savskapivnica.com/
157.90.183.219301 Moved Permanently 0 B IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: http://www.savskapivnica.com/
content-length: 0
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e36c852b5e145f2f09fe73111fb162e1
e439c6a462f86a3003d6464a8b9999b1c4d1e210
52a721168d0c41cb0854ff8c730fce3b79db2e804b383238e95ff1401922bd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52A721168D0C41CB0854FF8C730FCE3B79DB2E804B383238E95FF1401922BD74"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7358
Expires: Wed, 26 Oct 2022 16:56:47 GMT
Date: Wed, 26 Oct 2022 14:54:09 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 45bfdf3b823cd24564c8ac296a8b5b19
b0c442eb4f87556b3beb18ca8039dd4399b73f16
32113c679dda1f710ba67e537fdd0d435ccc186a238e3b14e48deb7b0700c693
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4063
Cache-Control: max-age=157476
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:09 GMT
Etag: "6358fe56-1d7"
Expires: Fri, 28 Oct 2022 10:38:45 GMT
Last-Modified: Wed, 26 Oct 2022 09:31:02 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 45bfdf3b823cd24564c8ac296a8b5b19
b0c442eb4f87556b3beb18ca8039dd4399b73f16
32113c679dda1f710ba67e537fdd0d435ccc186a238e3b14e48deb7b0700c693
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4063
Cache-Control: max-age=157476
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:09 GMT
Etag: "6358fe56-1d7"
Expires: Fri, 28 Oct 2022 10:38:45 GMT
Last-Modified: Wed, 26 Oct 2022 09:31:02 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a39eea1096852891690eaee02a64383e
c273000f799fc3676e8e3ef3617611a31252cffc
d9d95319013d64bc2ef6d9870f4adba902ee970b6f9e96279c9ed86f556e0001
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9D95319013D64BC2EF6D9870F4ADBA902EE970B6F9E96279C9ED86F556E0001"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6053
Expires: Wed, 26 Oct 2022 16:35:02 GMT
Date: Wed, 26 Oct 2022 14:54:09 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /H++7ovLwbNRLbOz1OPowcLdq9mfaGkPqOiS5vAsP7XBQsFDSWwq7967rgwK2sOc0cLX2w4s4rs=
x-amz-request-id: WXMR78JS26JSNF2R
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 26 Oct 2022 14:09:23 GMT
age: 2686
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 14:54:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.savskapivnica.com/
157.90.183.219200 OK 17 kB IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12463)
Hash 441b7b63ee0b2b1d9f13bae4a355300f
04d4cf25b94188daf5bda9d73a760c4951c68005
ae56606aecb2acf18319efc8a461257ae6164a8098a7666ba32eca190a6f3b79
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
link: <http://www.savskapivnica.com/wp-json/>; rel="https://api.w.org/", <http://www.savskapivnica.com/wp-json/wp/v2/pages/5>; rel="alternate"; type="application/json", <http://www.savskapivnica.com/>; rel=shortlink
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
fonts.googleapis.com/css?family=Source+Sans+Pro%3A400&display=swap&ver=3.1.6
142.250.74.10200 OK 547 B URL HTTP/1.1 fonts.googleapis.com/css?family=Source+Sans+Pro%3A400&display=swap&ver=3.1.6
IP 142.250.74.10:0
Hash 326a8022fdc932f4065461ce371fa486
861c2860db680d098cf6f457142eaf72391fc33d
b8f94f3b30bd99d4f9bfe33bef12e02bc82dfb586b3df4f7a923e18dd3464485
GET /css?family=Source+Sans+Pro%3A400&display=swap&ver=3.1.6 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 26 Oct 2022 14:54:09 GMT
Date: Wed, 26 Oct 2022 14:54:09 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
157.90.183.219200 OK 7.0 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (30837)
Hash 1db59c110a8eda3876e6138ed523ab3d
e1ed3bb7f60fd96e164d20965a747b501dd6ec7a
582f9ec201a29c449a5200239a4edfd939ae1ed7c7d9b2e668156b61b179bdc6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: text/css
last-modified: Mon, 07 Mar 2022 22:15:37 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6988
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/uploads/elementor/css/global.css?ver=1646691816
157.90.183.219200 OK 1.1 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/uploads/elementor/css/global.css?ver=1646691816
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (11326), with no line terminators
Hash b688c22ee0e6394ccc741aa6860441cc
dadf624bf2d3686a86c213a7cf0eaf2e6c83c5e4
3b1f74eb271662d064df7be4fe67fb420980d06bfa482e081134a10ad20ed249
GET /wp-content/uploads/elementor/css/global.css?ver=1646691816 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: text/css
last-modified: Fri, 26 Apr 2019 00:23:40 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1098
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/uploads/elementor/css/post-5.css?ver=1646691816
157.90.183.219200 OK 2.8 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/uploads/elementor/css/post-5.css?ver=1646691816
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (30511), with no line terminators
Hash 8dde882639a7671c68a736df7343eac3
2818b08080405816adc89f538bbf6c5a9799fcf8
a9a662a499735858a6a572a2483d4b877b74efe2b417995d6f1bad983651f816
GET /wp-content/uploads/elementor/css/post-5.css?ver=1646691816 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: text/css
last-modified: Tue, 21 May 2019 23:29:25 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2801
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.5.6
157.90.183.219200 OK 2.6 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.5.6
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (10019)
Hash 4e9118f31f777852a8192e8ae7145006
35f6239ba65c066bb5af00fb197c61bd152099be
ecd21129b9099866ad1499c96a15311d0327e2d86ddaf8540c77d5f2d06b0218
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.5.6 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: text/css
last-modified: Mon, 07 Mar 2022 22:15:37 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2598
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
157.90.183.219200 OK 4.9 kB URL HTTP/1.1 www.savskapivnica.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (15224)
Hash c5861eec8c65717219134960db9e361e
7a9a5ed5ca3de9e30fa3c14d1ada2ecb6eb4505f
b96639b87d4a408e9cddadc6f2a1228cbb20678f3f069785fe0614c0db78430d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 14:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4937
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.savskapivnica.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
157.90.183.219200 OK 11 kB URL HTTP/1.1 www.savskapivnica.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (39791)
Hash fb05e752eec030b6f476138087d4d8a3
ebd274bb1c09e706c24cb638492d952eb798e2dd
50577406a44544dc7629fe3f6b78421cde604b620966387d0d0a37a25bf20baa
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: text/css
last-modified: Wed, 06 Apr 2022 12:18:54 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 11182
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/themes/neve/assets/css/style-legacy.min.css?ver=3.1.6
157.90.183.219200 OK 9.1 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/themes/neve/assets/css/style-legacy.min.css?ver=3.1.6
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (48248), with no line terminators
Hash 8fa5819a357bbfec7b57039ae19d7f8e
0fbb21b2f5a7ad65da83293110a9666dcba37130
5f3e8c8aaefafc5de3aa8ca8bd9a99a162b3221bad0f21ff9043787c16c12366
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/neve/assets/css/style-legacy.min.css?ver=3.1.6 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: text/css
