pevlaku.al/
192.185.20.30302 Found 0 B IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sat, 07 Jan 2023 18:41:15 GMT
Server: nginx/1.23.2
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Vary: Accept-Language
X-Redirect-By: Polylang
Location: http://pevlaku.al/en/home-en/
X-Server-Cache: true
X-Proxy-Cache: MISS
Set-Cookie: pll_language=en; expires=Sun, 07-Jan-2024 18:41:15 GMT; Max-Age=31536000; path=/; SameSite=Lax
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b782882bdabaf3b08e64120922b4a4b7
2035ed7fc9fb5b6ee9715601ba43de5f94d0c0e9
3fe7d1a9a55b86ec25d02634749ccfae11f3477033ba8cd7ac4131b7948ba619
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FE7D1A9A55B86EC25D02634749CCFAE11F3477033BA8CD7AC4131B7948BA619"
Last-Modified: Sat, 07 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17041
Expires: Sat, 07 Jan 2023 23:25:16 GMT
Date: Sat, 07 Jan 2023 18:41:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 516b9d6951b09439a51d5284994ed92f
5c78edb38bae36caa8e2db8ed6635a32e46c91dd
eaaf4ebc59d2a06d02b552154c5adb7c713ffc4a7f5caabcff1c2b4cd6ec5c7b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EAAF4EBC59D2A06D02B552154C5ADB7C713FFC4A7F5CAABCFF1C2B4CD6EC5C7B"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20011
Expires: Sun, 08 Jan 2023 00:14:46 GMT
Date: Sat, 07 Jan 2023 18:41:15 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 07 Jan 2023 17:48:08 GMT
content-type: application/json
age: 3187
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 600f7ba6e1a6fbbd176cd2df19b1e4d9
cdd72b25fd91ee980aba193b12e890096e4fe852
860214860947dfbe26099f018747154823b175fceb2821a390cc655da191a6d0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "860214860947DFBE26099F018747154823B175FCEB2821A390CC655DA191A6D0"
Last-Modified: Thu, 05 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16579
Expires: Sat, 07 Jan 2023 23:17:34 GMT
Date: Sat, 07 Jan 2023 18:41:15 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ZtEWtUQXKZIT72DtTWDu1CDN+WIr67nmB5WVPAX90i2XJmsW+eJc6aMnlarfz7XGLwZKLv44q9M=
x-amz-request-id: 55BKTPJ69YDR42Z5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 07 Jan 2023 18:00:30 GMT
age: 2445
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 07 Jan 2023 18:41:15 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 07 Jan 2023 18:33:40 GMT
age: 456
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8589b6a84dd5a09ec546aff38bbd2515
1c3a3d8a69ae7a3ebda64292caf0e0f5968e81f7
f013da155203f0509d56e8174c2ae5ed23aad413b4391f276efd388519743b17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1631
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:16 GMT
Last-Modified: Sat, 07 Jan 2023 18:14:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
pevlaku.al/en/home-en/
192.185.20.30200 OK 30 kB IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (27463)
Hash 5a69476cf3cae4cd74019929f3781840
650286b747d67e37dd6c7afbcebff09179add795
1af51983ed0af5fcd8c94905b01d724a48c8a260ddaff8ec7027c4522b7ee654
Analyzer Verdict Alert fortinet Phishing
GET /en/home-en/ HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: pll_language=en
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:16 GMT
Server: nginx/1.23.2
Content-Type: text/html; charset=UTF-8
Link: <https://pevlaku.al/wp-json/>; rel="https://api.w.org/", <https://pevlaku.al/wp-json/wp/v2/pages/1898>; rel="alternate"; type="application/json", <https://pevlaku.al/>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
X-Server-Cache: false
Transfer-Encoding: chunked
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 63bccc1f66ce9e92e4b40dfb3d397e96
b256695f795919c1fa3d0de461cf4d44fb7573f3
739ed63c77b8f2f8ae1e929d2e6ce784986ea0d3230d2a65cc9f733837c8a581
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pevlaku.al/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.3
192.185.20.30200 OK 31 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.3
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65497)
Hash 991b001927d6c2c66c7d79ed57eeca6c
c439b62a86e9c8f449dd748028c5e8b3a4c57c3d
2ec3f646043a93bd442ba6ee86df6abed4234f9825cdbbc0b758bfb7e58c37dd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.3 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:16 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css
push.services.mozilla.com/
52.38.186.64101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.186.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VUfmxjGuuht8asoAPmaZ9Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Vv8AtlX760ZX8/6e8do2/gMA9EQ=
pevlaku.al/wp-content/themes/astra/assets/css/minified/style.min.css?ver=1.8.6
192.185.20.30200 OK 21 kB URL HTTP/1.1 pevlaku.al/wp-content/themes/astra/assets/css/minified/style.min.css?ver=1.8.6
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (63177)
Hash e83a91eb98d0e7d0ce58e4d4ee66d9cd
36aa023663abe322d7cc377da487541d18cecfff
19a9407fa8aba9edba936423deb9bcfc5b7f3da0709a7e0b63a29051a72656e7
GET /wp-content/themes/astra/assets/css/minified/style.min.css?ver=1.8.6 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:16 GMT
Server: Apache
Last-Modified: Sat, 22 Jun 2019 09:16:44 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css
pevlaku.al/wp-content/uploads/elementor/css/post-2373.css?ver=1638874626
192.185.20.30200 OK 347 B URL HTTP/1.1 pevlaku.al/wp-content/uploads/elementor/css/post-2373.css?ver=1638874626
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1012), with no line terminators
Hash 1e9a6fe768f865175e2596bec9920c20
4075fa7a7d23e0581e46495548efa5059455644c
88e256ed449136e7dad7b8e76ef4ce4343dc36d95aab7b43f319317c5b9b91e3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2373.css?ver=1638874626 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:16 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 07 Dec 2021 10:57:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 347
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 623e85ff33837eb6c59e11ae2759237a
cea1948490802e652e7f6678dc76694e0d6ab61a
1fb30f3579d3277435c860f472008bea3680db1202d838ad4669d943ec88ba65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pevlaku.al/wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.4.7
192.185.20.30200 OK 723 B URL HTTP/1.1 pevlaku.al/wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.4.7
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 5829c8afa60f346dcfbc27eeda50e79e
37bfa3a3264d5f644d25dadae95bca8bb0a4ab4e
bc6526ea1fcf2e5fe40fb039cf209766a98418be1ace50684f702a1ae8fd4b14
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.4.7 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:16 GMT
Server: Apache
Last-Modified: Tue, 07 Dec 2021 10:56:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 723
Content-Type: text/css
pevlaku.al/wp-content/uploads/elementor/css/global.css?ver=1638874860
192.185.20.30200 OK 3.7 kB URL HTTP/1.1 pevlaku.al/wp-content/uploads/elementor/css/global.css?ver=1638874860
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (44246), with no line terminators
Hash 178a2f6009cfb66b63ccbb97791e6e64
ed1ec39be1e49d010f410fdaf28f380b890c58ae
15a38510a68e7cc0d5da072601bb5e97212e6a9926814df59785081fdb169f59
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/global.css?ver=1638874860 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:16 GMT
Server: Apache
Last-Modified: Tue, 07 Dec 2021 11:01:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3687
Content-Type: text/css
pevlaku.al/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
192.185.20.30200 OK 7.1 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30837)
Hash 09b8b6cbc1b0486aa66786792e8c6984
73a077a16ce58b6b5c7169a61989f7421a913936
a8e462cb54773ddf7cd4fdc03715c0cd12a537c633c026635d5810b621246db6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:16 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7112
Content-Type: text/css
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 00aa09b8ec53aead48b49796dd6c8808
6d227ccb0b4465370b62ce6d256cebd8ddc886f1
4c46e5bca3772b98d82dd4368593798f24bab32b546a98d87d88db2d8a5fc927
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C46E5BCA3772B98D82DD4368593798F24BAB32B546A98D87D88DB2D8A5FC927"
Last-Modified: Sat, 07 Jan 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21549
Expires: Sun, 08 Jan 2023 00:40:25 GMT
Date: Sat, 07 Jan 2023 18:41:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 00aa09b8ec53aead48b49796dd6c8808
6d227ccb0b4465370b62ce6d256cebd8ddc886f1
4c46e5bca3772b98d82dd4368593798f24bab32b546a98d87d88db2d8a5fc927
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C46E5BCA3772B98D82DD4368593798F24BAB32B546A98D87D88DB2D8A5FC927"
Last-Modified: Sat, 07 Jan 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Sun, 08 Jan 2023 00:40:28 GMT
Date: Sat, 07 Jan 2023 18:41:16 GMT
Connection: keep-alive
pevlaku.al/wp-content/plugins/ultimate-elementor/assets/min-css/uael-frontend.min.css?ver=1.6.0
192.185.20.30200 OK 36 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/ultimate-elementor/assets/min-css/uael-frontend.min.css?ver=1.6.0
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5951e2693c190c90fa6a0c1161af8104
642fcd0c4ee8e9f7a891cfac25d557e70bf23308
22ad0c785df6cd49c8bbe7994d46a2023a5f5127f46ec02d6381155983f0aedf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-elementor/assets/min-css/uael-frontend.min.css?ver=1.6.0 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:16 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sun, 30 Jun 2019 19:49:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css
pevlaku.al/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
192.185.20.30200 OK 4.6 kB URL HTTP/1.1 pevlaku.al/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:16 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 07 Dec 2021 10:55:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4618
Content-Type: application/javascript
pevlaku.al/wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.4.7
192.185.20.30200 OK 1.9 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.4.7
