r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3446
Expires: Mon, 05 Dec 2022 05:05:51 GMT
Date: Mon, 05 Dec 2022 04:08:25 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2185
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:25 GMT
Etag: "638c76f5-1d7"
Last-Modified: Mon, 05 Dec 2022 03:32:00 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3213
Expires: Mon, 05 Dec 2022 05:01:58 GMT
Date: Mon, 05 Dec 2022 04:08:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 03:20:12 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2893
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hyNp7UXbnxSqnvmZ7gdagg9ceRCfngbu6PWL/1hFrDdjbmagpH2/pPYljYU77x8vKU44+8aZCOA=
x-amz-request-id: ZT90G68CWMKNDH00
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 03:47:49 GMT
age: 1236
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
bepro.al/
104.21.6.116301 Moved Permanently 694 B IP 104.21.6.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash c9e760b83a4d479f53877a4a9c81e1c6
c8fe2c0c0d61eb4ff3dba7799196b899c7359baa
75d9c9b24b6b7a51cddbd2b86a7b6571b69c1bd1ffa5b92d6da92f125f68e5d7
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Dec 2022 04:08:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
location: https://bepro.al/
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fqJrp32BbqW%2BB80VZr0sNGB%2FVC3QRlLESFDNaT5oDmfQmteJ5PKXTjwVlmY1G9T8d%2F6YI7CQZWg%2FtHCpzaR2FEJ8YhkmIr7i8qpbGqHgDeX3zlJ5evOcQizPYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7749eba34ce7b50c-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3d69c861b2a3ef8997ee789ce2fb227f
b3ce2a6915b4ef375659e0c0f480538e12e0cd9d
18af8e2161a703c60db5665cda9250ea8ad6962bde790be723c629855c9a6cb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=129849
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:25 GMT
Etag: "638cc6f2-117"
Expires: Tue, 06 Dec 2022 16:12:34 GMT
Last-Modified: Sun, 04 Dec 2022 16:12:34 GMT
Server: nginx
Content-Length: 279
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 04:08:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 03:11:19 GMT
cache-control: public,max-age=3600
age: 3426
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 31b129c94a90b1e695b21395cb54e378
a3cae46b48d469cc61ab0581303bcd5f5b654db9
fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2162
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:25 GMT
Last-Modified: Mon, 05 Dec 2022 03:32:23 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3d69c861b2a3ef8997ee789ce2fb227f
b3ce2a6915b4ef375659e0c0f480538e12e0cd9d
18af8e2161a703c60db5665cda9250ea8ad6962bde790be723c629855c9a6cb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=129849
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:25 GMT
Etag: "638cc6f2-117"
Expires: Tue, 06 Dec 2022 16:12:34 GMT
Last-Modified: Sun, 04 Dec 2022 16:12:34 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1245db08bc06bdc452fdb41b8e959f26
ba2fa041fbea0e124b6fd418724a46225fac0089
d591926f6495b722a0b545d292f16a342cba87889fd7d4f5ca448c3613760be6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4454
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Last-Modified: Mon, 05 Dec 2022 02:54:12 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
code.jquery.com/ui/1.10.4/themes/flick/jquery-ui.css
69.16.175.42200 OK 6.0 kB URL HTTP/2 code.jquery.com/ui/1.10.4/themes/flick/jquery-ui.css
IP 69.16.175.42:0
File type ASCII text, with very long lines (1356)
Hash e28d702e2b72ef56134d6be4789a3f4c
fe5a80795c59faca1392b29c8caaa5d19e4a5cc8
3ef494fedff73d1314a7b699d271f8da150009014c940da0e8a5a61831ead584
GET /ui/1.10.4/themes/flick/jquery-ui.css HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-encoding: gzip
content-length: 5981
content-type: text/css
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-7d37"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670213306.dop065.sk1.t,1670213306.cds247.sk1.hn,1670213306.cds229.sk1.c
