2022 23:25:01 GMT
expires: Sun, 27 Nov 2022 23:25:01 GMT
set-cookie: lang=1; domain=.dood.re; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1jQUi%2FdXKMFRntFof%2Bsjk9SgspjozLzJVMfbRknO1S37KzU6T2q46qTuA3nXOl01QXTVA9ZtyyUMDrmMThtr6KqwJLpOxRsxFf4LzlE%2B3x306ULZeBXnTp8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7716dc461d59b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (4829), with no line terminators
Size:   81551
Md5:    c0e7ebaebf22f3098076157402a10fa2
Sha1:   dcc8c35dd9a286f406bb30aa34d0d56f3361aec9
Sha256: fc798a08a9a42543dfde1214c1213701ef55bf0e07ec82dd723b67190ea752d2
                                        
                                            GET /js/d_check.js?34 HTTP/1.1 
Host: hqq.to
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hqq.to/e/b3Y3REpIblJmRU5odmdLZldhSXdsUT09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         190.115.19.71
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: ddos-guard
set-cookie: __ddg1_=cZGUPJHQoBc6gTS294Ss; Domain=.hqq.to; HttpOnly; Path=/; Expires=Tue, 28-Nov-2023 23:25:02 GMT
date: Mon, 17 Oct 2022 10:54:47 GMT
vary: Accept-Encoding
last-modified: Thu, 27 Feb 2020 14:57:53 GMT
etag: W/"5e57d8f1-d8a"
access-control-allow-origin: *
accessing-static: 1
cache-control: public, max-age=31536000, stale-while-revalidate=30, stale-if-error=30
pragma: cache
content-encoding: br
x-cache-status-inferno-s: HIT
x-inferno-location: static
age: 3673815
ddg-cache-status: HIT,MISS
content-length: 1028
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (821)
Size:   1028
Md5:    841e4af4332ce934406a4e59a063aa98
Sha1:   fd8429c4c48157e134268b448d713b642f461af6
Sha256: fde29879f9e4795b74c36aa1a23b32f35f5f67131fc914be72e42f1fff8740d3
                                        
                                            GET /js/video.jquery_plugs/modernizr.js?12 HTTP/1.1 
Host: hqq.to
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hqq.to/e/b3Y3REpIblJmRU5odmdLZldhSXdsUT09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         190.115.19.71
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: ddos-guard
set-cookie: __ddg1_=Tf3XXpkdvCIwBhRQoGOG; Domain=.hqq.to; HttpOnly; Path=/; Expires=Tue, 28-Nov-2023 23:25:02 GMT
date: Mon, 17 Oct 2022 10:45:52 GMT
vary: Accept-Encoding
last-modified: Sun, 03 Jun 2018 17:19:35 GMT
etag: W/"5b142327-4cb"
access-control-allow-origin: *
accessing-static: 1
cache-control: public, max-age=31536000, stale-while-revalidate=30, stale-if-error=30
pragma: cache
content-encoding: br
x-cache-status-inferno-s: HIT
x-inferno-location: static
age: 3674350
ddg-cache-status: HIT,MISS
content-length: 652
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1227), with no line terminators
Size:   652
Md5:    aecce2cd69440bcd1b71a8f0ce204922
Sha1:   7bf5702d34c33349bead0bb2cb7ad2200d699196
Sha256: b9159c2d62fb50c02489b011962ed2549515067437b550834432787ff25a5dfb
                                        
                                            GET /e/jisaewnrger0 HTTP/1.1 
Host: dood.re
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.26.4.50
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Mon, 28 Nov 2022 23:25:02 GMT
expires: Sun, 27 Nov 2022 23:25:02 GMT
set-cookie: lang=1; domain=.dood.re; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y4CFN1RWqGrLR2TzmVTANWkfLPJQgOjhZJ2eqH9CrfVTG24PN7WGXQK50WKu16rGvtzR8GtiEfewrr%2BM3EHhkojQ3t8zXhx1Y5EXGLPEaJwvbGtNT8g9oEY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7716dc461d3cb4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (4829), with no line terminators
Size:   41713
Md5:    acc3f151241cc19f1b5c9232e2a5f75a
Sha1:   18e3dd80e14049123e8c45c141858ad989d70078
Sha256: f3101a2b3797cafd8c41715e659c545f753e11e820257cd002f6bf3360bfbc9b
                                        