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 622fe55633685d1ecbf4a8a63ea59b95
9743d34a5fd5406863993568196dfcfd327895ed
e644570caba3ac383358030f0919c21428862e0ee19ca24b56c8c26846e79a8e
GET /wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.4.7 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:16 GMT
Server: Apache
Last-Modified: Tue, 07 Dec 2021 10:56:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1904
Content-Type: application/javascript
pevlaku.al/wp-content/uploads/elementor/css/post-1898.css?ver=1645447304
192.185.20.30200 OK 6.9 kB URL HTTP/1.1 pevlaku.al/wp-content/uploads/elementor/css/post-1898.css?ver=1645447304
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (39594), with no line terminators
Hash 16cf4fa416cbe918832d0c7d16ab3ef9
26ab038124830658fa64e582a5bf29026ff237ee
1956a2710c03754c0c588ae237453f58494cd0f3c21680fc4e7c2c4fc2e86150
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-1898.css?ver=1645447304 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:16 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 21 Feb 2022 12:41:44 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6946
Content-Type: text/css
pevlaku.al/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
192.185.20.30200 OK 5.2 kB URL HTTP/1.1 pevlaku.al/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15224)
Hash 00af0ddf324f69fcb25f0d2e5d08910a
df0379ab0e1b2902957c8aba77f89d88e1239b59
f0a06ed3b8d3917b358def04d87668001cd1c6da31a5cb4bb452313feb64a2a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.6 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:16 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 07 Dec 2021 10:55:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5243
Content-Type: application/javascript
pevlaku.al/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
192.185.20.30200 OK 4.0 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19082)
Hash 1a51c193793d105fc6aaddfc3bc05349
238e509973276daa145be273af1aba0fbb3801bf
69e8578f795564941f826ab314ab57c83da7fb6ca7d9221c8df5f1e9081ae6e3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3978
Content-Type: text/css
pevlaku.al/wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=1.8.6
192.185.20.30200 OK 468 B URL HTTP/1.1 pevlaku.al/wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=1.8.6
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3412), with no line terminators
Hash f88a6a529851c8ed1ffe2bd83219e490
597ff167b702900ee4473e31e390808b8de95664
ae20c6ea52a0534fdda58a7ae13839ac66194434406e00a3bb5f4538f9909886
GET /wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=1.8.6 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Sat, 22 Jun 2019 09:16:44 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 468
Content-Type: text/css
pevlaku.al/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
192.185.20.30200 OK 39 kB URL HTTP/1.1 pevlaku.al/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash feb933ceca72e1d76b471ed9db278b0d
6179e8f9c9876a6c4df5e3138e9f8ee2ac25bcd1
9a525fa92f98fd5ac754d60ea6f3676bcaa3870dd9bf057c8c668399922c9bd0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:16 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 07 Dec 2021 10:55:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
pevlaku.al/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.3
192.185.20.30200 OK 1.6 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.3
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13766)
Hash 45e20e40be9985874d571a0fe7f52d73
beb4cf5c867312a85a7b4b1fc60208bc378adfb8
7b8c2d9547f245f1b47a81ab2eb53d24cd421fbb3963da10702cefa7bd848ad8
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.3 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1608
Content-Type: text/css
pevlaku.al/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.3
192.185.20.30200 OK 3.0 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.3
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10019)
Hash c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.3 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2997
Content-Type: text/css
pevlaku.al/wp-content/uploads/2019/07/IMG_3967-150x150.jpg
192.185.20.30200 OK 5.2 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/07/IMG_3967-150x150.jpg
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 186d67c703f1a03a5d752dec32c79002
465fef6c16be899f0e95c41acec776440c78e981
62bd872423dfc5a380ba48b584c6e17a2c291ca8401bda2f4248e4c137909dd9
GET /wp-content/uploads/2019/07/IMG_3967-150x150.jpg HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 20 Jul 2019 03:09:00 GMT
accept-ranges: bytes
content-length: 5227
content-type: image/jpeg
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
192.185.20.30200 OK 15 kB URL HTTP/1.1 pevlaku.al/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 6ebc7a4d773cb1f29a93f605933fba76
b113ca39afc5fd44cbc06dca58945bb5e9fb771e
7a12133f8cb48c1b5b4631ee9e9a0eebe36bbf2bbe1eb792b0f9fc630c18bd76
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.6 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Tue, 07 Dec 2021 10:55:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14560
Content-Type: text/css
pevlaku.al/wp-content/themes/astra/assets/js/minified/style.min.js?ver=1.8.6
192.185.20.30200 OK 3.5 kB URL HTTP/1.1 pevlaku.al/wp-content/themes/astra/assets/js/minified/style.min.js?ver=1.8.6
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10264), with no line terminators
Hash 1ca7b67cdbf148e2bec3395ac0d4bdd6
9de73d6621c1872605f8087091deca89eb6c598a
5bd1a1214c449925a0ffe3e2cb7b454e93c943456c9346a9171543475160af09
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/js/minified/style.min.js?ver=1.8.6 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Sat, 22 Jun 2019 09:16:44 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3486
Content-Type: application/javascript
pevlaku.al/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
192.185.20.30200 OK 736 B URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1801), with no line terminators
Hash ae098a17e8889ff188a7a1ca4545c729
250400844f4e830503e2e9b8642fb00bc337eb62
0f5aecfe5c23d3149b592488ac69726074ee450de920b0e7ecf3071c1acd0771
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 736
Content-Type: application/javascript
pevlaku.al/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.3
192.185.20.30200 OK 2.3 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.3
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4921)
Hash 81f5a09275fd7706db96f0c713845671
5001205c96421643ced2980c71aaac868459859d
a3a4e6ffd44ff39605d0f2b45a55d178ca1241bcd364d8c13091d71be0c2cb76
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.3 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2314
Content-Type: application/javascript
pevlaku.al/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.3
192.185.20.30200 OK 5.7 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.3
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14238)
Hash b86a6723529a6b9056c3f6af46959565
01deea34facad6127e0ac241cd41b4e162a28074
145f07e0da14df6edd39374060d255727a47ceb817d67abd6d38a2119e5aa340
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.3 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5676
Content-Type: application/javascript
pevlaku.al/wp-content/uploads/2019/07/Capture-150x150.png
192.185.20.30200 OK 37 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/07/Capture-150x150.png
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 7a2551fbe059dabf811ab1cce124eb4b
9d96eef00c5ad45dbedc901864ce5ba652cba9d3
25c12d99ed88b5b872b2dcef5d33cc382bef7dd1f5f7351fdb6cf7b12f88f73f
GET /wp-content/uploads/2019/07/Capture-150x150.png HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 20 Jul 2019 03:23:10 GMT
accept-ranges: bytes
content-length: 37193
content-type: image/png
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-includes/js/wp-embed.min.js?ver=5.8.6
192.185.20.30200 OK 777 B URL HTTP/1.1 pevlaku.al/wp-includes/js/wp-embed.min.js?ver=5.8.6
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1391)
Hash 06ece4d01ee88297957c9f4cdcaa4df5
2b3321654a8ead1e1493eac9b5f1fdfb65e2037f
0b17eb6ab02e69f50ac52ca157375bd69853ae4f4796eb48a35eb4a12fc7af8b
GET /wp-includes/js/wp-embed.min.js?ver=5.8.6 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Tue, 07 Dec 2021 10:55:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 777
Content-Type: application/javascript
pevlaku.al/wp-content/uploads/astra-addon/astra-addon-62137ef07a70d9-92991319.js?ver=1.8.7
192.185.20.30200 OK 7.8 kB URL HTTP/2 pevlaku.al/wp-content/uploads/astra-addon/astra-addon-62137ef07a70d9-92991319.js?ver=1.8.7
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (25263), with no line terminators
Hash 8516813510a37c17fe1ee0076b9df1a8
e21402c03f520c62c1b7fd33f14e6d8189c87c7c
b157169271a1612a6b45b25d69a053c4fbed93f3dd276d0fd372084a1be21f06
GET /wp-content/uploads/astra-addon/astra-addon-62137ef07a70d9-92991319.js?ver=1.8.7 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 21 Feb 2022 12:00:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7782
content-type: application/javascript
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2019/07/IMG_3940-150x150.jpg
192.185.20.30200 OK 5.9 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/07/IMG_3940-150x150.jpg
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash b3ecd27fb5d6fc859cb92a208dad74eb
6c7b458f4d72d7539883167233704de6704dad2c
94a1dba9b3a22253aa8608a7103c1e44b105a05006dee5fd7b974270bf197043
GET /wp-content/uploads/2019/07/IMG_3940-150x150.jpg HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 20 Jul 2019 03:07:42 GMT
accept-ranges: bytes
content-length: 5909
content-type: image/jpeg
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
192.185.20.30200 OK 3.7 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3747
Content-Type: application/javascript
pevlaku.al/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