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1245db08bc06bdc452fdb41b8e959f26
ba2fa041fbea0e124b6fd418724a46225fac0089
d591926f6495b722a0b545d292f16a342cba87889fd7d4f5ca448c3613760be6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4454
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Last-Modified: Mon, 05 Dec 2022 02:54:12 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
code.jquery.com/jquery-2.1.1.js
69.16.175.42200 OK 73 kB URL HTTP/2 code.jquery.com/jquery-2.1.1.js
IP 69.16.175.42:0
Hash 114d4d418d604686178833c7c80640b3
41e5e17bba301ddf562a2402cf0284e158d3c947
205fa3ed22c4dbe27752e632b4476fdbfb53dab29584b7e5aa82963461c37b8b
GET /jquery-2.1.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-encoding: gzip
content-length: 72985
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-3c637"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670213306.dop065.sk1.t,1670213306.cds247.sk1.hn,1670213306.cds214.sk1.c
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1d7ae9cb4d3ada56f3c875f55b37a3e1
296e23579403d85854df89b45e91dde802a91617
b86bdf54353e0459f9acb777656d5928b8d04aece9f060a8ecf4961548f7c490
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1805
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Last-Modified: Mon, 05 Dec 2022 03:38:21 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.min.css
104.17.24.14200 OK 1.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (6307)
Hash 1499fdf8ee91396d2c39264681972f7e
188842d3c3a70bfcbd09d92b1c8622c11478c9b2
aaa20e886e9ca33d93b1d9092b56423c03c6594b9006ae37f7afb2cabdfa657f
GET /ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css; charset=utf-8
content-length: 1025
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ebd-1920"
last-modified: Mon, 04 May 2020 16:11:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 13256907
expires: Sat, 25 Nov 2023 04:08:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hM%2BF2byN273fC%2Fj7HtWxU2NikjVFEp5Xk3e8VIZoqM5UlJA9BdNb5yEJwI9gC%2BgJd%2BIzWWLHRdYySD2Ka1uLDcKqR7co3BxEKoBGW2ibWqStbeZztuii4IH9hkNPSWbn8t8w%2FCdJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7749ebab1b960b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.js
104.17.24.14200 OK 4.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.js
IP 104.17.24.14:0
Hash 79d8537fe71c6762f249a9e47e3b10c2
219eca3742414c550441d344aa45dc505d796456
54186737816366f6e7a63e74738ae9a334d265dc0874efed4b8d3ec3305dc957
GET /ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 4145
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ebd-5deb"
last-modified: Mon, 04 May 2020 16:11:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 19172774
expires: Sat, 25 Nov 2023 04:08:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IUpdgunG1yr6WqO1AEk4bDkQ9J%2Bf4h9FPQiVE7DCZCP%2B5u8qa4cOpIOEYk%2BW02GrvFP1QZx7PJ3l2SvolcZvWEZL0VM8LV2ZwummNUXZu9oNAMzyHoLqKggWmz2n5lUT62hkFDvp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7749ebab4ba70b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1245db08bc06bdc452fdb41b8e959f26
ba2fa041fbea0e124b6fd418724a46225fac0089
d591926f6495b722a0b545d292f16a342cba87889fd7d4f5ca448c3613760be6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4454
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Last-Modified: Mon, 05 Dec 2022 02:54:12 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
bepro.al/wp-content/uploads/2019/07/viza.png
104.21.6.116200 OK 217 B URL HTTP/2 bepro.al/wp-content/uploads/2019/07/viza.png
IP 104.21.6.116:0
File type PNG image data, 175 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 86a2d3a055e1041475d1ed760069b78b
950186fb9ed86b9ea640e28decfed1de6fddb870
bad84cb72af43902f57b93eff6fc4bd5ae9a125bf931c9e78ba0828cc99c8e07
GET /wp-content/uploads/2019/07/viza.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 217