                                            GET /assets/n-379412873852/css/site.min.css?c49fd96c54dd560366ff857af838f3bb HTTP/1.1 
Host: voe.sx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://voe.sx/e/eydbdd7fdga1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         186.2.163.208
HTTP/2 200 OK
content-type: text/css
                                        
server: ddos-guard
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=iZQJvTdP2gDc4oGPotnc; Domain=.voe.sx; HttpOnly; Path=/; Expires=Tue, 28-Nov-2023 23:25:02 GMT
date: Sun, 27 Nov 2022 20:54:00 GMT
last-modified: Fri, 07 Oct 2022 22:14:49 GMT
vary: Accept-Encoding
etag: W/"6340a4d9-2cc7f"
expires: Tue, 27 Dec 2022 20:54:00 GMT
cache-control: max-age=2592000
content-encoding: br
age: 95462
content-length: 25553
ddg-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65157)
Size:   25553
Md5:    d2b3b66b3f1e046a854878afe8f0d59d
Sha1:   4ae145316a24a7cad85e5ce7e572f30e930814e4
Sha256: 768df872b56860dedabe6ac8dd42bb0a0e1044526701e94a75167810ce8b9094
                                        
                                            GET /watch.688846785417.js?key=fb866e7b401f197b5e12a2b78590cd45&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1&shu=d58502f3436c3e01c3b4faefdbe7dfd91d7e700fb76fe3e3aa6fb92e81323a68ac4f9ca778fd01c01c750d42b5bee6a7b8b474c4e357240af45fffa4957761d8d821f0156b4540e111ae72ae4c23f4e8d27f4ce461ee44a8a0e579c9125c6c&pst=1669677962&rmtc=t HTTP/1.1 
Host: lightssyrupdecree.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.seriale-shqip123.com
Referer: https://www.seriale-shqip123.com/
Connection: keep-alive
Cookie: u_pl=17672262; ain=eyJhbGciOiJIUzI1NiJ9.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.THxp3o3hykPvSORQStNFzbGjYZR_vxKG2dAXpB7as2Y; uid_id2=a26ac362-8201-46b4-8817-de4595d053f3:3:1; iprc04600c990aab5806f11a4b38e3ed5908=3569807; pdhtkv=true; uncs=1; pdhtkv27=true; uncs27=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         192.243.59.20
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 23:25:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.seriale-shqip123.com
Access-Control-Allow-Origin: https://www.seriale-shqip123.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=a26ac362-8201-46b4-8817-de4595d053f3:3:1; expires=Mon, 05 Dec 2022 23:25:02 GMT; secure; SameSite=None iprcbeae88e83c2932183d96c8b7bc28fe1d=2717342; expires=Wed, 30 Nov 2022 01:25:02 GMT; secure; SameSite=None uncs=2; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None uncs27=2; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 66da3579fc229752cb9a4ffdfa6dfab1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (601)
Size:   642
Md5:    fd3cfe7bb3cbec14bde506eeecd12018
Sha1:   e9ef6af80fc0c59dda47d3c616865769f8ff5ebf
Sha256: 10d6823d389f26154e877fea75f13433282b1ad841d16e0313d8a0c5e7ce3f98

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /watch.834203728842.js?key=8e51e259fd1a1aa9fcd9c3a978dc532d&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1&shu=1919e8d0222b20b828c5cc9d301ac26df7248472418d4bc6c3e589374527da5dcffc4c3f023ff9fc8292b788ddfa033b410b39244108e7ddcf14952b97947dd22940ebf7c7a8214d7e2efba234c9a53e6bd90715047f9023b84fee4340c9357a615857b17a&pst=1669677962&rmtc=t HTTP/1.1 
Host: reproductiontape.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.seriale-shqip123.com
Referer: https://www.seriale-shqip123.com/
Connection: keep-alive
Cookie: u_pl=17672177; ain=eyJhbGciOiJIUzI1NiJ9.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.f6AO_37PU3Nib27Piiyulwe3iH3ZXw0rc4fhWPzBIDc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         192.243.59.20
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 23:25:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.seriale-shqip123.com
Access-Control-Allow-Origin: https://www.seriale-shqip123.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=a26ac362-8201-46b4-8817-de4595d053f3:3:1; expires=Mon, 05 Dec 2022 23:25:02 GMT; secure; SameSite=None iprc1101684279d80f793105f367a598d0db=2717340; expires=Wed, 30 Nov 2022 01:25:02 GMT; secure; SameSite=None pdhtkv=true; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None uncs=1; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None pdhtkv5=true; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None uncs5=1; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b97127a312ead91c96e22aa42c214ff6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (602)
Size:   642
Md5:    114afa95771ac9d9e81a1752f4bee0f2
Sha1:   72e11f29237f69bf523908151e1350d9140eb346
Sha256: 9a27bfb620481cc61226b8452911fee352c586749e4f97daa7270d4d689ca4dc