192.185.20.30200 OK 8.2 kB URL HTTP/1.1 pevlaku.al/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7973)
Hash 6e3b0317803aa9f226979ad7a7e77593
c95b4f532fd03f3754bf63139a57aab65fbe8a25
84520e8f7a292cb992fa9c62932245f598c6fa043fd4e19eadb6ad9a767dca6f
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Tue, 07 Dec 2021 10:55:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8223
Content-Type: application/javascript
pevlaku.al/wp-content/uploads/2019/06/1-150x150.jpg
192.185.20.30200 OK 8.8 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/06/1-150x150.jpg
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 45a0dd5d9b8260e10be1d22a5bd9bbb2
9fa00b402cea31a3d4fb5b0128aa1ef22d77e8a0
c60140618604f174f165ac192e113b3738a2a6fce2e057df55aa253f22a5dc74
GET /wp-content/uploads/2019/06/1-150x150.jpg HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Jun 2019 07:28:42 GMT
accept-ranges: bytes
content-length: 8824
content-type: image/jpeg
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
192.185.20.30200 OK 47 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65280)
Hash 6d3f8ba511b26a2b5e2555673e996be4
d5a3c1ed68beeeafc4da01d71a6b7ce0f19f985e
955d1e858ec91ca4b3f5c845421692afc83dcbca3dd52577f746e18278f45315
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
pevlaku.al/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
192.185.20.30200 OK 4.2 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10544)
Hash 552977febe8ef2c71b0806dfaefd2552
01baebfd09383c5d44f066e7b5540fcca6a5eae4
7895907f5a4f54c08c4705b1a194e21c556d68027c5e0a70d4c05b377e712b1d
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4200
Content-Type: application/javascript
pevlaku.al/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.3
192.185.20.30200 OK 15 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.3
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (37702)
Hash 3a70b112a41dd734c1190912d09ded2b
378e29d279fbf0abeeaecaa605e4104cbe9094c3
8d7b9da7276de97df7f15301c051cb4bf0090a0d38210e707aafc5ee172f9df0
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.3 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14706
Content-Type: application/javascript
pevlaku.al/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.6.3
192.185.20.30200 OK 17 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.6.3
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43353)
Hash 40b76abcdf839d3fac5fe68a06c885eb
d516e72be4c6dd97cc49005285d96e02e112187c
8e53f3abf68a0d709e18ae3d8aca645ca0bcd29eeeac767bee38f69c81429a6f
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.6.3 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16889
Content-Type: application/javascript
pevlaku.al/wp-includes/js/underscore.min.js?ver=1.13.1
192.185.20.30200 OK 8.3 kB URL HTTP/1.1 pevlaku.al/wp-includes/js/underscore.min.js?ver=1.13.1
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19041)
Hash e45e83fd86a608f36eed8d8178c0c218
84cbfc05d78d37a27374bb30ac9b933a8d4ce3e6
0e64084fe2aa346fffd15ce84b27ac3a62f7b8e555f563a4d919766a777f5262
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.13.1 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Tue, 07 Dec 2021 10:55:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8329
Content-Type: application/javascript
pevlaku.al/wp-content/uploads/astra-addon/astra-addon-62137ef07a0817-57235931.css?ver=1.8.7
192.185.20.30200 OK 9.1 kB URL HTTP/2 pevlaku.al/wp-content/uploads/astra-addon/astra-addon-62137ef07a0817-57235931.css?ver=1.8.7
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (61293), with no line terminators
Hash 5ccdabbe02ae0ac190d5fb1789b75a06
bbde8566ff9fa9a09ac88d4ab132025eb5570461
691eff47c2673cb6582aeda7a703fc6cc32ef1ab3b652876db511b4c8bb88ad7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/astra-addon/astra-addon-62137ef07a0817-57235931.css?ver=1.8.7 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 21 Feb 2022 12:00:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9061
content-type: text/css
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2019/06/8-150x150.png
192.185.20.30200 OK 50 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/06/8-150x150.png
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 0352f1d60b5cddd7254f7e6b600bb8ac
bd5959e7e86dda9a8280493c9c3592e3142b6dc2
34c334e275e86c7b26e85c1a7e391f95488fb7e6c16fb83b253396bd75501443
GET /wp-content/uploads/2019/06/8-150x150.png HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Jun 2019 02:24:44 GMT
accept-ranges: bytes
content-length: 49507
content-type: image/png
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2019/06/4-cut-150x150.jpg
192.185.20.30200 OK 5.9 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/06/4-cut-150x150.jpg
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 97d84253941d8db22438c690ca24a6ce
6bf6040746319a8525f3c7b7731cd7a383295eca
23170b52f3a9c41cb572719bcc031fe21cbef3aa4ac3105b7035ab07374694ad
GET /wp-content/uploads/2019/06/4-cut-150x150.jpg HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Jun 2019 05:09:38 GMT
accept-ranges: bytes
content-length: 5903
content-type: image/jpeg
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-includes/js/wp-util.min.js?ver=5.8.6
192.185.20.30200 OK 709 B URL HTTP/1.1 pevlaku.al/wp-includes/js/wp-util.min.js?ver=5.8.6
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1305)
Hash e9edb7bac979409cf7dbc48d7ab8aca7
ed3f941a8fe41e3994a3ca5e620219328628f532
2a0742cad9937c742b2f51c1ea2ae48359ce8d88d8b56f6d8910c0a267d631b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=5.8.6 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Tue, 07 Dec 2021 10:55:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 709
Content-Type: application/javascript
pevlaku.al/wp-content/uploads/2019/07/WhatsApp-Image-2019-05-30-at-17.11.22-150x150.jpeg
192.185.20.30200 OK 6.0 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/07/WhatsApp-Image-2019-05-30-at-17.11.22-150x150.jpeg
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 82b179d3b4b96b8f050cea35ac7ae043
66be8fc48b4145bc69b703ee814821f33b15ce3a
c831fb22dbc3f31601fa30971b5fcd8e7d2ba930408d47296a4338e74a037195
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/07/WhatsApp-Image-2019-05-30-at-17.11.22-150x150.jpeg HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
content-type: image/jpeg
content-length: 5975
last-modified: Sat, 20 Jul 2019 03:34:56 GMT
accept-ranges: bytes
x-server-cache: true
x-proxy-cache: MISS
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2019/07/WhatsApp-Image-2019-05-30-at-17.07.14-150x150.jpeg
192.185.20.30200 OK 5.6 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/07/WhatsApp-Image-2019-05-30-at-17.07.14-150x150.jpeg
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 9ed9e682fa3e6cc8700058dc39c9a92a
a2c5123b00c409a29d792edc619121c04e4aa2e5
8dbeb36937c4cdb6570fd4803ec838af96659fc76bf784c12bb20ee2d4704d22
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/07/WhatsApp-Image-2019-05-30-at-17.07.14-150x150.jpeg HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
content-type: image/jpeg
content-length: 5585
last-modified: Sat, 20 Jul 2019 03:34:46 GMT
accept-ranges: bytes
x-server-cache: true
x-proxy-cache: MISS
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2019/06/85878420-min512x288-150x150.jpg
192.185.20.30200 OK 6.8 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/06/85878420-min512x288-150x150.jpg
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash c0cfb8ed9f34729df026c19d854b4d29
c3147484168346f2a7b46adc44c37b9fd66e53bc
998bed69f3b55bb25e6620adf9c8fb5486b34edb8b7e6e982d4cd23389b9bf93
GET /wp-content/uploads/2019/06/85878420-min512x288-150x150.jpg HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 22 Jun 2019 08:54:10 GMT
accept-ranges: bytes
content-length: 6843
content-type: image/jpeg
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2019/07/WhatsApp-Image-2019-05-30-at-16.57.43-1-150x150.jpeg
192.185.20.30200 OK 6.6 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/07/WhatsApp-Image-2019-05-30-at-16.57.43-1-150x150.jpeg
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash cc8572db2863812ef9f42f7d9b3005e5
478eed7b177368bb5886841b46b6212de4408790
0f46acefad56974c484293b62ac7230bb1c5476d6f48f0f2f0b4fa7b8d26f87f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/07/WhatsApp-Image-2019-05-30-at-16.57.43-1-150x150.jpeg HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
content-type: image/jpeg
content-length: 6627
last-modified: Sat, 20 Jul 2019 03:35:00 GMT
accept-ranges: bytes
x-server-cache: true
x-proxy-cache: MISS
X-Firefox-Spdy: h2
pevlaku.al/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.1.2
192.185.20.30200 OK 374 B URL HTTP/1.1 pevlaku.al/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.1.2
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (754), with no line terminators
Hash ef785f463505633971eae5c08ad626d4
624e22257f386801822229db3a4bbd2e24b25e2f
b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.1.2 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Tue, 07 Dec 2021 10:56:19 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 374
Content-Type: application/javascript
pevlaku.al/wp-content/uploads/2019/06/1-edit-1-150x150.jpg
192.185.20.30200 OK 8.4 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/06/1-edit-1-150x150.jpg
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 2390b410d0e7f51146b7ff32cc16cc0e
7e9362612cbe911b2b332791ea2e3b72c4cdf801
753ab9f21068ab36f0487ac166d65a8f9d705da8b1cd19eefbc4593e25ed32f7
GET /wp-content/uploads/2019/06/1-edit-1-150x150.jpg HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Jun 2019 00:55:54 GMT
accept-ranges: bytes
content-length: 8383
content-type: image/jpeg
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2019/07/logo-porto-bardhe-140x63.png
192.185.20.30200 OK 8.0 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/07/logo-porto-bardhe-140x63.png
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 140 x 63, 8-bit/color RGBA, non-interlaced\012- data