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lIJE%2FK0tdGpynLzycRGpjpKBgZ2EU2FHZh2PyyOdB2FZdmWUZrqpK3xoDJkaWwU7UUmPztNUcL6Vsirr%2B%2F4lpSWQ0UDAxEAXv2gl4YK%2FgIEJGT6rlBpcNhcCaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaa9e050b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.41.252.32101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.252.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MnrvhwJPtEk5n5xLG2HSJg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wvY1EzJ0Na7MG74OT6L306glU9A=
www.googletagmanager.com/gtag/js?id=UA-45543016-13
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-45543016-13
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 3b27bf89681cc1743b30d596e368253c
1c04070b866efb101d9366326e29516c5588466b
503114e0e6f804826bcc224d5c3e1406d1fa6834fe5cf36f81735b88205d84d3
GET /gtag/js?id=UA-45543016-13 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Dec 2022 04:08:26 GMT
expires: Mon, 05 Dec 2022 04:08:26 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Dec 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43634
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bepro.al/wp-includes/js/wp-embed.min.js?ver=5.4.12
104.21.6.116200 OK 769 B URL HTTP/2 bepro.al/wp-includes/js/wp-embed.min.js?ver=5.4.12
IP 104.21.6.116:0
File type ASCII text, with very long lines (1391)
Hash 82e67f050afdb38c20ac6eb305f97c17
df1349df76d66a9cf64377cf335c67c337d85470
5f6c33116e2106cd0f2f28c16062f1d584e74b8539a14ed45e17957634d71b7e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.4.12 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 769
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 16 Apr 2021 01:34:23 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6pu4jN%2FNtcGw2KI8enzByNldSdrSeYsp0xS75qZWqdgKZ%2F%2FcvOoEqAPABG9CqBObgKUGC96xUie7VNN%2BLiLTSggECp%2Fc2J0lmwXzOPFkjPZqZe%2B8aqZLXDcOiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9dddc0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/plugins/litespeed-cache/assets/js/instant_click.min.js?ver=4.4.2
104.21.6.116200 OK 1.3 kB URL HTTP/2 bepro.al/wp-content/plugins/litespeed-cache/assets/js/instant_click.min.js?ver=4.4.2
IP 104.21.6.116:0
File type ASCII text, with very long lines (3683), with no line terminators
Hash 6bf1245ac2f45b315dd46fc54748d0da
9cd5bf62c579a93d9c731687eaab07e3f8e29e2c
79bff6a88e84dad7a55bda49858d09cbf224247e5e1fd19ab37e000b20c45675
GET /wp-content/plugins/litespeed-cache/assets/js/instant_click.min.js?ver=4.4.2 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 1280
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 08 Oct 2021 23:26:22 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FaDc4fi81xzvNJSduw2Oks2M9p7GLYBNmvGDWZ0isDaA8MhdwF1Lo3cD5i3PvGvSB8OFZ8Nttize4IMdEFICbqm5N%2F0f7FVVpdhXiwRijuPI7POoO49oQvDC8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9ddd50b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
104.21.6.116200 OK 4.0 kB URL HTTP/2 bepro.al/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 104.21.6.116:0
File type ASCII text, with very long lines (9959)
Hash 2f89b08855471c7476435ce0bec33ba7
970533f152623df03b5fc6fb793b21889e4e0349
d200586b6dd1ff779b6c30947361ff736e076d8c7d502505ab3174ca33455ea0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 4034
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 10 Apr 2020 18:49:12 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vSSAYRtMrTlo%2BFyH%2FPfytZTQt8NJiTU0lz4lzoSjTKmquJbG3vUUzclShV0A8EJP%2BK%2BT9J51covKbSfQSygAU%2FFFNXVWYFXZAPiASE8NQYp%2B0C%2FisBqFHHSaPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9ddd60b39-OSL
X-Firefox-Spdy: h2
bepro.al/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2
104.21.6.116200 OK 3.9 kB URL HTTP/2 bepro.al/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2
IP 104.21.6.116:0
Hash 0af35ef9644e91e1780c2e53fd1778bc
3f04b66eeeadecb25d9d6801f8f3a2590783f8a1
9b0db76c15e3fe0bc3f8d5235335bf5b83609144f8492da9a9a7b96ae0904bf0