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /assets/n-379412873852/js/site.min.js?c49fd96c54dd560366ff857af838f3bb HTTP/1.1 
Host: voe.sx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://voe.sx/e/eydbdd7fdga1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         186.2.163.208
HTTP/2 200 OK
content-type: application/javascript
                                        
server: ddos-guard
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=XCn0hmwyVvWON07GrlKE; Domain=.voe.sx; HttpOnly; Path=/; Expires=Tue, 28-Nov-2023 23:25:02 GMT
date: Mon, 21 Nov 2022 22:30:47 GMT
last-modified: Sat, 05 Nov 2022 00:45:04 GMT
etag: W/"6365b210-2b66"
expires: Wed, 21 Dec 2022 22:30:47 GMT
cache-control: max-age=2592000
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 608055
content-length: 2993
ddg-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (11110), with no line terminators
Size:   2993
Md5:    53861770da097964d5f9d8a2c48d15b0
Sha1:   36c9682295b88c456acf1a157d5437c826faea4c
Sha256: 7a04b0f5b2ca5d43cb02bb200cd5f72f29de5c522ab07c05464247a40f5942b3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "56137AF80AEE48FB93FB2D342981C7D34E46CF3CE4E22E857BB5B80352DBDE17"
Last-Modified: Sat, 26 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2266
Expires: Tue, 29 Nov 2022 00:02:48 GMT
Date: Mon, 28 Nov 2022 23:25:02 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "3E87CEC29350A8B24A5759E6FDB0E6298A581186294CF9D869DCA0015D08B8F3"
Last-Modified: Sun, 27 Nov 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3011
Expires: Tue, 29 Nov 2022 00:15:13 GMT
Date: Mon, 28 Nov 2022 23:25:02 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6123
Cache-Control: max-age=168127
Date: Mon, 28 Nov 2022 23:25:02 GMT
Etag: "63851922-118"
Expires: Wed, 30 Nov 2022 22:07:09 GMT
Last-Modified: Mon, 28 Nov 2022 20:25:06 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /e/ydwvwldo7qj3 HTTP/1.1 
Host: dood.re
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.26.4.50
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Mon, 28 Nov 2022 23:25:02 GMT
expires: Sun, 27 Nov 2022 23:25:02 GMT
set-cookie: lang=1; domain=.dood.re; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0d%2FirEZOOWj4ZtEILdGJklj1jLYSbgaHf7hOsTTV74gwmLV9u2U597yFiOoF6L9yiJ2mS0a4FIhOQcE02cODbLxQS0Zrd3Y%2FEFVUVlw8Mca4NJl2N8LNUz8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7716dc461d43b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (4841), with no line terminators
Size:   5372
Md5:    c90e19721ead25b2a6a4a7995f492a75
Sha1:   94377dbe3bd2298615ca278b253575756998bea4
Sha256: 1285828ec3c4bba05f4bfb8badbe601ee6a24e463c44ac140eb976794a26cf99
                                        
                                            GET /watch.130096690716.js?key=43db73d118f408de255d93e402b10dd5&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1 HTTP/1.1 
Host: veilsuccessfully.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.seriale-shqip123.com
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         192.243.61.227
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html
                                        