Hash 74cff4f7ce3edf48889e63e8db0a4d01
6366823894861c9ad6b4d794a16e115f11649279
164ab52a5276322934b856bdb874738e1515bd0021c51e6d819ccbcd15640e91
GET /wp-content/uploads/2019/07/logo-porto-bardhe-140x63.png HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 24 Feb 2020 16:54:34 GMT
accept-ranges: bytes
content-length: 7993
content-type: image/png
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2019/07/WhatsApp-Image-2019-05-30-at-17.10.28-150x150.jpeg
192.185.20.30200 OK 7.9 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/07/WhatsApp-Image-2019-05-30-at-17.10.28-150x150.jpeg
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 538b5cb6295af800a8bc8f91fd51cda6
cad7bcac5a033e07ac6bff31d8b5e09eb12f065d
09b6b3ecb2114277a144bafdce5e3ddf1f014e73adc9a6e56311fac3a1845ab4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/07/WhatsApp-Image-2019-05-30-at-17.10.28-150x150.jpeg HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
content-type: image/jpeg
content-length: 7926
last-modified: Sat, 20 Jul 2019 03:34:52 GMT
accept-ranges: bytes
x-server-cache: true
x-proxy-cache: MISS
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2019/06/5-1-150x150.png
192.185.20.30200 OK 58 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/06/5-1-150x150.png
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 462388406f084a9b4b1ad3c74c3b99eb
1890ea44e44c6ea0ecfae0d3735b500cc89e93e9
9e17f99af9ddbbba77fdaa9765df0b1c79af09f723b3756313bf02f4d811fbe2
GET /wp-content/uploads/2019/06/5-1-150x150.png HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Jun 2019 06:24:22 GMT
accept-ranges: bytes
content-length: 57673
content-type: image/png
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2019/06/Screenshot-14-2-150x150.png
192.185.20.30200 OK 60 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/06/Screenshot-14-2-150x150.png
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash f6ae77f966f36c786910a8c6fbf072e9
77d5bdd43e5001d05bbb1402a1c0040ed13d58f5
ea358762161630550bf979b8ffb6a26c7944c4dc11e7d0778a64336e62959cbf
GET /wp-content/uploads/2019/06/Screenshot-14-2-150x150.png HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 05 Jun 2019 00:38:54 GMT
accept-ranges: bytes
content-length: 59866
content-type: image/png
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/elementor/thumbs/Untitled-2-2-o8u7i4wradnou58a9mbom6bff5mmku9zyaqcz3jgu4.png
192.185.20.30200 OK 131 kB URL HTTP/2 pevlaku.al/wp-content/uploads/elementor/thumbs/Untitled-2-2-o8u7i4wradnou58a9mbom6bff5mmku9zyaqcz3jgu4.png
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 550 x 550, 8-bit/color RGBA, non-interlaced\012- data
Size 131 kB (131391 bytes)
Hash be2b7067a2d8b988ee6a3e75ccc23dc7
9df41e24ce4d55b77f881cd85eb7bdaed11392e5
6df1d4ed93a18eeb4ae687c968a2f6b7f8330a6b9baac1c527b8c51a501fd3d8
GET /wp-content/uploads/elementor/thumbs/Untitled-2-2-o8u7i4wradnou58a9mbom6bff5mmku9zyaqcz3jgu4.png HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 26 Feb 2020 14:14:26 GMT
accept-ranges: bytes
content-length: 131391
content-type: image/png
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 910d902590c4dce2c5fde148d455a94c
05617b6a2fd1a7eb4fcb098a7ce48011d3f835bc
3bfd7cff0474a36458748e4cc6dfa647fdd7bd8b4fa792079042a04c7dffe0b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.google.com/maps?q=RRUGA%20MUZAKET%20TIRANE&t=m&z=10&output=embed&iwloc=near
142.250.74.46301 Moved Permanently 289 B URL HTTP/2 maps.google.com/maps?q=RRUGA%20MUZAKET%20TIRANE&t=m&z=10&output=embed&iwloc=near
IP 142.250.74.46:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 6c7124e805655871ae8d9a2f2482b7e8
4e6162098835dbdde385368912b532f9b01fc5f4
26a6c294e0299427d98060e20271de6fa428144cb3af63721253c4b23ea287e0
GET /maps?q=RRUGA%20MUZAKET%20TIRANE&t=m&z=10&output=embed&iwloc=near HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 07 Jan 2023 18:41:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sRRUGA+MUZAKET+TIRANE!5e0!6i10
content-type: text/html; charset=UTF-8
server: mafe
content-length: 289
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 294742535da40d02498d9e1c865d4014
99d45ec581ccba41915745f22da696aa9c5758ea
645f09beffda2d924626cedd5aa832a5a0e1b136ddf3fdc0b65fd9526f8b5531
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
142.250.74.35200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pevlaku.al
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:12 GMT
expires: Sat, 06 Jan 2024 13:33:12 GMT
cache-control: public, max-age=31536000
age: 104885
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 294742535da40d02498d9e1c865d4014
99d45ec581ccba41915745f22da696aa9c5758ea
645f09beffda2d924626cedd5aa832a5a0e1b136ddf3fdc0b65fd9526f8b5531
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
142.250.74.35200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 22504, version 1.0\012- data
Hash 1c6c65523675abc6fcd78e804325bd77
898d9808304dc157f5dcb18ca169ec6e2b96b3d7
08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
GET /s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pevlaku.al
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 03 Jan 2023 17:14:55 GMT
expires: Wed, 03 Jan 2024 17:14:55 GMT
cache-control: public, max-age=31536000
age: 350782
last-modified: Tue, 26 Apr 2022 16:04:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 294742535da40d02498d9e1c865d4014
99d45ec581ccba41915745f22da696aa9c5758ea
645f09beffda2d924626cedd5aa832a5a0e1b136ddf3fdc0b65fd9526f8b5531
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 294742535da40d02498d9e1c865d4014
99d45ec581ccba41915745f22da696aa9c5758ea
645f09beffda2d924626cedd5aa832a5a0e1b136ddf3fdc0b65fd9526f8b5531
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 294742535da40d02498d9e1c865d4014
99d45ec581ccba41915745f22da696aa9c5758ea
645f09beffda2d924626cedd5aa832a5a0e1b136ddf3fdc0b65fd9526f8b5531
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.35200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pevlaku.al
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:12 GMT
expires: Sat, 06 Jan 2024 13:33:12 GMT
cache-control: public, max-age=31536000
age: 104885
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u-w4BMUTPHjxsIPx-oPCI.woff2
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u-w4BMUTPHjxsIPx-oPCI.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 17072, version 1.0\012- data
Hash a049f4c6bcb907e3d451bdb388c8e86f
f6261c1401a8a0f31ae74fb9ef7ab6dfec3ef1b6
b19efe906c9b0345db45525ed83c76031644e39329a36d39badf5275bce363c2
GET /s/lato/v23/S6u-w4BMUTPHjxsIPx-oPCI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pevlaku.al
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 03 Jan 2023 19:58:39 GMT
expires: Wed, 03 Jan 2024 19:58:39 GMT
cache-control: public, max-age=31536000
age: 340958
last-modified: Tue, 26 Apr 2022 16:41:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u_w4BMUTPHjxsI9w2_Gwft.woff2
142.250.74.35200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u_w4BMUTPHjxsI9w2_Gwft.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 17728, version 1.0\012- data
Hash 9d09d1df90538b11770ec5f593b6d792
6e117eeeda54f443063becf094332b362e19abb8
a961366b4346f6078cc2f164d2c019f63b37e2693f6fc93a995048a98b25c083
GET /s/lato/v23/S6u_w4BMUTPHjxsI9w2_Gwft.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pevlaku.al
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 03 Jan 2023 19:14:32 GMT
expires: Wed, 03 Jan 2024 19:14:32 GMT
cache-control: public, max-age=31536000
age: 343605
last-modified: Tue, 26 Apr 2022 16:10:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pevlaku.al/wp-content/themes/astra/assets/fonts/astra.woff
192.185.20.30200 OK 3.3 kB URL HTTP/1.1 pevlaku.al/wp-content/themes/astra/assets/fonts/astra.woff
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 3304, version 1.0\012- data
Hash bfe0ed8503c926d68f58ed0408dfe0d0
0346d02d96ff7d2a0278bc10f4dfdf365c80eac3
ec7ef7aa5fd1e019f1c26193e95e46d481d4983673936a9dda086705ada6e3d5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/fonts/astra.woff HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://pevlaku.al/en/home-en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Sat, 22 Jun 2019 09:16:44 GMT
Accept-Ranges: bytes
Content-Length: 3304
Content-Type: font/woff
fonts.gstatic.com/s/lato/v23/S6u_w4BMUTPHjxsI5wq_Gwft.woff2
142.250.74.35200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u_w4BMUTPHjxsI5wq_Gwft.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 24448, version 1.0\012- data
Hash 865e46af816320c9f32234e8968558d0
6791e9f732fcbde0f375f84ccbc14c4ac72795a3
6c84348296ebe2e2a0830c3962eb02156419d9bc76371c2eadaf7329d827d550
GET /s/lato/v23/S6u_w4BMUTPHjxsI5wq_Gwft.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pevlaku.al
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24448
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 03 Jan 2023 17:19:31 GMT
expires: Wed, 03 Jan 2024 17:19:31 GMT
cache-control: public, max-age=31536000
age: 350506
last-modified: Tue, 26 Apr 2022 16:41:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 910d902590c4dce2c5fde148d455a94c
05617b6a2fd1a7eb4fcb098a7ce48011d3f835bc
3bfd7cff0474a36458748e4cc6dfa647fdd7bd8b4fa792079042a04c7dffe0b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 294742535da40d02498d9e1c865d4014
99d45ec581ccba41915745f22da696aa9c5758ea
645f09beffda2d924626cedd5aa832a5a0e1b136ddf3fdc0b65fd9526f8b5531
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 29bbb88937e291fb70ac7920c1e4eeb1
d95e6da4d4dc4c4e301ff073f057c417986099fe
f5b298d0f4129a8139623fef229a0cda537587b380837c81968f418f3fba8c69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pevlaku.al/wp-content/uploads/2019/06/BUILD-150x150.png
192.185.20.30200 OK 6.0 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/06/BUILD-150x150.png
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 523736d60acae6644b42f490037e9446
17c48c74b0129b5586f9f49e241c3ca8a68f6915
27faa7a95bbc7ef3a88671c1a34cd2ab1bc14a283012ba955324984726a4e18f