last-modified: Mon, 07 Mar 2022 22:30:13 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 9076
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0
157.90.183.219200 OK 3.9 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (19004)
Hash 9b73c719f0a2c05ffc7de1ebc76a27c4
43a71010fdb8e04a28404a6468cb2b908828f4f2
034e7b9080057087e220246d0e8b0cf4b6ada600e8da38b74ab3ebf599c615db
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: text/css
last-modified: Mon, 07 Mar 2022 22:15:37 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3873
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.5.6
157.90.183.219200 OK 854 B URL HTTP/1.1 www.savskapivnica.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.5.6
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (13766)
Hash b29ca675468e787e51aada5ef4dc1222
85aefdbde2b2106792cf06b60204133d328d2785
ba0268f1546df436c9d6f9e8cd3a9de26520db8f6e1132f390be1da0ae435732
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.5.6 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: text/css
last-modified: Mon, 07 Mar 2022 22:15:37 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 854
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.savskapivnica.com/wp-content/themes/neve/assets/js/build/modern/frontend.js?ver=3.1.6
157.90.183.219200 OK 2.5 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/themes/neve/assets/js/build/modern/frontend.js?ver=3.1.6
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (6799)
Hash ae1a36138246606da85f0cf79b7d358d
c38a1dcadcc828a9c3eca6a2decf53c4d660a0bb
6623a9201315589e6a17823e76e4d59472885fd7371005efd8ac4953bb3e38b8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/neve/assets/js/build/modern/frontend.js?ver=3.1.6 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 22:30:13 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2496
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-includes/js/comment-reply.min.js?ver=5.9.5
157.90.183.219200 OK 1.3 kB URL HTTP/1.1 www.savskapivnica.com/wp-includes/js/comment-reply.min.js?ver=5.9.5
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (2944)
Hash e8621225b8d49c34ce44cfab500d86b1
99ee999b5306fbe66b5d76ac240f5c8386621a82
af610f9b19f5147e1f82e14181b4772036ac68b95067e114619123ac522ca1d1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/comment-reply.min.js?ver=5.9.5 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 14:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1343
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6
157.90.183.219200 OK 2.2 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (4866)
Hash ba09a2f4f15cde49f66d3b798fd5ff5f
c102dbb32e7b17d66bbb113e927e588ffe9f624b
66867367181df346abbd12db8b8f60ebc78e77a7d8ffc92f51c1d550dbe28574
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 22:15:35 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2162
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.5.6
157.90.183.219200 OK 18 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.5.6
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65497)
Hash 23271de3a44b3ec842d64355f975c6a1
5eaf9541f006239ed09cb33f11c40ae6ddde2782
a85f3b7cf8b58fa4502d37f73473fd90a8273cac425578c59e390725717542d8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.5.6 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: text/css
last-modified: Mon, 07 Mar 2022 22:15:36 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 17522
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/uploads/elementor/css/post-314.css?ver=1646691816
157.90.183.219404 Not Found 12 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/uploads/elementor/css/post-314.css?ver=1646691816
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12463)
Hash 07fb6fac19faa56414cad26657df0193
480acce232c136a575376e84a629bae37729fe1b
0ff8d1bcee1e73212abe1b1579f3b72404706caaf55169a0aa953d833d9acd2b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-314.css?ver=1646691816 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <http://www.savskapivnica.com/wp-json/>; rel="https://api.w.org/"
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
157.90.183.219200 OK 4.2 kB URL HTTP/1.1 www.savskapivnica.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (11126)
Hash c41f3a82e911de81a1817131069bc7d2
1e883290a0b794916cead41e5f0705716fd77b89
e9791f24770f098ea30bb4d25e2e10bdedb97132d0bbf7d2bd79eedac22efa27
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 14:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4168
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
157.90.183.219200 OK 3.0 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (12198), with no line terminators
Hash 13cae06000fa9223bf958a948a495108
0716503ef98485d4eba528d0743169fe6657a4e9
fed7f3f2c9f4b71f63d0b9b35bb50e5b73e6ba583a8c7338b097596cf3da264f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 22:15:38 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2987
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6
157.90.183.219200 OK 4.6 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (14196)
Hash 37947f81fcf51983f960dca6a6e2e71e
f66eca23e0102eb1e4713c5c63cefa5d69a6ba4f
25b72d3834df7017acded4fdcae20fa63e6f2ffa9e1c2497682d94632b93091f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 22:15:35 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4596
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
157.90.183.219200 OK 31 kB URL HTTP/1.1 www.savskapivnica.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65447)
Hash 554969c8ed0e4b5eece1261c4e1e9cd0
3b514b21c2e26b2caa15054e43ed00184a8ebc38
4a10709ca76c5112fbaf69e065b4ef93dd37bcffd4ae39b351e56d40c9322123
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 14:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 30969
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
157.90.183.219200 OK 6.9 kB URL HTTP/1.1 www.savskapivnica.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash c1f2ed1d7320c7920bf0ea8b73657822
0d80247d3482ff92b5f8c3ee6c1eea3ba808877c
6b2069162ccec1dc23e84bb6387f6433c98c4e4c31f68e28c23c37b3b032548f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 14:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6875
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
s.w.org/images/core/emoji/11.2.0/svg/1f4e0.svg
192.0.77.48200 OK 778 B URL HTTP/2 s.w.org/images/core/emoji/11.2.0/svg/1f4e0.svg
IP 192.0.77.48:0
Hash ca178a28e56f263ccec1b833c300b746
4714740475cb0ca89310a73e9344028e7fb257c7
c118458bfd55191d5dcbc4476bc7326f480ebe796a8d7d01f879fa51e66c5dd8
GET /images/core/emoji/11.2.0/svg/1f4e0.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.savskapivnica.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 14:54:09 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Wed, 06 Nov 2019 15:22:21 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 130509513bc271340f20f1c556b2592a
6fd8b0623344d4c06ecf4e0708eb51a37d79ed9d
6a69bfbb5b21f5cfae366b21ab59426e78d51467926430c7bbf44d7f8ac704de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.6
157.90.183.219200 OK 1.1 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.6
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (2577)
Hash ef33e279323208a350b8264ea5f75974
c6322353c3669c3fb01e59196d693b59d0edf9b3
3b0b22d4af14f3ca3210708bfc7594523d3d73e69c0eec76e9131fa878b13122