Server: nginx/1.22.0
Date: Mon, 28 Nov 2022 23:25:02 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.seriale-shqip123.com
Access-Control-Allow-Origin: https://www.seriale-shqip123.com
Access-Control-Allow-Credentials: true
Location: https://veilsuccessfully.com/watch.130096690716.js?key=43db73d118f408de255d93e402b10dd5&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1&shu=6e77445deeeb865c93b4f1f1b099ad47a25d0d44bb39ea708c4eddcf871312d33271f6af1774ab26911aa59dae00c4110d4e2ace687f59e687fdd8db9e3ed3a290514ecc5411f19800a0967718ca445ff56f19&pst=1669677962&rmtc=t
Set-Cookie: u_pl=17672268; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzY3MjI2OCwiayI6IjQzZGI3M2QxMThmNDA4ZGUyNTVkOTNlNDAyYjEwZGQ1Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxOTgzMDY0LCJwaWQiOjU0MzE4NywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjozLCJhaWQiOjMyLCJwdCI6NCwicGsiOiJwZG40ZTNrNTl5IiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjkwNzUzNDU3LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6Mzg5MTQsIm9uIjoiV2luZG93cyIsIm92IjoiMTAuMCIsImJpZCI6MTIwNjI1LCJibiI6IkZpcmVmb3giLCJidiI6IjEwNS4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vd3d3LnNlcmlhbGUtc2hxaXAxMjMuY29tLyJ9fQ.JAOdDqTXUIYWlKSvrJJE47-7ji-LIQvYN2i_JZ-VXCk; expires=Mon, 28 Nov 2022 23:26:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1248c4a794af599aed154bd003dcfa5c
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /npm/@popperjs/core@2.10.2/dist/umd/popper.min.js HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         151.101.85.229
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 2.10.2
x-jsd-version-type: version
etag: W/"496b-DsfKR3i6PMtNGxaICUcgg0++ntM"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 28 Nov 2022 23:25:02 GMT
age: 18144575
x-served-by: cache-fra19148-FRA, cache-bma1629-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6713
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18706)
Size:   6713
Md5:    af62a06145a499ced91af8684d652c30
Sha1:   dc727a6c7630d7414d1499a2c36b7c8fb0a9126c
Sha256: c2a776c4bc325950b57ced81960260e02df5c2c23caa12c221ea230b72bfb8d9
                                        
                                            GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 28 Nov 2022 23:25:02 GMT
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1491627
expires: Sat, 18 Nov 2023 23:25:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J8PATPQmT%2FreEu8vCWqsN7FyfztYU2WZ%2BJZzoYnoNH0ECBtS8UkPogTAS2KudB9rGPuwBU7fly5g2abMVC4hnUnQqPvZnTWrAxlPKx%2FSgVXku1wmSmyTaUPHe1%2FIlNVdw4B35DO3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7716dc4b4bafb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   27938
Md5:    d900ca08873ee57d40616d39a44cc0aa
Sha1:   7ab3ac8b1504b7b914a6e94c979b8390bb492f6a
Sha256: 1eea479cc0abe04a0846f41031207f9511f12ffef017a6109d4efb6f5523465b
                                        