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 3913
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Wed, 15 Jul 2020 09:35:50 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=buGdD8%2Fx2%2B98A6b%2BGtFkDnE%2FeeJ%2Bi698esBJS2%2BNoWlqkEYDd7YzsOp%2Bjzg4K903XeLv7q6vNpV%2Bdq6zjWZCSQlziNbZd5nN3eAj57IZdAKXQr3leX0EzRb9WQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9ddd70b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/plugins/carousel-slider/assets/js/frontend.js?ver=1.9.4
104.21.6.116200 OK 1.2 kB URL HTTP/2 bepro.al/wp-content/plugins/carousel-slider/assets/js/frontend.js?ver=1.9.4
IP 104.21.6.116:0
File type ASCII text, with very long lines (2900), with no line terminators
Hash cd1baeb70aad2098c1f4e3ef72f6fe28
e55792d6eb11cf2ef317a4e5dcfa8bbdd512fbce
b500633aaf14b391282ff1085b071eebda06ee424766ff754ae547c1bec078ad
GET /wp-content/plugins/carousel-slider/assets/js/frontend.js?ver=1.9.4 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 1230
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Wed, 15 Jul 2020 09:35:46 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AwrQJOwRvyhgR%2B%2B2y4tcfPXUcoxpMYXw2LHbJPq5orzIt4RxnztkifAaj2ZIAr1RwnwLLYUGygTtvNQcPiWrTXduE%2BE8USDGSssKJsNkyHxCD0PuIWtqTzDm1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9ddda0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/themes/Divi/core/admin/js/common.js?ver=3.26.6
104.21.6.116200 OK 581 B URL HTTP/2 bepro.al/wp-content/themes/Divi/core/admin/js/common.js?ver=3.26.6
IP 104.21.6.116:0
Hash aad2ff88b007e293d43fd863b0649201
9f882d07b2d3e4813321472cd45fe3aa23c70f82
e0b8a3838822b97bfa6723a399b71747899cd40307b65d8d8bac6649b3680786
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Divi/core/admin/js/common.js?ver=3.26.6 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 581
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 10 Apr 2020 18:49:10 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vlB2GoyIb%2FifbjJEJgWqqaFvwlKuJA%2BgDS%2B3kvOmoUoWH%2FPB172J%2FxV%2BWwSL%2B859wS9ppyoAlQPGQ4083F4YkbkQtkVBqmhLbo4%2B3MnZpvuxlg3WaexL2XDwUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9dddb0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2
104.21.6.116200 OK 735 B URL HTTP/2 bepro.al/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2
IP 104.21.6.116:0
Hash 4515f9bb47d354a1ea17ba040b395d54
ad90d6cac6d4c8cce2fe94311ba9971bb6de4cdc
f5252f398377d3f318580618967fea449ffb6240f2a41317053c90c271224c3d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css
content-length: 735
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Wed, 15 Jul 2020 09:35:50 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G48aoXw6j9z3BqQZ2WjkMhJgXjVwRYhMmwaqKXf7bNnZ9PQbMg7mbtTKXt22Yo979UgGWsvSFYHocP84sDn27GrXALML8lcn3knzT4h%2FpzS6wfxFitxWV91E2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749ebaa8df60b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-includes/css/dist/block-library/style.min.css?ver=5.4.12
104.21.6.116200 OK 7.6 kB URL HTTP/2 bepro.al/wp-includes/css/dist/block-library/style.min.css?ver=5.4.12
IP 104.21.6.116:0
File type ASCII text, with very long lines (28088)
Hash 8352f5522fd5f4be771cfdc668ef4000
ced844dc9a8941ce3a3001a338d1922b596194e0
7ca12fd9f2da9640c5645bce572d39f193f686929ef14f5acef17a16bfb7ef8c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.4.12 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css
content-length: 7624
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Wed, 15 Jul 2020 09:34:24 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b1ufApXNRBpHddSzyMJHCaz9GAUuoFzvWr5gl8vA62OwAHo24qE9y2QmFII6STS0Ds%2Fiv0rTJ6%2BSc7MklW4Pd5rShxXJQWHIpVwA%2BnTAw1wrPZeI6AjsZY2roA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749ebaa8df50b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/07/icon-22.png
104.21.6.116200 OK 2.5 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/07/icon-22.png