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.5.6 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 22:15:37 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1100
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
157.90.183.219200 OK 3.5 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (10544)
Hash 0608f601ba27fad74de089b9f5494979
cc52a7c17c88ba2727281d3d63ed0ed83d737964
c94eb3a53c672cb5aa2f7b1864964889be9d8e15cca456a960ab3682a1122d03
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 22:15:38 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3451
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6
157.90.183.219200 OK 11 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (36994)
Hash 62c0840b34077e3594cd7de3c1d0d2c4
bef3b135c21233be6b6f4abdc2a0bd2b7cf519bb
2fd40df4f75300a31793f997274b6171ec6c6bdd4bf096579db1a806b6bbab8e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 22:15:35 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 10820
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.5.6
157.90.183.219200 OK 13 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.5.6
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (43087)
Hash 56d2857a22c4a64db230c28d2884bf11
42d131854e393e2851beec59d264ddcc0486ac1b
28525d28a3d0e522e386b20f98fbedd7f57142f67b3f88000312775f8d8a01e8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.5.6 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 22:15:34 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 13132
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
157.90.183.219200 OK 36 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65280)
Hash b424b85a064ab3174f3e1d3bade79688
29c4779066049f013b683e855d9934e4f8ef7230
d5b27ca2e9a987116ea9ae665f8011034176387b1a362b828b2ed66676f91dfb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 22:15:37 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 35515
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
maps.google.com/maps?q=Savska%20pivnica&t=m&z=15&output=embed&iwloc=near
216.58.211.14301 Moved Permanently 283 B URL HTTP/2 maps.google.com/maps?q=Savska%20pivnica&t=m&z=15&output=embed&iwloc=near
IP 216.58.211.14:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 1de495d3fa9c3afb0a649c4c7a4f5ac3
a3f1d802c5e2e0faa42303ea51d5541af795ba2c
2d31402f26d51bf67d3e4356df4fda8b6807d53f4716b07c2b3e68111a6b9faf
GET /maps?q=Savska%20pivnica&t=m&z=15&output=embed&iwloc=near HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.savskapivnica.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 26 Oct 2022 14:54:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sSavska+pivnica!5e0!6i15
content-type: text/html; charset=UTF-8
server: mafe
content-length: 283
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.savskapivnica.com/wp-content/uploads/2019/05/New-Project-10.jpg
157.90.183.219200 OK 33 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/uploads/2019/05/New-Project-10.jpg
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 426x426, components 3\012- data
Hash 757e518d75a9f6c351575c5b41edcd69
01e698a9bf48b1aa9a0e3ad64bbcdaf06e604604
c764ef59a84cdaa2e1396744b3503e820c6d5f4af3cf3cd3f64c6d3ac5418841
GET /wp-content/uploads/2019/05/New-Project-10.jpg HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: image/jpeg
last-modified: Thu, 09 May 2019 10:40:52 GMT
accept-ranges: bytes
content-length: 32956
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/uploads/2019/05/New-Project-11.jpg
40 kB URL www.savskapivnica.com/wp-content/uploads/2019/05/New-Project-11.jpg
IP :0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 426x426, components 3\012- data
Hash 34badc06925f1ccf49ab091730923fc1
a9e443c8daf7599bf8b44ab999d3d9e61b246a5d
47d042e165e955d1938bd827f28bc1f818e45bdee7551096ec5035d8fedacc1e
GET /wp-content/uploads/2019/05/New-Project-11.jpg HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
www.savskapivnica.com/wp-content/uploads/2019/05/52842399_2099790706763258_6338982360045846528_n.jpg
157.90.183.219200 OK 207 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/uploads/2019/05/52842399_2099790706763258_6338982360045846528_n.jpg
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2], progressive, precision 8, 1680x1050, components 3\012- data
Size 207 kB (206945 bytes)
Hash efc877d94d960115a3369d6cafa73171
5837d45919013e56db609f6f2def3f037e42672a
79606e7a7e62b959abb741385efa4202ee6cbd9c9fee9d76b5d1627795267500
GET /wp-content/uploads/2019/05/52842399_2099790706763258_6338982360045846528_n.jpg HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/wp-content/uploads/elementor/css/post-5.css?ver=1646691816
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: image/jpeg
last-modified: Mon, 06 May 2019 22:01:46 GMT
accept-ranges: bytes
content-length: 206945
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
216.58.207.195200 OK 13 kB URL HTTP/1.1 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.savskapivnica.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 13036
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 19 Oct 2022 22:01:43 GMT
Expires: Thu, 19 Oct 2023 22:01:43 GMT
Cache-Control: public, max-age=31536000
Age: 579146
Last-Modified: Wed, 27 Apr 2022 16:04:42 GMT
Content-Type: font/woff2
www.savskapivnica.com/wp-content/uploads/2019/05/New-Project-12.jpg
157.90.183.219200 OK 35 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/uploads/2019/05/New-Project-12.jpg
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 426x426, components 3\012- data
Hash 2a3a694139dbaa92f52bcdd68d0746e3
0ef216cef3e13c65428276d36913072b8eb9c325
ab6716397f1bb60d4996c52b56dab5c3a1e00e8978dbc27c0ce42ff4732c985b
GET /wp-content/uploads/2019/05/New-Project-12.jpg HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: image/jpeg
last-modified: Thu, 09 May 2019 10:44:21 GMT
accept-ranges: bytes
content-length: 35085
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/uploads/2019/05/klopa-i-hrana.jpg
157.90.183.219200 OK 202 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/uploads/2019/05/klopa-i-hrana.jpg
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x1000, components 3\012- data
Size 202 kB (202252 bytes)
Hash 746ada2fb174e0ebd24bb75173f27b50
df35589594bb3db4b98c4314cd25f28d8b0afed9
9ae6ec7a685b9a61acb3a60ecabb7087e959f585aa14f3c03f78f0167aef5c2f
GET /wp-content/uploads/2019/05/klopa-i-hrana.jpg HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: image/jpeg
last-modified: Mon, 06 May 2019 19:58:45 GMT
accept-ranges: bytes
content-length: 202252
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
s.w.org/images/core/emoji/11.2.0/svg/1f4e7.svg
192.0.77.48200 OK 78 kB URL HTTP/2 s.w.org/images/core/emoji/11.2.0/svg/1f4e7.svg
IP 192.0.77.48:0
Hash a08f93b784fa630c81284f550cbd6c07
b9eb868b69739af45936afbcaf4fceedb7a6dfbc
f3acbc9955cdbd83a510cc84b9233cfeb00ed2fb55b389233e53234c805de290
GET /images/core/emoji/11.2.0/svg/1f4e7.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.savskapivnica.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 14:54:09 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 18 Jan 2019 01:27:58 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 130509513bc271340f20f1c556b2592a
6fd8b0623344d4c06ecf4e0708eb51a37d79ed9d
6a69bfbb5b21f5cfae366b21ab59426e78d51467926430c7bbf44d7f8ac704de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.14.0