                                            GET /e/f1wnvbowoxee HTTP/1.1 
Host: voe.sx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         186.2.163.208
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: ddos-guard
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests;
vary: Accept-Encoding
cache-control: no-cache, private
date: Mon, 28 Nov 2022 23:25:02 GMT
set-cookie: __ddg1_=RnL0MWY2DYkgaoxjbva3; Domain=.voe.sx; HttpOnly; Path=/; Expires=Tue, 28-Nov-2023 23:25:02 GMT XSRF-TOKEN=eyJpdiI6ImUvQ01DS0NxSk01dk8rTzBSZXoxdFE9PSIsInZhbHVlIjoieEh1N3U1dW1xaXFqUWd5M3NtdnMxbGl5MUVsMTBIYVpPcVpOcUJWRFowVEV3TXlHcDVRNjlVc3cvbU5ycUM3M2gxTDZIZVBsbDh1Y3I3TEM2bFJHbEFCeVA4bmpZYkZteFAvalZ4Ti9YdDNscU1LdVh6OVVBK1pkY0ZXZEUwY2EiLCJtYWMiOiJjNWIzZjFjNzBlNDkxNmExMTI1NjMyNDA1YjE3YjFlZDQ4NjA3MTNmZmYxNmRkNDQxMjAxOWI0NzRlNjExNzNlIiwidGFnIjoiIn0%3D; expires=Tue, 29 Nov 2022 01:25:02 GMT; Max-Age=7200; path=/; samesite=lax voe_session=eyJpdiI6InpJdW5nUTdGcCtsamRhVWp0ZkxHeGc9PSIsInZhbHVlIjoiSzdNMkVaZ0E1eFBlS3FwN09UOTlSUFI1UUp5bWVFbjQ0VEljcUNJamxMM0JBR3JmY1ZyVjNxODJUTC9mRWc0OXBkclBuNGlhU2ZWMVBFNnc0VkNSWlFDQVZBS3o5aXhUdU1aeDVya01xU2packhiVlBGQ2Jab25VN2NYNmd2TzQiLCJtYWMiOiJhNmUyODU0MTFkMDZiMDFjYzI5MjBlMzE4YjhiOWE1YTY5ZmEzYjAxOWM5N2JlNTVkNWY1NjMzMzBjZWNmNWQ3IiwidGFnIjoiIn0%3D; expires=Tue, 29 Nov 2022 01:25:02 GMT; Max-Age=7200; path=/; httponly; samesite=lax
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   10167
Md5:    88a1ef267309497f20720e316008d72c
Sha1:   f023a2229f93191458692876a554999e16b4688f
Sha256: 86e017977fd34c16ea651b29fdd2c287c327ce0b2c73bec030465ef5af990bc4
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:25:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 81
Cache-Control: max-age=100155
Date: Mon, 28 Nov 2022 23:25:02 GMT
Etag: "63842738-117"
Expires: Wed, 30 Nov 2022 03:14:17 GMT
Last-Modified: Mon, 28 Nov 2022 03:12:56 GMT
Server: ECS (amb/6BA8)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /ajax/libs/hls.js/1.2.7/hls.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 28 Nov 2022 23:25:02 GMT
content-length: 82604
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "636ff6bc-142ac"
last-modified: Sat, 12 Nov 2022 19:40:44 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1343714
expires: Sat, 18 Nov 2023 23:25:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HEUvfc%2FaMJAoNwF1aBvgKoj6MA%2B8lmEzek%2BJh9ukDPBwG0QsS1GoWtKvzrn7AzElN4pTapB0YqvagGT%2FjlMyAnEMibBLcv8S86f%2FIa2eN7LPRWBO82ZgX%2FVqNu8GgHTcigmgUqOB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7716dc4b8bdfb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   82604
Md5:    7bf8d51855d3a4dc9f8fa48d5f960726
Sha1:   e5b5e977051af25021468bb957e2b6ff090411d0
Sha256: 8ee03212ee32332188e073bc0da21190fa3ffef35ea56a27440ad909b1b86880
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3766
Cache-Control: max-age=145965
Date: Mon, 28 Nov 2022 23:25:02 GMT
Etag: "6384cbc5-117"
Expires: Wed, 30 Nov 2022 15:57:47 GMT
Last-Modified: Mon, 28 Nov 2022 14:55:01 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /ajax/libs/twitter-bootstrap/5.1.3/js/bootstrap.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 28 Nov 2022 23:25:02 GMT
content-length: 14584
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6161c4a3-38f8"
last-modified: Sat, 09 Oct 2021 16:34:43 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2268711
expires: Sat, 18 Nov 2023 23:25:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=25g%2BpIzwl9sjOmCrn0hHrGIvcp8Ai9uxuzO%2BUPUJf9%2BI4NKehnnV7fOSzw%2BGAPhUyFotJEm0sl2yttn1dxkxtd5QnxI0nWO5fmDFw%2BJGGhBZwABwLXtmv1LV2Sp%2BF%2BnBJ1pCHemb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7716dc4b8be3b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (58940)
Size:   14584
Md5:    28dbaeb9aa2638e0c4e6d9ffd3d14e9d
Sha1:   3208ed3741e60986bbed3fd759cdfd3b4fa7cf06
Sha256: ababbb021f57966e125b8e296f9515f38d906b462697f7835e6914465dd0d362
                                        
                                            GET /e/8un3xdoa9aqd HTTP/1.1 
Host: dood.re
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.26.4.50
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Mon, 28 Nov 2022 23:25:01 GMT
expires: Sun, 27 Nov 2022 23:25:01 GMT
set-cookie: lang=1; domain=.dood.re; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b3JLv4jBg2quSxTphSgY%2B1DqrV1oxvKqgYc83AHNTNYhbhEkxrbZTczmpZvrRuxvjoGCyQfqBp0BsMZcHTHR8F%2BgHathw%2BFCdXJii3L1kqvb7%2FGaeyxMdKM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7716dc461d5fb4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (4835), with no line terminators
Size:   69007
Md5:    1cad5dbaabc546b9cf52200507cb2d77
Sha1:   d01c79484ab46eac971e88c6ded11b9fc916000e
Sha256: 94a898475e6241f9dc8f797cdf53d818b8472ab5464f75c50f72063897c391b9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4181
Cache-Control: max-age=146380
Date: Mon, 28 Nov 2022 23:25:02 GMT
Etag: "6384cbc5-117"
Expires: Wed, 30 Nov 2022 16:04:42 GMT
Last-Modified: Mon, 28 Nov 2022 14:55:01 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /e/6e31v7v9humq HTTP/1.1 
Host: dood.re
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.26.4.50
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Mon, 28 Nov 2022 23:25:02 GMT
expires: Sun, 27 Nov 2022 23:25:02 GMT
set-cookie: lang=1; domain=.dood.re; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L8LNHqrILJQxhOeYZfvOHT6mLgtXTNDrPyUHTJSwjsr%2BOqUz5gP%2F7ZAafXtrFhrisK8qGbALFm40c6PRwgslV%2FuSjFz67GDPx1IArdr5tCd%2B4MpyUYLDt1g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7716dc461d47b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (4835), with no line terminators
Size:   1855
Md5:    cc500755e55a7742b4948e195e779b04
Sha1:   1471e5c7016c298f206d665c965472e9c2a9e14c
Sha256: d0bae4457a518875679b2bcf59a4cc2bb005b7a715fa6eeb0fddd7d6d1e8c5a3
                                        