IP 104.21.6.116:0
File type PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Hash c8cb224393b931cb5d070759b4dfbf0f
574694803526975f8fca8277167f3d6ed912e7f5
77fb61e52b95ffbbb8f2a1e3bd5ca49cdfe1d403a4a505a8defc27055a799b69
GET /wp-content/uploads/2019/07/icon-22.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2473
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TaXhlwYs09z5nOQSqhwFO4FajRxXvDnPfCaJmdGct9sUUMIyIxyF%2F%2B0h9EvWidc%2B%2FXtL7%2FaaWDMgSdYDAcfOG0fHp7knkTEDh1HwJQ8p1vZJMjaZfyP5eQ4yWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaae0c0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/cache/et/10/et-core-unified-16683399856549.min.css
104.21.6.116200 OK 7.6 kB URL HTTP/2 bepro.al/wp-content/cache/et/10/et-core-unified-16683399856549.min.css
IP 104.21.6.116:0
File type ASCII text, with very long lines (57412), with no line terminators
Hash 21a15fe339e41df414975279cbed7ac8
f6349bd00ec6b9fc64f8b8e0b183e71baea30993
b34e556589f90ae488be0e184386d61d65335ea7322acf85d806e0708d4c5e55
GET /wp-content/cache/et/10/et-core-unified-16683399856549.min.css HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css
content-length: 7638
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 13 Nov 2022 11:46:30 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ePu6E%2BFPC8FSf%2BFJeYEmoYQ6R5NY0aktQ3lyVuP6D%2ByhMuypA1HIgP2EZQErMgHW%2B0Yemx90Z9jKuzj0O4SDTAcWAJ8vb1DWbqG9YtWd6l3I9qyvN3UXDT%2BB%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749ebaa9dfd0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/07/icon-27.png
104.21.6.116200 OK 3.3 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/07/icon-27.png
IP 104.21.6.116:0
File type PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Hash 06924e057b86f5058f2697f79e517b8b
54ca4997562788412815b39be888dcd7151cffde
162236f0a2410afb213fdf78fbe36caa3bb5b50aea0cb25cb5c3290269467454
GET /wp-content/uploads/2019/07/icon-27.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 3334
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IlFrSevrY4OF%2FdT7a8axpjOIL2kxJh51VfW64kXykKmZD18QzW%2BNwWowKvP%2Bs%2FOWYBo%2FLbcuB7Ki544OBiVxtc4DbEmYRca3OITdLeYE%2F40hPm3nio5Rj1VgRw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaa9e080b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/L1-37.png
104.21.6.116200 OK 6.1 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/L1-37.png
IP 104.21.6.116:0
File type PNG image data, 195 x 96, 8-bit colormap, non-interlaced\012- data
Hash 94e6fdd83a5c3f3441745a171ecfaa28
d64fbde1a1a50e729ba25acd1c797466b0499526
dab8320cc1c08d1b2aff0f6c1f9d065200f9b0c12b671b075913c755a6237856
GET /wp-content/uploads/2019/08/L1-37.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 6083
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:21 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PXEQBMhN09FSoLiwS%2BnTkytzk2WTqOhJB%2BhtjraKRJm%2BuLc4iE1HW6wC6gaKO7OH8vRj0ZHVTnrybrwaDhG5WswJ1gXnF4IrW7a8sykeYiLZhUgYzsPvvEsVXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe270b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/07/bepeo-web1.png
104.21.6.116200 OK 7.7 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/07/bepeo-web1.png
IP 104.21.6.116:0
File type PNG image data, 400 x 96, 8-bit colormap, non-interlaced\012- data
Hash 65371c793820ee42f7c9abfefb4d07e5
cb3a3d3e6b2c9ea78ed9170ad1dc65fbaad6cab7
0e70c4f20b21ad6b202aea5afbeb682a230b3e0512bbe00a84469559744292fb
GET /wp-content/uploads/2019/07/bepeo-web1.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 7719
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:47 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FqJFnP6K1jEjhy9SxeWU%2B4AStVd68khbdxIuYX1lluQcxfwW9twyyteWK1Nlzre8WjkjEmUppx2kjSzel29tFKVGRqMnLPRsVvVKegk8dpeXsg9jDGNaCg8DkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaa9e020b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/07/icon-28.png