GET /wp-content/uploads/2019/06/BUILD-150x150.png HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Jun 2019 05:57:44 GMT
accept-ranges: bytes
content-length: 6002
content-type: image/png
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2019/06/konsulence-150x150.png
192.185.20.30200 OK 3.7 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/06/konsulence-150x150.png
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 24f01e8a07437a5db02a21ad2539b209
f7d84c50df88a22826d6c66de84c9b928016b2f8
ab8e8fe608033fc5377de9798443a54cd95ce0a3908a07d4420b7c1a19160ae8
GET /wp-content/uploads/2019/06/konsulence-150x150.png HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Jun 2019 05:58:56 GMT
accept-ranges: bytes
content-length: 3726
content-type: image/png
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2019/06/infrastrukture-150x150.png
192.185.20.30200 OK 6.4 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2019/06/infrastrukture-150x150.png
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash e600abe19ce031bbad82d7464a9662df
00c079ad5aa1ac3e47abad29fd35847be6e570ec
445de7d4ac374159016460220899ea8a472bd3f9ba7db3dbd1be2d884d5ee56e
GET /wp-content/uploads/2019/06/infrastrukture-150x150.png HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Jun 2019 05:49:38 GMT
accept-ranges: bytes
content-length: 6390
content-type: image/png
date: Sat, 07 Jan 2023 18:41:17 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2020/02/6.jpg
192.185.20.30200 OK 157 kB URL HTTP/1.1 pevlaku.al/wp-content/uploads/2020/02/6.jpg
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2020:02:26 21:44:01], baseline, precision 8, 1280x720, components 3\012- data
Size 157 kB (157275 bytes)
Hash d55e9e2c8cd3bf7afff7749bddf381da
7d8103aa81441faf12a70f7bf2f7f562c26aaec2
39608b96fe8b51f01bfdfeb03dad70da10946327e0e8d8ff86df995cdcfd1bd9
GET /wp-content/uploads/2020/02/6.jpg HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/wp-content/uploads/elementor/css/post-1898.css?ver=1645447304
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 20:44:53 GMT
Accept-Ranges: bytes
Content-Length: 157275
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17194
Expires: Sat, 07 Jan 2023 23:27:52 GMT
Date: Sat, 07 Jan 2023 18:41:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17194
Expires: Sat, 07 Jan 2023 23:27:52 GMT
Date: Sat, 07 Jan 2023 18:41:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17194
Expires: Sat, 07 Jan 2023 23:27:52 GMT
Date: Sat, 07 Jan 2023 18:41:18 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Lato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.8.6
142.250.74.106200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.8.6
IP 142.250.74.106:0
Hash 3893b337ca441e7d5f8433c87f79e0f5
9920bf02f227946bfab78e561f29581a7f55216d
3539d46ec883ccba3b8eb51d8b2452f8cbce5362d4d41c92ba53f268e80addc3
GET /css?family=Lato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.8.6 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 07 Jan 2023 18:41:16 GMT
date: Sat, 07 Jan 2023 18:41:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2020/02/6-1.jpg
192.185.20.30200 OK 58 kB URL HTTP/1.1 pevlaku.al/wp-content/uploads/2020/02/6-1.jpg
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2020:02:26 21:47:22], baseline, precision 8, 1280x720, components 3\012- data
Hash f3d01c187b89bd296f035989434a08a7
e067960e1f04785b37fa1b47f1640697b0553b38
315cf22b77f780a77f903e7f278365d27140120e7799a74a2b0bfd9e5924be52
GET /wp-content/uploads/2020/02/6-1.jpg HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pevlaku.al/wp-content/uploads/elementor/css/post-1898.css?ver=1645447304
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 26 Feb 2020 20:47:52 GMT
Accept-Ranges: bytes
Content-Length: 57827
Content-Type: image/jpeg
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb5ffe4f-5ae5-4938-b3ca-b004d549afe4.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb5ffe4f-5ae5-4938-b3ca-b004d549afe4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b068b261514833df29c3081c7681bc1e
d55b98ad8b8720a934ce41132d3e5821f7956511
e9852eb569b9f28d070ba51af9dc8a36698ed9b5afa771d123ce89391f9d7d00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb5ffe4f-5ae5-4938-b3ca-b004d549afe4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6801
x-amzn-requestid: 974e4e95-8a57-4d85-b587-aa37bab3faf6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eVxGDEf3IAMF52Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b89559-2984a4fb36910d535abe2856;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 21:40:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 1_FaLJqdAPcmO1By5BQa71NxFK2ELnXpwXqs-9BMPSdRTxrGRhnJUQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 21:49:18 GMT
age: 75120
etag: "d55b98ad8b8720a934ce41132d3e5821f7956511"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe337b2fa-7f8d-45d1-9c3b-36a6e16363af.webp
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe337b2fa-7f8d-45d1-9c3b-36a6e16363af.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3356bee662c2ea20cbebff5293e73340
625cfd3806740998c859fef8c1153efea72f5342
cd973426a15b28fa2c141e927ebf4e12faa05665780a3cd5010f874769b336e7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe337b2fa-7f8d-45d1-9c3b-36a6e16363af.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13620
x-amzn-requestid: 0858cbd0-5965-477b-9d5f-015243f86e12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ePk56F4JoAMF5Uw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b61b72-705a9ad403bb7795397926fd;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 00:36:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DoKiNkOKV6r5zqczq2ckoyb9UJyMABXfyn6WE1NerYovg8yg-AeePQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 10:11:59 GMT
age: 30559
etag: "625cfd3806740998c859fef8c1153efea72f5342"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ef3a07b-bcd6-4039-8f1b-5315d2fe51c2.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ef3a07b-bcd6-4039-8f1b-5315d2fe51c2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9ea2a04001ae6e92e56682f186ffbc2
dea01d8485f04aba4dcae63eb073a76d242a0095
c71e983f9d53f96de3553eb78da4f6da141d3dd381b1a1d55061f9141d3a54b6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ef3a07b-bcd6-4039-8f1b-5315d2fe51c2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5657
x-amzn-requestid: 4bb9764d-0119-4201-b4e1-f3193d436022
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eVxL5G-VoAMFblQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8957f-65d303390f3426bc006f23f3;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 21:41:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: x2J2pA3SunX-oqNpW1qO9rRvN4oylDoaKvx1WaQx_-BgHEo2YvvkZg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 446e26a256db1310ae719d818e420898.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 21:47:27 GMT
age: 75231
etag: "dea01d8485f04aba4dcae63eb073a76d242a0095"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e832123ea0c92a446b5894e75efc86ae
bb438ca635b43819701067ef07a3d910ad29a0c7
e1b0c6cd873f304de15664f96af6b6914e13fbbfb3e2179ba43369e116446773
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 93353c3e-1b26-424c-b4c6-0d113703edd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eFvpBFGvIAMFobw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b22c9f-1d07cff31ae39320693642f0;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 01:00:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vIFVXgt2RmoplkAVOtUrOkXj3LmhRw-XEPe7fugZ2-mv_iDY07XzUg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 08:42:42 GMT
age: 35916
etag: "bb438ca635b43819701067ef07a3d910ad29a0c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82e9dc28-a1b8-4185-9eb1-6856bb670646.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82e9dc28-a1b8-4185-9eb1-6856bb670646.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3c0fd17757d97ed3b4570387623f465f
889b2e3d0db6f9bc03393ff59a5eb7bee816cac3
1035a9d3c973762adfc08529b59642c3839ef95a7e8cfcced63e61ec154ad092
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82e9dc28-a1b8-4185-9eb1-6856bb670646.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10695
x-amzn-requestid: ae69c1c3-22f6-49de-91ec-8e7a854e4b27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eGCNWFo5IAMFUKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b24a55-75032a3e7ab3eb897382cad4;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 03:07:01 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: kkpb41RwNIWi4GQrpRiCAGUGsFyv9v-lpjPdStHiI1KxfkRi4tFCOQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b2d3922a177f6cecf9222a78a0a1ad32.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 21:59:50 GMT
age: 74488
etag: "889b2e3d0db6f9bc03393ff59a5eb7bee816cac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1787721-cbc0-4d0c-9ab8-c2bf14e3c622.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1787721-cbc0-4d0c-9ab8-c2bf14e3c622.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65a13b7b11843a364e80dbc2d54345ff
5b24f4bf17da840e61d96b0ed7452911539dbf67
8dea14e05eb2a0c850fe9441b605f50ec6206baf57da4293f2297cab0a82fe37
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1787721-cbc0-4d0c-9ab8-c2bf14e3c622.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10064
x-amzn-requestid: 7b970f82-e9fa-43e8-8757-60ae808a2cff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eP6kCEsSIAMFVBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b63e19-4884229c1545eef72380e7d2;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 03:03:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wWDCvYZY8VpfF4a5AWmjrZZx3vzUv7qWCz_g9vNlkMz5Sy3NaaWMVQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 03:33:10 GMT
age: 54488
etag: "5b24f4bf17da840e61d96b0ed7452911539dbf67"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pevlaku.al/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.15.0
192.185.20.30200 OK 92 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.15.0