                                            GET /uwt.js HTTP/1.1 
Host: static.ads-twitter.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 27 Oct 2022 18:55:37 GMT
If-None-Match: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
TE: trailers

search
                                         151.101.84.157
HTTP/2 304 Not Modified
                                        
date: Mon, 28 Nov 2022 23:25:02 GMT
cache-control: no-cache
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
x-served-by: cache-bma1655-BMA
x-cache: HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
X-Firefox-Spdy: h2

                                        
                                            GET /ajax/libs/plyr/3.7.2/plyr.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 28 Nov 2022 23:25:02 GMT
content-length: 28745
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "62600438-7049"
last-modified: Wed, 20 Apr 2022 13:01:44 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 15121846
expires: Sat, 18 Nov 2023 23:25:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fEYDQCuqiYdZY9vAeO4FTg4gl3eS3cdnztDOUYz0mq%2Fr1JhXa2wVS8WRt6KVX7XI%2FKd50wYD%2BxOS701CXnHCsbErXd3xhFUPLw3Q%2FFWQOTl%2FSBGDmy7BhRFrxHduWWOVu4Yi%2FZzO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7716dc4c1c50b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   28745
Md5:    2d8446057a33304014d76f234af5965f
Sha1:   336260e7fb6963edd528aa6f8efb78580f9de2f0
Sha256: 5219ffe71d2f5400b3656bae5dd4d31bf48c05901ed2e0b5473d59c1dd322f06
                                        
                                            GET /js/js.load.1.js?4106537923882439 HTTP/1.1 
Host: commentsengine.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hqq.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.67.190.246
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Mon, 28 Nov 2022 23:25:02 GMT
content-length: 0
last-modified: Thu, 14 Apr 2022 12:20:52 GMT
etag: "625811a4-0"
access-control-allow-origin: *
accessing-static: 1
cache-control: public, max-age=31536000, stale-while-revalidate=30, stale-if-error=30
pragma: cache
x-cache-status-inferno-s: MISS
x-inferno-location: static
cf-cache-status: HIT
age: 15127227
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZCdsjETmaEeEwZ4PvqORcYjX38RhQSeFA1LiyJCPuQmLhTXKWjy5pwxQ7R5drAuTIl44W8jLeu5ucOf1zI93splWpOPmy3%2Bvairki0KS0JBLSzFC6x%2B%2F10QcWsQ0iQSGTVTL6RQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7716dc4c1869b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "9A4397D75F08D8EAFE861B11FE24747E8A0DA5472C8E3594A1FED2FCA6918C48"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2185
Expires: Tue, 29 Nov 2022 00:01:27 GMT
Date: Mon, 28 Nov 2022 23:25:02 GMT
Connection: keep-alive

                                        
                                            GET /ajax/libs/plyr/3.7.2/plyr.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.17.24.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Mon, 28 Nov 2022 23:25:02 GMT
content-length: 4586
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "62600438-11ea"
last-modified: Wed, 20 Apr 2022 13:01:44 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 14957924
expires: Sat, 18 Nov 2023 23:25:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qNwOx0%2BQL%2FcrSRzztGG%2B2%2Fg2kLlZLb1L0wTRXkxWb9l%2F8TeNrSOW1HHLix4XhTSGa6w9bd4e8r0SpYz7sZkdBuHhO0ChzWMcgUdSBzlrEHjj1sD9DO2niwI2qpsDxaw0M4Ms5WRE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7716dc4c2c5eb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (33771), with no line terminators
Size:   4586
Md5:    2a571dcd1fbbc6041a23412abf048926
Sha1:   0e5ee09ceadae53acbcc511c1954756eeed98a29
Sha256: 344c089978288b4db8766d500e9d5cc6a8ee663d145d882f4c80dc16b341ceac
                                        