104.21.6.116200 OK 2.0 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/07/icon-28.png
IP 104.21.6.116:0
File type PNG image data, 132 x 129, 8-bit colormap, non-interlaced\012- data
Hash 4d5889fcbf859ef9f41b388b7f13ed16
7021edfc564e23d22ab9cb91c416621d9b1df7e1
33200075e3d7c0abf8cf1b5f7dd5178dfcbe473b71b8125ec1a5a89732559c68
GET /wp-content/uploads/2019/07/icon-28.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2043
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:38 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HSg1KyyXsPbUaRlo1YJ9%2BxvFfwZAaFxJsJ%2B0vUoC8VIhnvXvlzgTi6stTM4EAkc0PsU%2FfudDXuAUSB3kmAcl3PwnDz1XY9MhLrnL%2BF5teX8Gcvu%2BUCNUhwxZUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaae0e0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/L1-29.png
104.21.6.116200 OK 2.4 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/L1-29.png
IP 104.21.6.116:0
File type PNG image data, 171 x 96, 8-bit colormap, non-interlaced\012- data
Hash 1f3e8852a1a5c14488e4e6eb0556913f
e4250860262b5f08c96f4f70af610a945642778d
8b3a45940efbce218a0b7de0137092ded721ef5aefcc9b463d55a721b27a616b
GET /wp-content/uploads/2019/08/L1-29.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2433
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:23 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zv8ec7vYb%2Bm9lt7kWQtMlDwnEjBtK5cLCcLCjTD5O%2BUovk6%2FYQowEc72aKIuK1036xVcEcfKxt22lsfJ%2Bnsj0uXIS9gUCr9f7DK8Y9ejK9qG8DKXF7iayBtmUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe280b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/plugins/carousel-slider/assets/css/frontend.css?ver=1.9.4
104.21.6.116200 OK 8.2 kB URL HTTP/2 bepro.al/wp-content/plugins/carousel-slider/assets/css/frontend.css?ver=1.9.4
IP 104.21.6.116:0
File type ASCII text, with very long lines (30189), with no line terminators
Hash e2dbd12078e01a7ec3e0268c8c1ed43d
25170794b28db3b7ee9cc7877c80e2bc9b2b81d7
fcd32ad3873ab9a3ef4dcefb4481e78c89aa146a81c17635c19678d852e7090b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/carousel-slider/assets/css/frontend.css?ver=1.9.4 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css
content-length: 8247
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Wed, 15 Jul 2020 09:35:46 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kKYuSwc3HFO70u60cDI8T5D%2FGNT6YZd7Ke8N%2FwiiKJIfS9Jwu6QNd6ruF3hVZC5Ed3w%2BkaW%2FdoLwwkSzXR44K4JqmlLvZw2v3tJp4IPjsk0t1BQyomiIvBWkdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749ebaa8dfa0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/07/icon-25.png
104.21.6.116200 OK 2.3 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/07/icon-25.png
IP 104.21.6.116:0
File type PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Hash 4fab64f783523cbac0687451313e4a48
21609d4fb77670e1b31a5f1f6b5f9e48878ea2b2
3991bb7de65ad9542c786f134acdc537d6800ab55253f0df871f23844c0a7c6b
GET /wp-content/uploads/2019/07/icon-25.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2286
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MP46sRgB3zfdmYtnhmwviOlMP9DeGWyx4pbiJ8Xfz8IG7N90drCLOPKjxOM8SqzGCOpGq5eil0ttHlx8hNi%2Fyr%2BOTyJ135QM0FB2HuB6ABMeSqkYCahDOVkMbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaae0d0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/07/icon-29.png
104.21.6.116200 OK 2.9 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/07/icon-29.png
IP 104.21.6.116:0
File type PNG image data, 130 x 129, 8-bit colormap, non-interlaced\012- data
Hash 29bf01a326d67ee185a0e121612911ec
e96b79a5d4ab656e993f66498496744fa3be74c2
01acdcf2a998af76c4267a7fd1394670057cd01626047f8e12eff252b78ad1d9
GET /wp-content/uploads/2019/07/icon-29.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2944
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:38 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zVTdaTDLNAVB9mmqb%2F%2FBX%2BRAbB3xHzJku%2BBXhCAfNm2gZcKwVE7tKlxJJLMAwMuz7iucpUlCpqYN43OLqh0iV6xsgh6F4e%2FN%2FB3MJodqfdvmxchZuOXS8Yx2rw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe110b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/07/icon-21.png