157.90.183.219200 OK 92 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.14.0
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 92216, version 1.0\012- data
Hash 70ffaa0b941707c09d1cbf69280d1424
fc3d9db08411484861c93dfe7c257bff8fe13b74
41e3c2c7e1af8d05bd4195d6241a16334583d6280f4ab41209aa3880bea50994
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.14.0 HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.savskapivnica.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:10 GMT
content-type: font/woff2
last-modified: Mon, 07 Mar 2022 22:15:37 GMT
accept-ranges: bytes
content-length: 92216
date: Wed, 26 Oct 2022 14:54:10 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.savskapivnica.com/wp-content/uploads/2019/05/IMG_8480.jpg
157.90.183.219200 OK 2.7 MB URL HTTP/1.1 www.savskapivnica.com/wp-content/uploads/2019/05/IMG_8480.jpg
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15], baseline, precision 8, 4752x3168, components 3\012- data
Size 2.7 MB (2657899 bytes)
Hash 2e9a6c1750fba9676b22c0944253edc4
9620276b2a073f12dbc2730d9f7cc810c7bb2d18
69e58043b60bd7f19e0557eb5c9fd60dd4ddfb32c24882a27303f5531972672c
GET /wp-content/uploads/2019/05/IMG_8480.jpg HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/wp-content/uploads/elementor/css/post-5.css?ver=1646691816
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:09 GMT
content-type: image/jpeg
last-modified: Mon, 06 May 2019 20:33:23 GMT
accept-ranges: bytes
content-length: 2657899
date: Wed, 26 Oct 2022 14:54:09 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
www.savskapivnica.com/wp-content/uploads/2019/05/cropped-1482838320-kafe-bar-savska-pivnica-docek-nove-godine.png
157.90.183.219200 OK 65 kB URL HTTP/1.1 www.savskapivnica.com/wp-content/uploads/2019/05/cropped-1482838320-kafe-bar-savska-pivnica-docek-nove-godine.png
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 376 x 307, 8-bit/color RGBA, non-interlaced\012- data
Hash 672e169cce8231c6a9b37ce7c729a2c9
c7ecf8f73b5b00cfc84928eaeaa7bb012268f660
92576ab4c6f2500f6a2b0bb3df5e0664f2fb6803724d98bddc8426b8441baf1c
GET /wp-content/uploads/2019/05/cropped-1482838320-kafe-bar-savska-pivnica-docek-nove-godine.png HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 14:54:10 GMT
content-type: image/png
last-modified: Thu, 09 May 2019 10:22:09 GMT
accept-ranges: bytes
content-length: 65079
date: Wed, 26 Oct 2022 14:54:10 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 77b5da0f60755df91da1b98333c6d33c
0c36c5f1063e2ef41d02e26ddf9ed1e0a490e6b4
085b499d52d53965301db8affc692e09876290e5d67bf09c83178cc54384999f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.savskapivnica.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:26:57 GMT
expires: Thu, 19 Oct 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 588433
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.savskapivnica.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 588002
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.savskapivnica.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 588002
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dd283dfc036535bdeb8a8be1310ef930
d3b1c300dd75d7af630e0f3112e49d7492d66c17
578f9256faa188facb3f2d68b02b0c7fb2e30e02e2e74234d015429563cba7aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2827
Cache-Control: max-age=151184
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:10 GMT
Etag: "6358ea97-1d7"
Expires: Fri, 28 Oct 2022 08:53:54 GMT
Last-Modified: Wed, 26 Oct 2022 08:06:47 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwmRduz8A.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwmRduz8A.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 11696, version 1.0\012- data
Hash e03436c096e5681e60d23fe087bb41f2
2cac64a56ce23185b3ce161aaab6d1f7222213fe
51fc350bb83c998a124f1bb756b38cc218912b1f2952e6f1c755c1a13da69f04
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwmRduz8A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.savskapivnica.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11696
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 20:49:08 GMT
expires: Thu, 19 Oct 2023 20:49:08 GMT
cache-control: public, max-age=31536000
age: 583502
last-modified: Wed, 27 Apr 2022 16:13:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Hash deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.savskapivnica.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:50:35 GMT
expires: Thu, 19 Oct 2023 19:50:35 GMT
cache-control: public, max-age=31536000
age: 587015
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 13052, version 1.0\012- data
Hash 7cf79fbd1df848510d7352274efc2401
5540b5a26cc7dfe25294c4eabe011e2c6cd60143
bc9a16cd945457ad9463cdaed95129b01c589466978dfee3d019d9c604b2171a
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.savskapivnica.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:26:57 GMT
expires: Thu, 19 Oct 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 588433
last-modified: Wed, 27 Apr 2022 16:09:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notosanshebrew/v38/or30Q7v33eiDljA1IufXTtVf7V6RvEEdhQlk0LlGxCyaePiUTNw.woff2
216.58.207.195200 OK 29 kB URL HTTP/2 fonts.gstatic.com/s/notosanshebrew/v38/or30Q7v33eiDljA1IufXTtVf7V6RvEEdhQlk0LlGxCyaePiUTNw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 29228, version 1.0\012- data
Hash ac245344b454be4c8b5dd075c79e6274
164d0b03b952f34c53dfcfb3af5765972a8682f4
f5a11943ccbc33b4455f9921a9c98436d9c7eee2160a05b380217481a1305f34
GET /s/notosanshebrew/v38/or30Q7v33eiDljA1IufXTtVf7V6RvEEdhQlk0LlGxCyaePiUTNw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.savskapivnica.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 25 Oct 2022 17:42:52 GMT
expires: Wed, 25 Oct 2023 17:42:52 GMT
cache-control: public, max-age=31536000
age: 76278
last-modified: Tue, 09 Aug 2022 02:12:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
216.58.207.195200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data
Hash d010a9f2d5c7a0374b3b84706a43d2ec
c1fe465db08785c3f115555d39db23838960cb66
9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536
GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.savskapivnica.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 15:39:47 GMT
expires: Sat, 21 Oct 2023 15:39:47 GMT
cache-control: public, max-age=31536000
age: 429263
last-modified: Mon, 11 Jul 2022 19:12:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notosanshebrew/v38/or30Q7v33eiDljA1IufXTtVf7V6RvEEdhQlk0LlGxCyaePiaTNzENg.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/notosanshebrew/v38/or30Q7v33eiDljA1IufXTtVf7V6RvEEdhQlk0LlGxCyaePiaTNzENg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15156, version 1.0\012- data
Hash 75055823500011a7576af5401bfd095d
677b0456220a0ddd470cc2c89765265f0bc3c767
2161c8ea63297f37c60100b4a64ef516907a5d697e054155f385c03ad222a57b
GET /s/notosanshebrew/v38/or30Q7v33eiDljA1IufXTtVf7V6RvEEdhQlk0LlGxCyaePiaTNzENg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.savskapivnica.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Oct 2022 00:25:37 GMT
expires: Sun, 22 Oct 2023 00:25:37 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 09 Aug 2022 02:14:22 GMT
content-type: font/woff2
age: 397713
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNq7lqDY.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNq7lqDY.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 11792, version 1.0\012- data