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 92444, version 1.0\012- data
Hash e5d9164498f1649084fe6fb95d3ad593
29e71123f8ef22f20f8d50bc4caac9db6e04a824
1525cd3ea05d1c00e4b385e781749c3bac5c01570b5800198bec0a252bb6c715
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.15.0 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://pevlaku.al/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Content-Length: 92444
Content-Type: font/woff2
www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sRRUGA+MUZAKET+TIRANE!5e0!6i10
142.250.74.164200 OK 897 B URL HTTP/2 www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sRRUGA+MUZAKET+TIRANE!5e0!6i10
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1472)
Hash 4d651f101e8ef69e50bbbd5768e1d552
9f93e0d426c49755f138f8d577933873b39f89d1
552ad507c474b11a7710933b3ae3f74d1547238788e21da6a736f13e90ab4ea7
GET /maps/embed?origin=mfe&pb=!1m4!2m1!1sRRUGA+MUZAKET+TIRANE!5e0!6i10 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pevlaku.al/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sat, 07 Jan 2023 18:41:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-X6XCXNebDNs1oSIagU4U0Q' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 897
x-xss-protection: 0
server-timing: gfet4t7; dur=229
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pevlaku.al/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
192.185.20.30200 OK 77 kB URL HTTP/1.1 pevlaku.al/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://pevlaku.al/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 18:41:17 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 19:33:31 GMT
Accept-Ranges: bytes
Content-Length: 77160
Content-Type: font/woff2
pevlaku.al/wp-content/uploads/2020/02/cropped-logo-porto-bardhe-32x32.png
192.185.20.30200 OK 1.2 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2020/02/cropped-logo-porto-bardhe-32x32.png
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash ba8dec4d2a45b1fca3b4a67cffbe4c58
92acecf02801e4c28fff80562f45db29aea03db2
d01eccf55aa3c680df0a2b3f202b863a78d49bb8b1189d8e1516913a3bd87e18
GET /wp-content/uploads/2020/02/cropped-logo-porto-bardhe-32x32.png HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 22 Feb 2020 23:47:06 GMT
accept-ranges: bytes
content-length: 1181
content-type: image/png
date: Sat, 07 Jan 2023 18:41:18 GMT
server: Apache
X-Firefox-Spdy: h2
pevlaku.al/wp-content/uploads/2020/02/cropped-logo-porto-bardhe-192x192.png
192.185.20.30200 OK 14 kB URL HTTP/2 pevlaku.al/wp-content/uploads/2020/02/cropped-logo-porto-bardhe-192x192.png
IP 192.185.20.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 83d0f3b222612bf59b8069c801082675
c9dcf9b555dbf20b9e3f913580ba2f441e692fcc
b1e079791b16b846470f1c0537d43141ee74548c78a2d41720f77b8de27a5e61
GET /wp-content/uploads/2020/02/cropped-logo-porto-bardhe-192x192.png HTTP/1.1
Host: pevlaku.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pevlaku.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 22 Feb 2020 23:47:06 GMT
accept-ranges: bytes
content-length: 14531
content-type: image/png
date: Sat, 07 Jan 2023 18:41:18 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0521e41515d6353221b262052a1379d0
093c1306189c79f1cadc7b17f2a70ea34c0bc1d6
81d59ed2135bdc6f5987a5a3ff39fd7073c158f0a6fe1b79137799d7b2963a3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2d6a773e23d3251ca78a90cb2b9cf38d
c642a809ade690302d14864eb27f38d34ff6d5c4
6f172408f879a6eedd2158660bc27ff3c84cd4061924da447fb1fd358096dc24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 07 Jan 2023 18:32:37 GMT
expires: Sat, 07 Jan 2023 18:47:37 GMT
cache-control: public, max-age=900
age: 522
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
216.58.207.226302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 216.58.207.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sat, 07 Jan 2023 18:41:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 07 Jan 2023 18:41:19 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 4a64433c0abf99e11099cb655dbebc99
2243a31a76c4ebb51bdcad0c680d84c85548bf6b
2e6254c56e17d6fbaec60b351860f0ed5d5e04bed5757399e4114bb931ad22d0
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 07 Jan 2023 18:41:19 GMT
server: ESF
cache-control: private
content-length: 30780
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2d6a773e23d3251ca78a90cb2b9cf38d
c642a809ade690302d14864eb27f38d34ff6d5c4
6f172408f879a6eedd2158660bc27ff3c84cd4061924da447fb1fd358096dc24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bca7f62d320a595159ceae1b30ef4c65
0e0c7a42f0d017f617b40aea757cf0a0a4d71d9a
e30f2266b5b10dd868954bba127f6a8e85ba6f8422b565ca17aee0e9074b9d99
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2da4850ced15165089a33bfc9853c8e5
49a75c33baa9f8512491d355e73d2a8f35d85ab4
d11137c101094838e4d7b088770a2c82b00bd099ae3f9fd46b40f50c1c10fb4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0bebcc1732139c770c341e3c22f8c250
c92eacb0f64a10cc19ad56385b581ccfb3b520e5
ccc6a86576d9aa2cda3b7e6c6966f5c7195671d5bf7e854cf1666fe34cca48ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu_24Lmggh4wqOZDITIX7x7BJi9D7eyzkjZ183hU=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.1 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu_24Lmggh4wqOZDITIX7x7BJi9D7eyzkjZ183hU=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 2dff3d4e507c0570ffe405c444d7ae29
aadf68bac8320109534d0e877738efa455d525e9
d85466a24f02fc8e3af0b027ed312fc1e1609cb9e358c3cc766983f4196cb70a
GET /ytc/AMLnZu_24Lmggh4wqOZDITIX7x7BJi9D7eyzkjZ183hU=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3098
x-xss-protection: 0
date: Sat, 07 Jan 2023 18:41:19 GMT
expires: Sat, 07 Jan 2023 16:10:20 GMT
cache-control: public, max-age=86400, no-transform
etag: "v9"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/1y0XVu3_HNc/hqdefault.webp
216.58.207.246200 OK 25 kB URL HTTP/2 i.ytimg.com/vi_webp/1y0XVu3_HNc/hqdefault.webp
IP 216.58.207.246:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1bfa3bc2ad11939849da9af9c96bcfdf
c2afb41a64b1e421468c0756dc08bd7fb4777410
40f94727127905e0cd514b7e5045093bc9e99db69502487cfe5e42e9553b710c
GET /vi_webp/1y0XVu3_HNc/hqdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 24784
date: Sat, 07 Jan 2023 18:41:19 GMT
expires: Sat, 07 Jan 2023 20:41:19 GMT
cache-control: public, max-age=7200
etag: "1513169957"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0bebcc1732139c770c341e3c22f8c250
c92eacb0f64a10cc19ad56385b581ccfb3b520e5
ccc6a86576d9aa2cda3b7e6c6966f5c7195671d5bf7e854cf1666fe34cca48ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2da4850ced15165089a33bfc9853c8e5
49a75c33baa9f8512491d355e73d2a8f35d85ab4
d11137c101094838e4d7b088770a2c82b00bd099ae3f9fd46b40f50c1c10fb4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0a524d99e502787ed0f5366ef8315715
090e3b2d476cf053e4c56eca26b5aa2a8b0e2d2c
b4a3d680c41846f05cc08800e1cc5d26cf0c326cbec98ee7fff5e0cf4082e7c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0a524d99e502787ed0f5366ef8315715
090e3b2d476cf053e4c56eca26b5aa2a8b0e2d2c
b4a3d680c41846f05cc08800e1cc5d26cf0c326cbec98ee7fff5e0cf4082e7c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&mh=MI&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1885000&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=video%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&otf=1&otfp=1&dur=0.000&lmt=1604318713857725&mt=1673116654&fvip=5&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXRqE8RcoJJVQzQwueYz6exki0Vb4101QOX5FMJNunJwCIFqUBrldQaRZKceYIjLrTbW0fYJ85vIeHCFT9YEXj5Ts&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhALBTgfauJ7YaEkLpDR-RFYQjlhKKzmQsdcttULlEDq-DAiEAzyB_-AswzdwxeONaBYoycqMQI1e8xmN2M9aMHGnysAo%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&sq=0&rn=1&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
91.90.45.173200 OK 1.2 kB URL HTTP/1.1 rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&mh=MI&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1885000&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=video%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&otf=1&otfp=1&dur=0.000&lmt=1604318713857725&mt=1673116654&fvip=5&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXRqE8RcoJJVQzQwueYz6exki0Vb4101QOX5FMJNunJwCIFqUBrldQaRZKceYIjLrTbW0fYJ85vIeHCFT9YEXj5Ts&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhALBTgfauJ7YaEkLpDR-RFYQjlhKKzmQsdcttULlEDq-DAiEAzyB_-AswzdwxeONaBYoycqMQI1e8xmN2M9aMHGnysAo%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&sq=0&rn=1&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
IP 91.90.45.173:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1206), with no line terminators
Hash 04fd184be54ef31c2f8f226f8fb58d2e
90f501cc99bfa0b4dfabaf6d019da79bdf956562
67b4ee269870df478c2730e0b48f4e5002b4f6fec83abe36c150a4c75ae3d4a6
POST /videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&mh=MI&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1885000&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=video%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&otf=1&otfp=1&dur=0.000&lmt=1604318713857725&mt=1673116654&fvip=5&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXRqE8RcoJJVQzQwueYz6exki0Vb4101QOX5FMJNunJwCIFqUBrldQaRZKceYIjLrTbW0fYJ85vIeHCFT9YEXj5Ts&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhALBTgfauJ7YaEkLpDR-RFYQjlhKKzmQsdcttULlEDq-DAiEAzyB_-AswzdwxeONaBYoycqMQI1e8xmN2M9aMHGnysAo%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&sq=0&rn=1&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M= HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Sat, 07 Jan 2023 18:41:20 GMT
Expires: Sat, 07 Jan 2023 18:41:20 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1206