                                            GET /js/js.load.1.js?6464022831814782 HTTP/1.1 
Host: commentsengine.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hqq.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.67.190.246
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Mon, 28 Nov 2022 23:25:02 GMT
content-length: 0
last-modified: Thu, 14 Apr 2022 12:20:52 GMT
etag: "625811a4-0"
access-control-allow-origin: *
accessing-static: 1
cache-control: public, max-age=31536000, stale-while-revalidate=30, stale-if-error=30
pragma: cache
x-cache-status-inferno-s: MISS
x-inferno-location: static
cf-cache-status: HIT
age: 15127227
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aCDxX6zgQhHimM7yDJMOyME4eVB2CKU5wOpaXf73WeyXM2qsy2rf000fG36Z8pGtrHCdDsdptlhHab4Xncr2Ay1NcxvVoSxVFlQcQt0u%2FvkfAxzM1StCsj6%2F8kgL1uUXOXAeiXo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7716dc4c2871b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /uwt.js HTTP/1.1 
Host: static.ads-twitter.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 27 Oct 2022 18:55:37 GMT
If-None-Match: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
TE: trailers

search
                                         151.101.84.157
HTTP/2 304 Not Modified
                                        
date: Mon, 28 Nov 2022 23:25:02 GMT
cache-control: no-cache
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
x-served-by: cache-bma1655-BMA
x-cache: HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
X-Firefox-Spdy: h2

                                        
                                            GET /e/sfluplic0txz HTTP/1.1 
Host: voe.sx
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         186.2.163.208
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: ddos-guard
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests;
vary: Accept-Encoding
cache-control: no-cache, private
date: Mon, 28 Nov 2022 23:25:02 GMT
set-cookie: __ddg1_=xXJjCdllDUaaAkBpJfhR; Domain=.voe.sx; HttpOnly; Path=/; Expires=Tue, 28-Nov-2023 23:25:02 GMT XSRF-TOKEN=eyJpdiI6IkcvVlJHaFRQUGQxeC9oRWl4WVJlR1E9PSIsInZhbHVlIjoiKytHcnluMVdQcVo1K25zZGRxMm1nZ29jMkxGazFsNktiU3N0RklUaCt3VEhWazgyRi9FMm5TcWQ4TlJjQ2NXSUhtZzBVRyt3VXNKN1JpL0ZGVWVnb29TOThXNlltQ2oxeUc2Nk9Ec1ZpTG50NzZOd2tpWUNrZUdMZ3NlUHBTKzciLCJtYWMiOiIxMjg0NTkyZDViMjM5MGIwYjhhNWZjMjYxZDcyMTQyY2MyMzAxMTMxZThiMzdkZmZmMzYzMzRjN2QwNjUxMDc0IiwidGFnIjoiIn0%3D; expires=Tue, 29 Nov 2022 01:25:02 GMT; Max-Age=7200; path=/; samesite=lax voe_session=eyJpdiI6ImdUeHpoV00yRkpURkMybEZXRkczd3c9PSIsInZhbHVlIjoiWWxXL2FwQXRGTm42SFhXMFQ4SkFZYTI0dW12aEtZdUxOMVZ4RDY0L2pYV3k5bDYwYkRsdWR4Tlhtc3pWclhnTEc5cGVCYWZDSlllRkVDamc3UVhuSmNPdG54NjY0QjZaek0vSFlERG5kVnpzUGxQR2FhbjhZU2oxbDlFNzVYRmoiLCJtYWMiOiIzNjlkZjhjNGE2YTcyZTczOTI2ZjE2M2JmY2FiYTk5N2ZlNzk0MWUwNDQ4MDlmOWVjMjBmNGMzMDIwZDA2OTU4IiwidGFnIjoiIn0%3D; expires=Tue, 29 Nov 2022 01:25:02 GMT; Max-Age=7200; path=/; httponly; samesite=lax
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   10225
Md5:    6eb24e61ea519d6e9a8ec6478beba68d
Sha1:   4e424dd94039bc4f759e5b7879b8369c70cae955
Sha256: 6b2a113f524c465078dba09b69cf9ce6eb014caec1807b714d8642179c1971b9
                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:25:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "E85591EEFB28114EFAB469AFDC016281C9EF6DD5"
Expires: Tue, 29 Nov 2022 11:00:00 GMT
Last-Modified: Mon, 28 Nov 2022 23:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 986
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7716dc4c4cb40b4d-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    9623d71ecc5c21cc0bf75c9b0b41b77c
Sha1:   2ac493653dbc3e7989f29ecf317bd27209d6caa9
Sha256: 8282f427b747ac064fd8a6688a561abd9b0bea682f6bb50f44d5c2831a721a9c
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 23:25:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/sdkloader/ima3.js HTTP/1.1 
Host: imasdk.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.138
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 126568
date: Mon, 28 Nov 2022 23:25:02 GMT
expires: Mon, 28 Nov 2022 23:25:02 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2791)
Size:   126568
Md5:    d298ebea71faa19cd8237ddf8c37d550
Sha1:   628f6436cdc4db74ecda4fad134b4499f41ad4cb
Sha256: f02e9221a17b677d0aa0b76876bd82931f57bf5dd1ff9aa24a1ab945838b0e64
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9EC326BEE03628F311F7FE2A6F109473B20FC639CCCA05794AD70993A867CEE3"
Last-Modified: Sat, 26 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5653
Expires: Tue, 29 Nov 2022 00:59:15 GMT
Date: Mon, 28 Nov 2022 23:25:02 GMT
Connection: keep-alive