Hash 619d81d89f24960286d052bc8843de1b
15274ef64de4eeda33d92f1f27f9a1d79099428d
ee519845ad25d096974439033bfbfc99578285ab9788287b915940cc7f8d3147
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNq7lqDY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.savskapivnica.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11792
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:35:04 GMT
expires: Thu, 19 Oct 2023 19:35:04 GMT
cache-control: public, max-age=31536000
age: 587946
last-modified: Wed, 27 Apr 2022 16:04:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.savskapivnica.com/favicon.ico
157.90.183.219404 Not Found 1.2 kB URL HTTP/1.1 www.savskapivnica.com/favicon.ico
IP 157.90.183.219:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /favicon.ico HTTP/1.1
Host: www.savskapivnica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.savskapivnica.com/
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Wed, 26 Oct 2022 14:54:10 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
push.services.mozilla.com/
54.187.146.10101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.146.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FhjazSJMh+JUeFDLhtQc4Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iYWM7yqhLuFIzDqo0F0vAbEMje8=
www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sSavska+pivnica!5e0!6i15
142.250.74.164200 OK 1.4 kB URL HTTP/2 www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sSavska+pivnica!5e0!6i15
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2812)
Hash 4114c13db18f388c2cd498ff284e7033
b88e4aafaa50039b0c47358ffc1f746e96da0d1a
54d75dd8a031047eae7f0a42cade90c49c554488b527d3e3efa95d83c97505f6
GET /maps/embed?origin=mfe&pb=!1m4!2m1!1sSavska+pivnica!5e0!6i15 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.savskapivnica.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 26 Oct 2022 14:54:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-vedMxhfnkuVo92Ae0-ehTg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1388
x-xss-protection: 0
server-timing: gfet4t7; dur=356
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Oct 2022 12:31:58 GMT
expires: Sun, 22 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 354132
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 00:48:31 GMT
expires: Sat, 21 Oct 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 482739
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.gstatic.com/maps-api-v3/embed/js/50/10/init_embed.js
142.250.74.163200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/50/10/init_embed.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (2669)
Hash 6b1264b791946c3bd0d16f424dc37f48
753d2cb1d5940ca5dfcae60e58137e5486fc1cd7
33d79a04d7f6dcf078309ead8ca75269079842203cb7174512bcab4e841d173a
GET /maps-api-v3/embed/js/50/10/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69023
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Oct 2022 04:34:59 GMT
expires: Sun, 22 Oct 2023 04:34:59 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 17 Oct 2022 20:03:50 GMT
content-type: text/javascript
age: 382751
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14317
Expires: Wed, 26 Oct 2022 18:52:48 GMT
Date: Wed, 26 Oct 2022 14:54:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14317
Expires: Wed, 26 Oct 2022 18:52:48 GMT
Date: Wed, 26 Oct 2022 14:54:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14317
Expires: Wed, 26 Oct 2022 18:52:48 GMT
Date: Wed, 26 Oct 2022 14:54:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14317
Expires: Wed, 26 Oct 2022 18:52:48 GMT
Date: Wed, 26 Oct 2022 14:54:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14317
Expires: Wed, 26 Oct 2022 18:52:48 GMT
Date: Wed, 26 Oct 2022 14:54:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5da11cdb-c8be-46f4-95b0-792c49d930a7.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5da11cdb-c8be-46f4-95b0-792c49d930a7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5987bcd44ab0db5313aa4f409a8a212f
691a36cde98a9fe1660745dd811e0be2ae67036c
e47ce3587c647b52669f675dc7e84e21555f82138091fb04febc951b4c06ba30
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5da11cdb-c8be-46f4-95b0-792c49d930a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8553
x-amzn-requestid: 69931a9c-027e-428e-a88d-61c5fac64daa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2iEnzoAMFZAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585690-12c78c5157fb3fa41a13548c;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zfjAcNokC0aMpSY3juYAi_Wo1MMRskGGJ0y9jb7x3Ps9R6wfiUg-IQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:57:47 GMT
age: 60984
etag: "691a36cde98a9fe1660745dd811e0be2ae67036c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F057530b7-f6b8-4f9b-b6fc-8fdc4a101f36.webp
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F057530b7-f6b8-4f9b-b6fc-8fdc4a101f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1cc61ad4b1d66ab4bce27288ee690e12
324e13ad5c99f628d713e55a2994ad4042ece70e
62cd88bc19bc1f0be2a37c3e990897158acd3d55aa3ddd299144d4f9596ba34e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F057530b7-f6b8-4f9b-b6fc-8fdc4a101f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6831
x-amzn-requestid: cc6f38ff-ab33-4b18-8cae-aa6bc061962f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alKjPH7ToAMFSiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635857ae-3db2790d0e6c5fab6c4bc81f;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:39:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tiWbOUwlRzaT2EnCWIgoFaT_ho55s3tgRxalb7yBbI21Pv0BhfLJOg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 22:05:09 GMT
age: 60542
etag: "324e13ad5c99f628d713e55a2994ad4042ece70e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CSource+Sans+Pro%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5
142.250.74.10200 OK 6.8 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CSource+Sans+Pro%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5
IP 142.250.74.10:0
Hash 1fe28f9990c1838c7eaec88d967b8a93
ecc53bacf10f301d2240b54eb5349bcb32feb7fc
c7fedbc04a09ff2703b6a1658328ecab6fa4d270042548cd9d8e068818173377
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CSource+Sans+Pro%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.savskapivnica.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 26 Oct 2022 14:54:09 GMT
date: Wed, 26 Oct 2022 14:54:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/earlyaccess/notosanshebrew.css?ver=5.9.5
142.250.74.10200 OK 8.5 kB URL HTTP/2 fonts.googleapis.com/earlyaccess/notosanshebrew.css?ver=5.9.5
IP 142.250.74.10:0
Hash 6c58bbc193ac713cbe4e5e16608da550
0d334324061284ecc3f049966c757e180e5f1707
9360aab2d7424b24220ac26409e6960eb12470316669e8b2a9160e2f123bf15a
GET /earlyaccess/notosanshebrew.css?ver=5.9.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.savskapivnica.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 26 Oct 2022 14:54:09 GMT
date: Wed, 26 Oct 2022 14:54:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db946866312c734e0c5f91ca76255b2f
e8b8236baab9106a426a415eb01494cc4cc91ad1
a695e7bc87da2c6d9f5669c09e662fe22982e69cb139466efa5093429fe19866
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8439