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=251&source=youtube&requiressl=yes&mh=MI&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1885000&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=audio%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&gir=yes&clen=1467890&otfp=1&dur=72.201&lmt=1563868073477369&mt=1673116654&fvip=5&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJBZgRAJQ9AofyazLIaxPwcdfjWgdGd1YV6AdfrvtieeAiBCPgXTNXR5cPX1IK5YhwVYFPiPV9opuOWJs0T-Y4OqnQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhALBTgfauJ7YaEkLpDR-RFYQjlhKKzmQsdcttULlEDq-DAiEAzyB_-AswzdwxeONaBYoycqMQI1e8xmN2M9aMHGnysAo%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&range=0-391&rn=2&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
91.90.45.173200 OK 1.2 kB URL HTTP/1.1 rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=251&source=youtube&requiressl=yes&mh=MI&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1885000&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=audio%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&gir=yes&clen=1467890&otfp=1&dur=72.201&lmt=1563868073477369&mt=1673116654&fvip=5&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJBZgRAJQ9AofyazLIaxPwcdfjWgdGd1YV6AdfrvtieeAiBCPgXTNXR5cPX1IK5YhwVYFPiPV9opuOWJs0T-Y4OqnQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhALBTgfauJ7YaEkLpDR-RFYQjlhKKzmQsdcttULlEDq-DAiEAzyB_-AswzdwxeONaBYoycqMQI1e8xmN2M9aMHGnysAo%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&range=0-391&rn=2&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
IP 91.90.45.173:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1159), with no line terminators
Hash 1314b3021396e774498d3f09474c68f2
8cc5838f3fd2b2903c19152d16c21e55fa6191bf
28bf6b864f04cc2cc82a5ae395eb401da24d0cfe63de67b0785281993fdd6cec
POST /videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=251&source=youtube&requiressl=yes&mh=MI&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1885000&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=audio%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&gir=yes&clen=1467890&otfp=1&dur=72.201&lmt=1563868073477369&mt=1673116654&fvip=5&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJBZgRAJQ9AofyazLIaxPwcdfjWgdGd1YV6AdfrvtieeAiBCPgXTNXR5cPX1IK5YhwVYFPiPV9opuOWJs0T-Y4OqnQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhALBTgfauJ7YaEkLpDR-RFYQjlhKKzmQsdcttULlEDq-DAiEAzyB_-AswzdwxeONaBYoycqMQI1e8xmN2M9aMHGnysAo%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&range=0-391&rn=2&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M= HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Sat, 07 Jan 2023 18:41:20 GMT
Expires: Sat, 07 Jan 2023 18:41:20 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1159
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0a524d99e502787ed0f5366ef8315715
090e3b2d476cf053e4c56eca26b5aa2a8b0e2d2c
b4a3d680c41846f05cc08800e1cc5d26cf0c326cbec98ee7fff5e0cf4082e7c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4e76d0a8fb1edacf6c35910fa7e0b572
dbcf2229775bc59cf0d0770fe5db08b0072978c8
4801bb6f0fb71ff74e39309769d6c7787d27d680af72aaa04cfea96aa5a51a23
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4e76d0a8fb1edacf6c35910fa7e0b572
dbcf2229775bc59cf0d0770fe5db08b0072978c8
4801bb6f0fb71ff74e39309769d6c7787d27d680af72aaa04cfea96aa5a51a23
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr5---sn-5goeenes.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=251&source=youtube&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=audio%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&gir=yes&clen=1467890&otfp=1&dur=72.201&lmt=1563868073477369&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJBZgRAJQ9AofyazLIaxPwcdfjWgdGd1YV6AdfrvtieeAiBCPgXTNXR5cPX1IK5YhwVYFPiPV9opuOWJs0T-Y4OqnQ%3D%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=MI&mm=29&mn=sn-5goeenes&ms=rdu&mt=1673115493&mv=u&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgCOi_DWu81tFixpoMeSm70O7-gtLxLhak85yXew0DxCMCIGYplBQ0xsjEsmVesep25AurlP45AViz7LsD4q8xiZIU&range=0-391&rn=4&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
74.125.108.234200 OK 1.2 kB URL HTTP/1.1 rr5---sn-5goeenes.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=251&source=youtube&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=audio%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&gir=yes&clen=1467890&otfp=1&dur=72.201&lmt=1563868073477369&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJBZgRAJQ9AofyazLIaxPwcdfjWgdGd1YV6AdfrvtieeAiBCPgXTNXR5cPX1IK5YhwVYFPiPV9opuOWJs0T-Y4OqnQ%3D%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=MI&mm=29&mn=sn-5goeenes&ms=rdu&mt=1673115493&mv=u&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgCOi_DWu81tFixpoMeSm70O7-gtLxLhak85yXew0DxCMCIGYplBQ0xsjEsmVesep25AurlP45AViz7LsD4q8xiZIU&range=0-391&rn=4&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
IP 74.125.108.234:0
File type ASCII text, with very long lines (1178), with no line terminators
Hash c89a80ade33b0dfc3b50b694a740864f
5ae5c61d8b6c561b227c63d2671a611315d8da2e
31f7db9f0a41c67886d19e8a2f5bb33eb56f9543d3e801c3538d6c34630b2b3c
POST /videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=251&source=youtube&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=audio%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&gir=yes&clen=1467890&otfp=1&dur=72.201&lmt=1563868073477369&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJBZgRAJQ9AofyazLIaxPwcdfjWgdGd1YV6AdfrvtieeAiBCPgXTNXR5cPX1IK5YhwVYFPiPV9opuOWJs0T-Y4OqnQ%3D%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=MI&mm=29&mn=sn-5goeenes&ms=rdu&mt=1673115493&mv=u&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgCOi_DWu81tFixpoMeSm70O7-gtLxLhak85yXew0DxCMCIGYplBQ0xsjEsmVesep25AurlP45AViz7LsD4q8xiZIU&range=0-391&rn=4&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M= HTTP/1.1
Host: rr5---sn-5goeenes.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Sat, 07 Jan 2023 18:41:20 GMT
Expires: Sat, 07 Jan 2023 18:41:20 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1178
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr5---sn-5goeenes.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=video%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&otf=1&otfp=1&dur=0.000&lmt=1604318713857725&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXRqE8RcoJJVQzQwueYz6exki0Vb4101QOX5FMJNunJwCIFqUBrldQaRZKceYIjLrTbW0fYJ85vIeHCFT9YEXj5Ts&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=MI&mm=29&mn=sn-5goeenes&ms=rdu&mt=1673115493&mv=u&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgG5Dv7l-3s_In6VyNBmsgACjI_DZipJh3dFP2PbDW_SUCIQCbI4j5bz6NJ9ZqyftEzu1DpF66UpsCoo9CkRNraV27OA%3D%3D&sq=0&rn=3&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
74.125.108.234200 OK 1.2 kB URL HTTP/1.1 rr5---sn-5goeenes.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=video%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&otf=1&otfp=1&dur=0.000&lmt=1604318713857725&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXRqE8RcoJJVQzQwueYz6exki0Vb4101QOX5FMJNunJwCIFqUBrldQaRZKceYIjLrTbW0fYJ85vIeHCFT9YEXj5Ts&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=MI&mm=29&mn=sn-5goeenes&ms=rdu&mt=1673115493&mv=u&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgG5Dv7l-3s_In6VyNBmsgACjI_DZipJh3dFP2PbDW_SUCIQCbI4j5bz6NJ9ZqyftEzu1DpF66UpsCoo9CkRNraV27OA%3D%3D&sq=0&rn=3&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
IP 74.125.108.234:0
File type ASCII text, with very long lines (1216), with no line terminators
Hash 9a58d0ddfd4f181b7c970f89ae2a19b4
001d08a21abd142e0d5d9f6add40436b222bcd45
5e226e644e328d347ad1654e4eec4b3944ddbafd9c84e2ffc0f80c6f89c8c15e
POST /videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=video%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&otf=1&otfp=1&dur=0.000&lmt=1604318713857725&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXRqE8RcoJJVQzQwueYz6exki0Vb4101QOX5FMJNunJwCIFqUBrldQaRZKceYIjLrTbW0fYJ85vIeHCFT9YEXj5Ts&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=MI&mm=29&mn=sn-5goeenes&ms=rdu&mt=1673115493&mv=u&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgG5Dv7l-3s_In6VyNBmsgACjI_DZipJh3dFP2PbDW_SUCIQCbI4j5bz6NJ9ZqyftEzu1DpF66UpsCoo9CkRNraV27OA%3D%3D&sq=0&rn=3&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M= HTTP/1.1
Host: rr5---sn-5goeenes.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Sat, 07 Jan 2023 18:41:20 GMT
Expires: Sat, 07 Jan 2023 18:41:20 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1216
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4e76d0a8fb1edacf6c35910fa7e0b572
dbcf2229775bc59cf0d0770fe5db08b0072978c8
4801bb6f0fb71ff74e39309769d6c7787d27d680af72aaa04cfea96aa5a51a23
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 18:41:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr5---sn-5goeenes.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=video%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&otf=1&otfp=1&dur=0.000&lmt=1604318713857725&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXRqE8RcoJJVQzQwueYz6exki0Vb4101QOX5FMJNunJwCIFqUBrldQaRZKceYIjLrTbW0fYJ85vIeHCFT9YEXj5Ts&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=MI&mm=29&mn=sn-5goeenes&ms=rdu&mt=1673115493&mv=u&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAIDqG25tVMiJbCIXa_rcwLIm2cvUliOd7jHuNnxQx4EtAiAHhtBqxIJwkSwVezdIJ0lIuz_j2tZAnSIKYoFnlB9a_g%3D%3D&sq=0&rn=7&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
74.125.108.234200 OK 1.2 kB URL HTTP/1.1 rr5---sn-5goeenes.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=video%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&otf=1&otfp=1&dur=0.000&lmt=1604318713857725&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXRqE8RcoJJVQzQwueYz6exki0Vb4101QOX5FMJNunJwCIFqUBrldQaRZKceYIjLrTbW0fYJ85vIeHCFT9YEXj5Ts&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=MI&mm=29&mn=sn-5goeenes&ms=rdu&mt=1673115493&mv=u&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAIDqG25tVMiJbCIXa_rcwLIm2cvUliOd7jHuNnxQx4EtAiAHhtBqxIJwkSwVezdIJ0lIuz_j2tZAnSIKYoFnlB9a_g%3D%3D&sq=0&rn=7&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
IP 74.125.108.234:0
File type ASCII text, with very long lines (1218), with no line terminators
Hash 5b71ea0c2416595d7f6c59afcef58535
226506d86cf17406e5be82883006ad5b72d63c82
146b98408896c44d2f45c32be24202c7b1e8546d5d5455fcc753f6835838566a