104.21.6.116200 OK 3.1 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/07/icon-21.png
IP 104.21.6.116:0
File type PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Hash e7ec7490469383816802f304087751db
af3dfd3c5e77042ab1640acf1cc04c94e8ad128e
3d8f10960fbdc6dd8dd075dfe5f933fade502bf753a453eb5eee18327722b881
GET /wp-content/uploads/2019/07/icon-21.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 3115
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AgWfKka1uZLWAbVqEEP12pTB4S754RNbdSMy%2Fw3Fx6uk47QZ4DBeXaqRqdRF3AGYNF%2Frev5%2ByC1T8ME1LBGAxzD2aHO69DaPEJktL2616ezzMPl%2FiogxwZplYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaa9e060b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1d7ae9cb4d3ada56f3c875f55b37a3e1
296e23579403d85854df89b45e91dde802a91617
b86bdf54353e0459f9acb777656d5928b8d04aece9f060a8ecf4961548f7c490
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1805
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Last-Modified: Mon, 05 Dec 2022 03:38:21 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
bepro.al/wp-content/uploads/2019/08/L1-27.png
104.21.6.116200 OK 2.7 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/L1-27.png
IP 104.21.6.116:0
File type PNG image data, 162 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d46dd6acbcd37d9c601e5dc8f81cdea
4bf071796b104c5ec68060994aa6ce002540d5e5
df87864fc5f59f2d8d45228b88d5abaed8d81e6e3aaa0831fc633be3c0b837ab
GET /wp-content/uploads/2019/08/L1-27.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2720
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:24 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XK1vGoOcjaxhlVcMv%2B9JeUbC%2BnFkIVEMfXOP%2By6oEZkuK7j0j5hazEYYj984%2BHrJQ75MQit7EoiyQQS6m%2FLv%2BB26NqXOjYvronezQ1ToDd%2FcF2NasXfi%2FnTntA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaace2e0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/07/icon-24.png
104.21.6.116200 OK 3.8 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/07/icon-24.png
IP 104.21.6.116:0
File type PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Hash 6ec2ca15eac167e09bc9274bbbc9ae4d
a77199c38c517bcb15bb0b56d4e220e72ebce1ed
6f00b73a6a68041ca02ef00f8e081378c1bc5db9faa47f28287295d7f9534ddd
GET /wp-content/uploads/2019/07/icon-24.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 3800
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eO0kET8O8zrkxjHfGVtHOBS4qp14hh1iF3%2FGhHS2wKiGWy6uktd1XUMkCPCqhVTJmda7YmAPtaiCQQM3t%2F%2FAiMoOwQLrpq%2F6uVFYAF12y2zUkyFuCMg4ABDTCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaa9e070b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/07/icon-23.png
104.21.6.116200 OK 2.7 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/07/icon-23.png
IP 104.21.6.116:0
File type PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Hash 603e2470875caf67eec64d25db7f1557
d0f8a1932639f3cd1203bd856e18cc373d437ddd
fb078e50736a09a458016dba3c24a997d47526643299ae1a7a5b46ab4f27c836
GET /wp-content/uploads/2019/07/icon-23.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2678
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BVjOpv6qut19ZodABZ3aDZXMBAiANT0MyIHFmqQbNOXG7qyc%2FviZlJAHeW8weo9OttLVgyoTL66weogJksZuKtUwSq4F0kBRvXWsR64rb58K8tLU4M0BHdewRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaae0f0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/L1-31.png
104.21.6.116200 OK 3.5 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/L1-31.png
IP 104.21.6.116:0
File type PNG image data, 195 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 90d455540502bbc822ea7d228e2675c0
9cf18013ffdc55dcc4767335840e6016fe60b1e6
86357288c4946cf38d43b141cbccc21089c90606a2dc160e4cb8a9ecfa6ac6da