x-amzn-requestid: e0eed725-0725-4f5a-9c91-fec13ad0ebe5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ajKYQGWhIAMFdhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63578a9b-2a0115120e75f5271cea992f;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 07:04:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pf98qKWMjPBID3auXFKPhj1kt67xEWF_e2CpRMQ7_HkPJGzJ3cK1qw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 07:18:26 GMT
age: 27345
etag: "e8b8236baab9106a426a415eb01494cc4cc91ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b946c4f2f177828cf7b76c5764e97157
c3856686b98e1883133aa1824c496d34512769a0
be818a015fc9c745ea561a0b9c2aca6ba25ade24acd696fa651163d47b195371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13796
x-amzn-requestid: 90b1e032-78c6-499d-b564-f25c15e20304
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2OG0SoAMFx-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358568e-599d0f526fc6a01f77b67dcf;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sVS9nFgRyVconkkFTOrCO2zA0cICFNQFB2E1q7SQcVQm5_Dm6khvrA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:48:40 GMT
age: 61531
etag: "c3856686b98e1883133aa1824c496d34512769a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7dabafcfb90d6add8b3b4be97e20abea
d2825c0bbb8575efd75374f16a1eb534aeaa376a
c231a3a6738c8dee99bf437e44d475bad1e19a9fc667655f56f4fe0d69c6f013
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d68830f33c12f2aa839ecd5c96146bb2
c4eca00dde1d737943bc2980b58a7288c06f808c
0b8dd5b33360dae55b75de1bb81fc9404103824c8d987372d1c44f425052f0d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 14:43:39 GMT
expires: Wed, 26 Oct 2022 14:58:39 GMT
cache-control: public, max-age=900
age: 632
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.66302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Wed, 26 Oct 2022 14:54:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7dabafcfb90d6add8b3b4be97e20abea
d2825c0bbb8575efd75374f16a1eb534aeaa376a
c231a3a6738c8dee99bf437e44d475bad1e19a9fc667655f56f4fe0d69c6f013
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d68830f33c12f2aa839ecd5c96146bb2
c4eca00dde1d737943bc2980b58a7288c06f808c
0b8dd5b33360dae55b75de1bb81fc9404103824c8d987372d1c44f425052f0d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 26 Oct 2022 14:54:11 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash c9d1e07f0ebc850cf5b951d8fb9632bb
690fda162eea070d660c9ddf8370460413e2de3f
501720fa881c78ea5f54ff33cfac795b49974f83a44f4fc62d4687f37d13bd39
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 26 Oct 2022 14:54:11 GMT
server: ESF
cache-control: private
content-length: 30821
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d65072117be60a056ad8b8c04fbecd75
850adf5347eef78abcebc1f88d0b2a6e8b93ec43
8bbecb7eb3645effa25189145d7481a60093868cb3c232120cc0ceec946484d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/KNwF2gZZuR8/maxresdefault.webp
142.250.74.150200 OK 82 kB URL HTTP/2 i.ytimg.com/vi_webp/KNwF2gZZuR8/maxresdefault.webp
IP 142.250.74.150:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0fd6c053555134d1c236f8e678c6e350
3bb5fd07a9a11a4992381b5b9d01738bd5fbcfa3
e1a36c04aedee3c376dbcc786c929b4aa77a9edf6c76e60df401a50b955fb6fa
GET /vi_webp/KNwF2gZZuR8/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 82092
date: Wed, 26 Oct 2022 14:54:12 GMT
expires: Wed, 26 Oct 2022 16:54:12 GMT
cache-control: public, max-age=7200
etag: "1481571020"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d65072117be60a056ad8b8c04fbecd75
850adf5347eef78abcebc1f88d0b2a6e8b93ec43
8bbecb7eb3645effa25189145d7481a60093868cb3c232120cc0ceec946484d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 3d56596917080475122c9bb51cc0c0b7
d0294ac77866e801f6c94862b39bc00b9735d72f
ae58a33a93b695e84e3cffd34c09c20ccb08f33b775f87dd849077d3fbdf36a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu8G4XiiZVIh8EJ8MbGmoZPgxheeC-gc2UZl2A=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 981 B URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu8G4XiiZVIh8EJ8MbGmoZPgxheeC-gc2UZl2A=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash d2a0d3c0a81334e96bb98665182d5d8e
e5cf2947d87756b67025de10f65fcdb5b0528a8d
f68282c19cc7416ff4f296476dc1b5f082104a124c1c078b7d2662816ab854a3
GET /ytc/AMLnZu8G4XiiZVIh8EJ8MbGmoZPgxheeC-gc2UZl2A=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 27 Oct 2022 14:54:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 26 Oct 2022 14:54:12 GMT
server: fife
content-length: 981
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 3d56596917080475122c9bb51cc0c0b7
d0294ac77866e801f6c94862b39bc00b9735d72f
ae58a33a93b695e84e3cffd34c09c20ccb08f33b775f87dd849077d3fbdf36a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7f0ceb6c96eaef4aefea5728df73cb0c
e63d358fc2fc609ced4ca19532435dabdb06e022
5b00d67b84378b25123c119d0cd538625a5873cbc659907881b5c40865794580
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7f0ceb6c96eaef4aefea5728df73cb0c
e63d358fc2fc609ced4ca19532435dabdb06e022
5b00d67b84378b25123c119d0cd538625a5873cbc659907881b5c40865794580
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1666817652&ei=FEpZY9nKEMnKyAWFnqzQAg&ip=91.90.42.154&id=o-ADYrUrevoFCkIVshaLNBFuFXdZbOWdwfBG_C7N1FlmQo&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&mh=uG&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=2&pl=21&pcm2=no&initcwndbps=1921250&spc=yR2vp2y9_EhuQ1eijchfnSEBGuBdtuM&vprv=1&mime=video%2Fwebm&ns=pxHmKXolZpQ_VaouecO-uw4I&gir=yes&clen=345688997&dur=3658.188&lmt=1540924594773186&mt=1666795764&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5432432&n=dZQIQm-zvZRP_A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cpcm2%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIId9RaoNc3MiUmnHcSBzeOi-9Em9tVDX_FpWjjF280dAiA1cFpN5NbZHxOBQScA7qiBZpdvwHlwrx0qWHegZ5OoOQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgXjXwlDGpFWAuMfvfnDewgBGK9GJYLA_HKR0WPB2Bb-QCIQCZPoDJ9ADqqV6SEynpeNY1Y1RK8sCysNtIVr0A95m1nQ%3D%3D&alr=yes&cpn=osLmMz8nclKtLNYQ&cver=1.20221019.01.00&range=0-205516&rn=1&rbuf=0&pot=D4dDvNUd8NiKh3i4Igk0mDmX4PM2oUhdd0dNDJBu1XP6SNawqXv6CGZG5LWKhwBsvzcWBfMCkbRs8hHcs7XqQaU5PHQ93l61q0vAna9xgKjdCbvgCYQ1Hwrd5hW2OOvQi1QvSI-kh3Y=
91.90.45.173200 OK 1.3 kB URL HTTP/1.1 rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1666817652&ei=FEpZY9nKEMnKyAWFnqzQAg&ip=91.90.42.154&id=o-ADYrUrevoFCkIVshaLNBFuFXdZbOWdwfBG_C7N1FlmQo&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&mh=uG&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=2&pl=21&pcm2=no&initcwndbps=1921250&spc=yR2vp2y9_EhuQ1eijchfnSEBGuBdtuM&vprv=1&mime=video%2Fwebm&ns=pxHmKXolZpQ_VaouecO-uw4I&gir=yes&clen=345688997&dur=3658.188&lmt=1540924594773186&mt=1666795764&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5432432&n=dZQIQm-zvZRP_A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cpcm2%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIId9RaoNc3MiUmnHcSBzeOi-9Em9tVDX_FpWjjF280dAiA1cFpN5NbZHxOBQScA7qiBZpdvwHlwrx0qWHegZ5OoOQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgXjXwlDGpFWAuMfvfnDewgBGK9GJYLA_HKR0WPB2Bb-QCIQCZPoDJ9ADqqV6SEynpeNY1Y1RK8sCysNtIVr0A95m1nQ%3D%3D&alr=yes&cpn=osLmMz8nclKtLNYQ&cver=1.20221019.01.00&range=0-205516&rn=1&rbuf=0&pot=D4dDvNUd8NiKh3i4Igk0mDmX4PM2oUhdd0dNDJBu1XP6SNawqXv6CGZG5LWKhwBsvzcWBfMCkbRs8hHcs7XqQaU5PHQ93l61q0vAna9xgKjdCbvgCYQ1Hwrd5hW2OOvQi1QvSI-kh3Y=
IP 91.90.45.173:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1309), with no line terminators
Hash f02e263e6cb3e3fc6864f48bde054467
25db257915f1f568b29fa06fa9d0943f4c7c7d07