POST /videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=video%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&otf=1&otfp=1&dur=0.000&lmt=1604318713857725&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXRqE8RcoJJVQzQwueYz6exki0Vb4101QOX5FMJNunJwCIFqUBrldQaRZKceYIjLrTbW0fYJ85vIeHCFT9YEXj5Ts&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=MI&mm=29&mn=sn-5goeenes&ms=rdu&mt=1673115493&mv=u&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAIDqG25tVMiJbCIXa_rcwLIm2cvUliOd7jHuNnxQx4EtAiAHhtBqxIJwkSwVezdIJ0lIuz_j2tZAnSIKYoFnlB9a_g%3D%3D&sq=0&rn=7&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M= HTTP/1.1
Host: rr5---sn-5goeenes.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Sat, 07 Jan 2023 18:41:20 GMT
Expires: Sat, 07 Jan 2023 18:41:20 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1218
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr2---sn-5hne6nzd.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=251&source=youtube&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=audio%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&gir=yes&clen=1467890&otfp=1&dur=72.201&lmt=1563868073477369&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJBZgRAJQ9AofyazLIaxPwcdfjWgdGd1YV6AdfrvtieeAiBCPgXTNXR5cPX1IK5YhwVYFPiPV9opuOWJs0T-Y4OqnQ%3D%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&cm2rm=sn-capm-vnae7l,sn-5goly76&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=MI&mm=34&mn=sn-5hne6nzd&ms=ltu&mt=1673116635&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAK2f5SCgs-ZsBWimv3G0nkAQtA171B1AiHaVxjqoAXqeAiB6l9OBVvlI8wC2qZA52YxNBZQo0bIja9jCUqoMz6UJkA%3D%3D&range=0-391&rn=5&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
74.125.100.231200 OK 392 B URL HTTP/1.1 rr2---sn-5hne6nzd.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=251&source=youtube&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=audio%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&gir=yes&clen=1467890&otfp=1&dur=72.201&lmt=1563868073477369&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJBZgRAJQ9AofyazLIaxPwcdfjWgdGd1YV6AdfrvtieeAiBCPgXTNXR5cPX1IK5YhwVYFPiPV9opuOWJs0T-Y4OqnQ%3D%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&cm2rm=sn-capm-vnae7l,sn-5goly76&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=MI&mm=34&mn=sn-5hne6nzd&ms=ltu&mt=1673116635&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAK2f5SCgs-ZsBWimv3G0nkAQtA171B1AiHaVxjqoAXqeAiB6l9OBVvlI8wC2qZA52YxNBZQo0bIja9jCUqoMz6UJkA%3D%3D&range=0-391&rn=5&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
IP 74.125.100.231:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash d6ffbe6951a57247a657d10c1a5ba321
39dc5ddbcb126dec838374bcd8b5a0f72aa8c8c9
aea760b14f082f8b7e1453c8f5d817fd72d7f283f1b65c863f944e80772e5bbc
POST /videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=251&source=youtube&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=audio%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&gir=yes&clen=1467890&otfp=1&dur=72.201&lmt=1563868073477369&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJBZgRAJQ9AofyazLIaxPwcdfjWgdGd1YV6AdfrvtieeAiBCPgXTNXR5cPX1IK5YhwVYFPiPV9opuOWJs0T-Y4OqnQ%3D%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&cm2rm=sn-capm-vnae7l,sn-5goly76&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=MI&mm=34&mn=sn-5hne6nzd&ms=ltu&mt=1673116635&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAK2f5SCgs-ZsBWimv3G0nkAQtA171B1AiHaVxjqoAXqeAiB6l9OBVvlI8wC2qZA52YxNBZQo0bIja9jCUqoMz6UJkA%3D%3D&range=0-391&rn=5&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M= HTTP/1.1
Host: rr2---sn-5hne6nzd.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Tue, 23 Jul 2019 07:47:53 GMT
Content-Type: audio/webm
Date: Sat, 07 Jan 2023 18:41:20 GMT
Expires: Sat, 07 Jan 2023 18:41:20 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 392
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr2---sn-5hne6nzd.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=251&source=youtube&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=audio%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&gir=yes&clen=1467890&otfp=1&dur=72.201&lmt=1563868073477369&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJBZgRAJQ9AofyazLIaxPwcdfjWgdGd1YV6AdfrvtieeAiBCPgXTNXR5cPX1IK5YhwVYFPiPV9opuOWJs0T-Y4OqnQ%3D%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&cm2rm=sn-capm-vnae7l,sn-5goly76&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=MI&mm=34&mn=sn-5hne6nzd&ms=ltu&mt=1673116635&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAK2f5SCgs-ZsBWimv3G0nkAQtA171B1AiHaVxjqoAXqeAiB6l9OBVvlI8wC2qZA52YxNBZQo0bIja9jCUqoMz6UJkA%3D%3D&range=392-65927&rn=9&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
74.125.100.231200 OK 66 kB URL HTTP/1.1 rr2---sn-5hne6nzd.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=251&source=youtube&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=audio%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&gir=yes&clen=1467890&otfp=1&dur=72.201&lmt=1563868073477369&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJBZgRAJQ9AofyazLIaxPwcdfjWgdGd1YV6AdfrvtieeAiBCPgXTNXR5cPX1IK5YhwVYFPiPV9opuOWJs0T-Y4OqnQ%3D%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&cm2rm=sn-capm-vnae7l,sn-5goly76&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=MI&mm=34&mn=sn-5hne6nzd&ms=ltu&mt=1673116635&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAK2f5SCgs-ZsBWimv3G0nkAQtA171B1AiHaVxjqoAXqeAiB6l9OBVvlI8wC2qZA52YxNBZQo0bIja9jCUqoMz6UJkA%3D%3D&range=392-65927&rn=9&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
IP 74.125.100.231:0
Hash c6aafb4e39da033d4446e66f97f4303a
4ae6a5a4f2f4c977686d4a8af932acce9f93ce74
a219243d9698da1c7e631e1381fd65a360a27705602b79e49a07f5343c9e07ab
POST /videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=251&source=youtube&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=audio%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&gir=yes&clen=1467890&otfp=1&dur=72.201&lmt=1563868073477369&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJBZgRAJQ9AofyazLIaxPwcdfjWgdGd1YV6AdfrvtieeAiBCPgXTNXR5cPX1IK5YhwVYFPiPV9opuOWJs0T-Y4OqnQ%3D%3D&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&cm2rm=sn-capm-vnae7l,sn-5goly76&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=MI&mm=34&mn=sn-5hne6nzd&ms=ltu&mt=1673116635&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAK2f5SCgs-ZsBWimv3G0nkAQtA171B1AiHaVxjqoAXqeAiB6l9OBVvlI8wC2qZA52YxNBZQo0bIja9jCUqoMz6UJkA%3D%3D&range=392-65927&rn=9&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M= HTTP/1.1
Host: rr2---sn-5hne6nzd.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Tue, 23 Jul 2019 07:47:53 GMT
Content-Type: audio/webm
Date: Sat, 07 Jan 2023 18:41:20 GMT
Expires: Sat, 07 Jan 2023 18:41:20 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 65536
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr2---sn-5hne6nzd.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=video%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&otf=1&otfp=1&dur=0.000&lmt=1604318713857725&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXRqE8RcoJJVQzQwueYz6exki0Vb4101QOX5FMJNunJwCIFqUBrldQaRZKceYIjLrTbW0fYJ85vIeHCFT9YEXj5Ts&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&cm2rm=sn-capm-vnae7l,sn-5goly76&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=MI&mm=34&mn=sn-5hne6nzd&ms=ltu&mt=1673116635&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgUazykkj4RFILzHI4q_jNlP--7JlM_z9E0RNvq5A331YCIQCmyVOkTdosXfCTG_aWgGXHAk-MduxoyegcZirUABMpqA%3D%3D&sq=0&rn=8&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
74.125.100.231200 OK 335 B URL HTTP/1.1 rr2---sn-5hne6nzd.googlevideo.com/videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=video%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&otf=1&otfp=1&dur=0.000&lmt=1604318713857725&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXRqE8RcoJJVQzQwueYz6exki0Vb4101QOX5FMJNunJwCIFqUBrldQaRZKceYIjLrTbW0fYJ85vIeHCFT9YEXj5Ts&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&cm2rm=sn-capm-vnae7l,sn-5goly76&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=MI&mm=34&mn=sn-5hne6nzd&ms=ltu&mt=1673116635&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgUazykkj4RFILzHI4q_jNlP--7JlM_z9E0RNvq5A331YCIQCmyVOkTdosXfCTG_aWgGXHAk-MduxoyegcZirUABMpqA%3D%3D&sq=0&rn=8&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M=
IP 74.125.100.231:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash d0372b55db9ecde9643a45b25101582a
2689fc82b23701e19e04d0253abe938cbb68df82
f3a449cc8ea65590fff1f72a265031ce8cee365d02913b701a3deb46b83c454e
POST /videoplayback?expire=1673138479&ei=z7y5Y83vM8fuyQW47JWYAQ&ip=91.90.42.154&id=o-AGYKvp0fB5prmP7Fy5e5iIPeFnkl2YfaY3nZXniM7zEz&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=zIddbASpGSTbFom0GYXYBxWQ-Bw3SFI&vprv=1&mime=video%2Fwebm&ns=5tV7-9rcPoib0jfbKqtcRO8K&otf=1&otfp=1&dur=0.000&lmt=1604318713857725&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&n=IX7XqDsF1xdvlQ&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXRqE8RcoJJVQzQwueYz6exki0Vb4101QOX5FMJNunJwCIFqUBrldQaRZKceYIjLrTbW0fYJ85vIeHCFT9YEXj5Ts&alr=yes&cpn=b2y-JLTmymtXzbFG&cver=1.20230102.00.00&cm2rm=sn-capm-vnae7l,sn-5goly76&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=MI&mm=34&mn=sn-5hne6nzd&ms=ltu&mt=1673116635&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgUazykkj4RFILzHI4q_jNlP--7JlM_z9E0RNvq5A331YCIQCmyVOkTdosXfCTG_aWgGXHAk-MduxoyegcZirUABMpqA%3D%3D&sq=0&rn=8&rbuf=0&pot=Dx0q4LgsyXqBHREWcTJe9YpRfJbbaV5QUIPI43JINhswITpVwPy14wdz3L5JW6BVGJ8c21WRYj_zcbViKiR3EnWk9J2St-Ny9YkbIRGtOmzX6kYCtHRkIwfmlFJ6ATWWv29G6TgXj3M= HTTP/1.1
Host: rr2---sn-5hne6nzd.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sat, 31 Dec 2022 13:58:29 GMT
Content-Type: video/webm
Date: Sat, 07 Jan 2023 18:41:20 GMT
Expires: Sat, 07 Jan 2023 18:41:20 GMT
Cache-Control: private, max-age=21299
Transfer-Encoding: chunked
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0