                                        
                                            GET /watch.226278697781.js?key=6b89af69f49621c6c443dd9b71e61d32&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1 HTTP/1.1 
Host: specialistinsensitive.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.seriale-shqip123.com
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         173.233.137.36
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html
                                        
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 23:25:02 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.seriale-shqip123.com
Access-Control-Allow-Origin: https://www.seriale-shqip123.com
Access-Control-Allow-Credentials: true
Location: https://specialistinsensitive.com/watch.226278697781.js?key=6b89af69f49621c6c443dd9b71e61d32&kw=%5B%22seriale%22%2C%22shqip%22%5D&refer=https%3A%2F%2Fwww.seriale-shqip123.com%2F&tz=0&dev=e&res=12.1055&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1&shu=45af026988f1519d3d62d5250bc15883bef220f554e4af1b519418b52c537d0ca6cb1da0696ae5f930a7843144c34fe47c9c83b8c6c8754fcd45865a4a87d82bbc99a8f0a1f7b3416295fe7307de9648e7eb14b11d6bdad4302cd146340c&pst=1669677962&rmtc=t
Set-Cookie: u_pl=17672407; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None ain=eyJhbGciOiJIUzI1NiJ9.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.WuxPO8nvgaCS--rBk_i4BOwhkUzxbGpnB-_-e_ma1GA; expires=Mon, 28 Nov 2022 23:26:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 90234f7387b3c1524c008b09efd2fd70
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /ntv.json?key=2542b9376e69e7c9ab59020b52823532&vstc=4&uuid=a26ac362-8201-46b4-8817-de4595d053f3%3A3%3A1&custom=%7B%22d37e3bc4%22%3A%22b%22%7D HTTP/1.1 
Host: strategicperplexanswered.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.seriale-shqip123.com
Connection: keep-alive
Referer: https://www.seriale-shqip123.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         192.243.61.227
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Server: nginx/1.22.0
Date: Mon, 28 Nov 2022 23:25:02 GMT
Content-Length: 17567
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.seriale-shqip123.com
Access-Control-Allow-Origin: https://www.seriale-shqip123.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17674756; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None uid_id2=a26ac362-8201-46b4-8817-de4595d053f3:3:1; expires=Mon, 05 Dec 2022 23:25:02 GMT; secure; SameSite=None pdhtkv=true; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None uncs=1; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None pdhtkv49=true; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None uncs49=1; expires=Tue, 29 Nov 2022 23:25:02 GMT; secure; SameSite=None nlec2542b9376e69e7c9ab59020b52823532=[2229214,2106764,2229213,2229212]; expires=Mon, 28 Nov 2022 23:25:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 977850abe1aa894adba294b2b663d70e
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (17567), with no line terminators
Size:   17567
Md5:    eb0b5b507ff7dc2b57efb6f90b7c4cd9
Sha1:   4a8df4e12e3c088635958a67eb5ec57130bfa92d
Sha256: d7ba11e69bf98052c9a1f6a7f014aa01e39e5105780a7582d4ea94b5d3af5283

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /netu.php HTTP/1.1 
Host: testingmetriksbre.ru
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hqq.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.26.1.119
HTTP/2 200 OK