286573b110eb6058fb11cdbe801b9bee9f977ec5c2504ce9f73fa11771ddde29
GET /videoplayback?expire=1666817652&ei=FEpZY9nKEMnKyAWFnqzQAg&ip=91.90.42.154&id=o-ADYrUrevoFCkIVshaLNBFuFXdZbOWdwfBG_C7N1FlmQo&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&mh=uG&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=2&pl=21&pcm2=no&initcwndbps=1921250&spc=yR2vp2y9_EhuQ1eijchfnSEBGuBdtuM&vprv=1&mime=video%2Fwebm&ns=pxHmKXolZpQ_VaouecO-uw4I&gir=yes&clen=345688997&dur=3658.188&lmt=1540924594773186&mt=1666795764&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5432432&n=dZQIQm-zvZRP_A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cpcm2%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIId9RaoNc3MiUmnHcSBzeOi-9Em9tVDX_FpWjjF280dAiA1cFpN5NbZHxOBQScA7qiBZpdvwHlwrx0qWHegZ5OoOQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgXjXwlDGpFWAuMfvfnDewgBGK9GJYLA_HKR0WPB2Bb-QCIQCZPoDJ9ADqqV6SEynpeNY1Y1RK8sCysNtIVr0A95m1nQ%3D%3D&alr=yes&cpn=osLmMz8nclKtLNYQ&cver=1.20221019.01.00&range=0-205516&rn=1&rbuf=0&pot=D4dDvNUd8NiKh3i4Igk0mDmX4PM2oUhdd0dNDJBu1XP6SNawqXv6CGZG5LWKhwBsvzcWBfMCkbRs8hHcs7XqQaU5PHQ93l61q0vAna9xgKjdCbvgCYQ1Hwrd5hW2OOvQi1QvSI-kh3Y= HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Wed, 26 Oct 2022 14:54:12 GMT
Expires: Wed, 26 Oct 2022 14:54:12 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1309
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1666817652&ei=FEpZY9nKEMnKyAWFnqzQAg&ip=91.90.42.154&id=o-ADYrUrevoFCkIVshaLNBFuFXdZbOWdwfBG_C7N1FlmQo&itag=250&source=youtube&requiressl=yes&mh=uG&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=2&pl=21&pcm2=no&initcwndbps=1921250&spc=yR2vp2y9_EhuQ1eijchfnSEBGuBdtuM&vprv=1&mime=audio%2Fwebm&ns=pxHmKXolZpQ_VaouecO-uw4I&gir=yes&clen=1656698&dur=3658.221&lmt=1540929809811144&mt=1666795764&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5411222&n=dZQIQm-zvZRP_A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cpcm2%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgd6avkW27Eh3-Q_UKqWVm4RGdwwYFOGnbL4R63wM__AcCIAo59MRZdZ8ipG0GwWYbXIONDKw2pOiMB8oKzAnWEC3p&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgXjXwlDGpFWAuMfvfnDewgBGK9GJYLA_HKR0WPB2Bb-QCIQCZPoDJ9ADqqV6SEynpeNY1Y1RK8sCysNtIVr0A95m1nQ%3D%3D&alr=yes&cpn=osLmMz8nclKtLNYQ&cver=1.20221019.01.00&range=0-72007&rn=2&rbuf=0&pot=D4dDvNUd8NiKh3i4Igk0mDmX4PM2oUhdd0dNDJBu1XP6SNawqXv6CGZG5LWKhwBsvzcWBfMCkbRs8hHcs7XqQaU5PHQ93l61q0vAna9xgKjdCbvgCYQ1Hwrd5hW2OOvQi1QvSI-kh3Y=
91.90.45.173200 OK 1.2 kB URL HTTP/1.1 rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1666817652&ei=FEpZY9nKEMnKyAWFnqzQAg&ip=91.90.42.154&id=o-ADYrUrevoFCkIVshaLNBFuFXdZbOWdwfBG_C7N1FlmQo&itag=250&source=youtube&requiressl=yes&mh=uG&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=2&pl=21&pcm2=no&initcwndbps=1921250&spc=yR2vp2y9_EhuQ1eijchfnSEBGuBdtuM&vprv=1&mime=audio%2Fwebm&ns=pxHmKXolZpQ_VaouecO-uw4I&gir=yes&clen=1656698&dur=3658.221&lmt=1540929809811144&mt=1666795764&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5411222&n=dZQIQm-zvZRP_A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cpcm2%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgd6avkW27Eh3-Q_UKqWVm4RGdwwYFOGnbL4R63wM__AcCIAo59MRZdZ8ipG0GwWYbXIONDKw2pOiMB8oKzAnWEC3p&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgXjXwlDGpFWAuMfvfnDewgBGK9GJYLA_HKR0WPB2Bb-QCIQCZPoDJ9ADqqV6SEynpeNY1Y1RK8sCysNtIVr0A95m1nQ%3D%3D&alr=yes&cpn=osLmMz8nclKtLNYQ&cver=1.20221019.01.00&range=0-72007&rn=2&rbuf=0&pot=D4dDvNUd8NiKh3i4Igk0mDmX4PM2oUhdd0dNDJBu1XP6SNawqXv6CGZG5LWKhwBsvzcWBfMCkbRs8hHcs7XqQaU5PHQ93l61q0vAna9xgKjdCbvgCYQ1Hwrd5hW2OOvQi1QvSI-kh3Y=
IP 91.90.45.173:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1183), with no line terminators
Hash 7ba6b02577a35b6b880d6ce1d0bf4af9
8fe2f535715a6b9d8700ab29c305ffbd7a2dea41
a79f2f7bda7aaa85215ef1854905b223e6b39d3bee20c3b2b31a1db87ac7158b
GET /videoplayback?expire=1666817652&ei=FEpZY9nKEMnKyAWFnqzQAg&ip=91.90.42.154&id=o-ADYrUrevoFCkIVshaLNBFuFXdZbOWdwfBG_C7N1FlmQo&itag=250&source=youtube&requiressl=yes&mh=uG&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=2&pl=21&pcm2=no&initcwndbps=1921250&spc=yR2vp2y9_EhuQ1eijchfnSEBGuBdtuM&vprv=1&mime=audio%2Fwebm&ns=pxHmKXolZpQ_VaouecO-uw4I&gir=yes&clen=1656698&dur=3658.221&lmt=1540929809811144&mt=1666795764&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5411222&n=dZQIQm-zvZRP_A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cpcm2%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgd6avkW27Eh3-Q_UKqWVm4RGdwwYFOGnbL4R63wM__AcCIAo59MRZdZ8ipG0GwWYbXIONDKw2pOiMB8oKzAnWEC3p&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgXjXwlDGpFWAuMfvfnDewgBGK9GJYLA_HKR0WPB2Bb-QCIQCZPoDJ9ADqqV6SEynpeNY1Y1RK8sCysNtIVr0A95m1nQ%3D%3D&alr=yes&cpn=osLmMz8nclKtLNYQ&cver=1.20221019.01.00&range=0-72007&rn=2&rbuf=0&pot=D4dDvNUd8NiKh3i4Igk0mDmX4PM2oUhdd0dNDJBu1XP6SNawqXv6CGZG5LWKhwBsvzcWBfMCkbRs8hHcs7XqQaU5PHQ93l61q0vAna9xgKjdCbvgCYQ1Hwrd5hW2OOvQi1QvSI-kh3Y= HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Wed, 26 Oct 2022 14:54:12 GMT
Expires: Wed, 26 Oct 2022 14:54:12 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1183
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7f0ceb6c96eaef4aefea5728df73cb0c
e63d358fc2fc609ced4ca19532435dabdb06e022
5b00d67b84378b25123c119d0cd538625a5873cbc659907881b5c40865794580
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 406c51e29e5a60a3b0c4b7e3a23e2f83
9893a37241792f39bdd795667146da49926e2e74
60a2726db5ed57d3f7c1ed370ba9aaaa5adaf86a62a88a601c46b608b3694a3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 406c51e29e5a60a3b0c4b7e3a23e2f83
9893a37241792f39bdd795667146da49926e2e74
60a2726db5ed57d3f7c1ed370ba9aaaa5adaf86a62a88a601c46b608b3694a3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr1---sn-5go7ynld.googlevideo.com/videoplayback?expire=1666817652&ei=FEpZY9nKEMnKyAWFnqzQAg&ip=91.90.42.154&id=o-ADYrUrevoFCkIVshaLNBFuFXdZbOWdwfBG_C7N1FlmQo&itag=250&source=youtube&requiressl=yes&pcm2=no&spc=yR2vp2y9_EhuQ1eijchfnSEBGuBdtuM&vprv=1&mime=audio%2Fwebm&ns=pxHmKXolZpQ_VaouecO-uw4I&gir=yes&clen=1656698&dur=3658.221&lmt=1540929809811144&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5411222&n=dZQIQm-zvZRP_A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cpcm2%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgd6avkW27Eh3-Q_UKqWVm4RGdwwYFOGnbL4R63wM__AcCIAo59MRZdZ8ipG0GwWYbXIONDKw2pOiMB8oKzAnWEC3p&alr=yes&cpn=osLmMz8nclKtLNYQ&cver=1.20221019.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=uG&mm=29&mn=sn-5go7ynld&ms=rdu&mt=1666795766&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAKq-vjDYvhiG_1X_5sfebn_rTyN-64Mh6kt1jhDWBk-DAiEAli-I-9ilHAy9ytJUmyfXWW27GjNg3aOBxDGLuRYKg8M%3D&range=0-72007&rn=4&rbuf=0&pot=D4dDvNUd8NiKh3i4Igk0mDmX4PM2oUhdd0dNDJBu1XP6SNawqXv6CGZG5LWKhwBsvzcWBfMCkbRs8hHcs7XqQaU5PHQ93l61q0vAna9xgKjdCbvgCYQ1Hwrd5hW2OOvQi1QvSI-kh3Y=
74.125.111.70200 OK 72 kB URL HTTP/1.1 rr1---sn-5go7ynld.googlevideo.com/videoplayback?expire=1666817652&ei=FEpZY9nKEMnKyAWFnqzQAg&ip=91.90.42.154&id=o-ADYrUrevoFCkIVshaLNBFuFXdZbOWdwfBG_C7N1FlmQo&itag=250&source=youtube&requiressl=yes&pcm2=no&spc=yR2vp2y9_EhuQ1eijchfnSEBGuBdtuM&vprv=1&mime=audio%2Fwebm&ns=pxHmKXolZpQ_VaouecO-uw4I&gir=yes&clen=1656698&dur=3658.221&lmt=1540929809811144&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5411222&n=dZQIQm-zvZRP_A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cpcm2%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgd6avkW27Eh3-Q_UKqWVm4RGdwwYFOGnbL4R63wM__AcCIAo59MRZdZ8ipG0GwWYbXIONDKw2pOiMB8oKzAnWEC3p&alr=yes&cpn=osLmMz8nclKtLNYQ&cver=1.20221019.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=uG&mm=29&mn=sn-5go7ynld&ms=rdu&mt=1666795766&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAKq-vjDYvhiG_1X_5sfebn_rTyN-64Mh6kt1jhDWBk-DAiEAli-I-9ilHAy9ytJUmyfXWW27GjNg3aOBxDGLuRYKg8M%3D&range=0-72007&rn=4&rbuf=0&pot=D4dDvNUd8NiKh3i4Igk0mDmX4PM2oUhdd0dNDJBu1XP6SNawqXv6CGZG5LWKhwBsvzcWBfMCkbRs8hHcs7XqQaU5PHQ93l61q0vAna9xgKjdCbvgCYQ1Hwrd5hW2OOvQi1QvSI-kh3Y=
IP 74.125.111.70:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 359e86c943209e790139a1702b9f9212
6769c21ea55a6bfec647eacbbe0f27cf92c66cf9
9b9dfd4830bd702261797c5660f2233eb98943077e39b7c18a61079578c97a78
GET /videoplayback?expire=1666817652&ei=FEpZY9nKEMnKyAWFnqzQAg&ip=91.90.42.154&id=o-ADYrUrevoFCkIVshaLNBFuFXdZbOWdwfBG_C7N1FlmQo&itag=250&source=youtube&requiressl=yes&pcm2=no&spc=yR2vp2y9_EhuQ1eijchfnSEBGuBdtuM&vprv=1&mime=audio%2Fwebm&ns=pxHmKXolZpQ_VaouecO-uw4I&gir=yes&clen=1656698&dur=3658.221&lmt=1540929809811144&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5411222&n=dZQIQm-zvZRP_A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cpcm2%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgd6avkW27Eh3-Q_UKqWVm4RGdwwYFOGnbL4R63wM__AcCIAo59MRZdZ8ipG0GwWYbXIONDKw2pOiMB8oKzAnWEC3p&alr=yes&cpn=osLmMz8nclKtLNYQ&cver=1.20221019.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=uG&mm=29&mn=sn-5go7ynld&ms=rdu&mt=1666795766&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAKq-vjDYvhiG_1X_5sfebn_rTyN-64Mh6kt1jhDWBk-DAiEAli-I-9ilHAy9ytJUmyfXWW27GjNg3aOBxDGLuRYKg8M%3D&range=0-72007&rn=4&rbuf=0&pot=D4dDvNUd8NiKh3i4Igk0mDmX4PM2oUhdd0dNDJBu1XP6SNawqXv6CGZG5LWKhwBsvzcWBfMCkbRs8hHcs7XqQaU5PHQ93l61q0vAna9xgKjdCbvgCYQ1Hwrd5hW2OOvQi1QvSI-kh3Y= HTTP/1.1
Host: rr1---sn-5go7ynld.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Tue, 30 Oct 2018 20:03:29 GMT
Content-Type: audio/webm
Date: Wed, 26 Oct 2022 14:54:12 GMT
Expires: Wed, 26 Oct 2022 14:54:12 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 72008
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr1---sn-5go7ynld.googlevideo.com/videoplayback?expire=1666817652&ei=FEpZY9nKEMnKyAWFnqzQAg&ip=91.90.42.154&id=o-ADYrUrevoFCkIVshaLNBFuFXdZbOWdwfBG_C7N1FlmQo&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&pcm2=no&spc=yR2vp2y9_EhuQ1eijchfnSEBGuBdtuM&vprv=1&mime=video%2Fwebm&ns=pxHmKXolZpQ_VaouecO-uw4I&gir=yes&clen=345688997&dur=3658.188&lmt=1540924594773186&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5432432&n=dZQIQm-zvZRP_A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cpcm2%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIId9RaoNc3MiUmnHcSBzeOi-9Em9tVDX_FpWjjF280dAiA1cFpN5NbZHxOBQScA7qiBZpdvwHlwrx0qWHegZ5OoOQ%3D%3D&alr=yes&cpn=osLmMz8nclKtLNYQ&cver=1.20221019.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=uG&mm=29&mn=sn-5go7ynld&ms=rdu&mt=1666795766&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhANqRDOGni_5P9X8SVjP-SlwEHoUcOQuMrCtHftGWUN65AiEAib2ywLr5zlSmXpJSQumNbqNhat_4IyuP39zKRI2sIRw%3D&range=0-205516&rn=3&rbuf=0&pot=D4dDvNUd8NiKh3i4Igk0mDmX4PM2oUhdd0dNDJBu1XP6SNawqXv6CGZG5LWKhwBsvzcWBfMCkbRs8hHcs7XqQaU5PHQ93l61q0vAna9xgKjdCbvgCYQ1Hwrd5hW2OOvQi1QvSI-kh3Y=
74.125.111.70200 OK 206 kB URL HTTP/1.1 rr1---sn-5go7ynld.googlevideo.com/videoplayback?expire=1666817652&ei=FEpZY9nKEMnKyAWFnqzQAg&ip=91.90.42.154&id=o-ADYrUrevoFCkIVshaLNBFuFXdZbOWdwfBG_C7N1FlmQo&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&pcm2=no&spc=yR2vp2y9_EhuQ1eijchfnSEBGuBdtuM&vprv=1&mime=video%2Fwebm&ns=pxHmKXolZpQ_VaouecO-uw4I&gir=yes&clen=345688997&dur=3658.188&lmt=1540924594773186&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5432432&n=dZQIQm-zvZRP_A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cpcm2%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIId9RaoNc3MiUmnHcSBzeOi-9Em9tVDX_FpWjjF280dAiA1cFpN5NbZHxOBQScA7qiBZpdvwHlwrx0qWHegZ5OoOQ%3D%3D&alr=yes&cpn=osLmMz8nclKtLNYQ&cver=1.20221019.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=uG&mm=29&mn=sn-5go7ynld&ms=rdu&mt=1666795766&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhANqRDOGni_5P9X8SVjP-SlwEHoUcOQuMrCtHftGWUN65AiEAib2ywLr5zlSmXpJSQumNbqNhat_4IyuP39zKRI2sIRw%3D&range=0-205516&rn=3&rbuf=0&pot=D4dDvNUd8NiKh3i4Igk0mDmX4PM2oUhdd0dNDJBu1XP6SNawqXv6CGZG5LWKhwBsvzcWBfMCkbRs8hHcs7XqQaU5PHQ93l61q0vAna9xgKjdCbvgCYQ1Hwrd5hW2OOvQi1QvSI-kh3Y=
IP 74.125.111.70:0
File type WebM\012- EBML file, creator webmB\20\012- data
Size 206 kB (205517 bytes)
Hash 67bd3ed68a302ea1dbe738a3b3e90988
63e642a44f28b9f07ce9fc6238c2641513cabeb6
28b367f23d796302e90db8e2b113cb7a1bb4ccb192975b19f2f5a75f99c9161d
GET /videoplayback?expire=1666817652&ei=FEpZY9nKEMnKyAWFnqzQAg&ip=91.90.42.154&id=o-ADYrUrevoFCkIVshaLNBFuFXdZbOWdwfBG_C7N1FlmQo&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&pcm2=no&spc=yR2vp2y9_EhuQ1eijchfnSEBGuBdtuM&vprv=1&mime=video%2Fwebm&ns=pxHmKXolZpQ_VaouecO-uw4I&gir=yes&clen=345688997&dur=3658.188&lmt=1540924594773186&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5432432&n=dZQIQm-zvZRP_A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cpcm2%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIId9RaoNc3MiUmnHcSBzeOi-9Em9tVDX_FpWjjF280dAiA1cFpN5NbZHxOBQScA7qiBZpdvwHlwrx0qWHegZ5OoOQ%3D%3D&alr=yes&cpn=osLmMz8nclKtLNYQ&cver=1.20221019.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=uG&mm=29&mn=sn-5go7ynld&ms=rdu&mt=1666795766&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhANqRDOGni_5P9X8SVjP-SlwEHoUcOQuMrCtHftGWUN65AiEAib2ywLr5zlSmXpJSQumNbqNhat_4IyuP39zKRI2sIRw%3D&range=0-205516&rn=3&rbuf=0&pot=D4dDvNUd8NiKh3i4Igk0mDmX4PM2oUhdd0dNDJBu1XP6SNawqXv6CGZG5LWKhwBsvzcWBfMCkbRs8hHcs7XqQaU5PHQ93l61q0vAna9xgKjdCbvgCYQ1Hwrd5hW2OOvQi1QvSI-kh3Y= HTTP/1.1
Host: rr1---sn-5go7ynld.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Tue, 30 Oct 2018 18:36:34 GMT
Content-Type: video/webm
Date: Wed, 26 Oct 2022 14:54:12 GMT
Expires: Wed, 26 Oct 2022 14:54:12 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 205517
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 406c51e29e5a60a3b0c4b7e3a23e2f83
9893a37241792f39bdd795667146da49926e2e74
60a2726db5ed57d3f7c1ed370ba9aaaa5adaf86a62a88a601c46b608b3694a3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 14:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F710265b5-7594-45dd-ae3b-49cf84887c51.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F710265b5-7594-45dd-ae3b-49cf84887c51.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 656b64fb178a96cdeab7d54d0d3df5ba
f628269fc4ba16b1c4b11a8bc965a7dba93755cb
eb1126cfc2a686ea8d845a4898d904a133ff3284578f3a42a45fe01138df6c8c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F710265b5-7594-45dd-ae3b-49cf84887c51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7971
x-amzn-requestid: d7e1e331-09cc-4bdd-83a3-594b65e50d79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alK-TEWXIAMFoCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358585b-6e2c04ed0d36eea85de94a22;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:42:51 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: b89C7sl-8jR1VviZlenbR1NYN96IhBfbU44KhRuy5oT2Db1NbFZqvQ==
via: 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 22:11:46 GMT
age: 60152
etag: "f628269fc4ba16b1c4b11a8bc965a7dba93755cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2