GET /wp-content/uploads/2019/08/L1-31.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 3534
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:23 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pubh7iufdoouYkB60r7R5HjBe%2F%2BTltL0VTqcOjb5hb3eqja%2FGN6i9AzOH5mGPN5%2BA8xxXn%2FdokS9ZYGNOB27%2BgW6UgSXcIwRZCBJ66LwfRIlVBzrI7K67BPLOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe2a0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/L1-34.png
104.21.6.116200 OK 4.5 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/L1-34.png
IP 104.21.6.116:0
File type PNG image data, 195 x 96, 8-bit colormap, non-interlaced\012- data
Hash 179bab541d8735a96dd6bd6909a55e42
e9230f1de5570080692f68a576ba376c9b03ba84
a7621291a3bccfd2d1b5ac2f83ca2e746181ce5408e47127f639ffa0d16dbb48
GET /wp-content/uploads/2019/08/L1-34.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 4463
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:22 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WKCq5uuDVt1%2BjSMw7LOfc6AQ4hIRtI74DmEtcGe1t92XoKzyB4TRI%2B2UxRZUix7WdOt4xZ9%2BOnbihm%2FKxO1Ifr%2F%2BR%2Fed%2Brk79yjnej24AjQkTnmRk3JRLjPkiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe250b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/L1-28.png
104.21.6.116200 OK 4.0 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/L1-28.png
IP 104.21.6.116:0
File type PNG image data, 195 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 0272aebbb40dbc1be15d6a290a02083b
2c34e69a987577430930e09300be8feeed36d0eb
2643b57ead2255e8645fdc6896aa0b13ac59e62a52cbbeb8d09ca78d7c4587f9
GET /wp-content/uploads/2019/08/L1-28.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 4025
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:24 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DnOwCOqi%2BPgOq%2F%2FzBEFLlEt72eut0biEjOpSvEBmg1gX4bRdvAdX7Mp%2BJcE%2FNJduyeLR79n%2FbjMKWZ0cd5skbfQRucmwUUTt6tV0BJADKsz7lDbIHKNeIe21iw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe1a0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/L1-33.png
104.21.6.116200 OK 2.8 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/L1-33.png
IP 104.21.6.116:0
File type PNG image data, 195 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash b9bdf1ad4f97eb0d8da59152760c23de
67015fb51333a6bf0767917946d94862698fbc7e
13522e4d469a407e690c830ead520780d40b70c7f05ee5fc92b89a766d974d6c
GET /wp-content/uploads/2019/08/L1-33.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2809
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:22 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BGXkSW7YBl%2B58WdLjvsbHxtdMfZCSuu7qRwbCB2DXNAnuZr8bzjXhs1T4C4KgURTJpRIWoOSyOaQFo1NqwVGxlKX6KM7X0qdY4cj7IoJ75lWPaVZ%2F8MrAizB9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaace2c0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/L1-35.png
104.21.6.116200 OK 4.2 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/L1-35.png
IP 104.21.6.116:0
File type PNG image data, 195 x 96, 8-bit colormap, non-interlaced\012- data
Hash d8b557a3277a7200f15b882935740320
00c90c2fc1b225e7c8994e104dffa57e16839849
ef06bc9e07c588d8e675a50f9e6d7d885f9ef6dabd3f6c988f83d332407e633c
GET /wp-content/uploads/2019/08/L1-35.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 4171
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:21 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hRZQx2IQJO7Q%2FVT5G8%2BxqB6M7LqRAVbJZ%2B4cJDlOat0fkbkf8yh1v24WFNxUD9WNk3YEDY0ppoNV3bAlK2XrotK9rFUjpH7slvQmi1EMd0jD%2FKFbrEPUKr6sCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe260b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/07/icon-26.png
104.21.6.116200 OK 3.4 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/07/icon-26.png
IP 104.21.6.116:0
File type PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Hash d124903c2fb8ec8b2d62641c161135dc
9bd058e35122dfc09bc1c32f07f4e7fa6ae6dc66
db318c1da442e433bf4334a9b601872ad0cf54b91bd90b2c942629a58b9392e8
GET /wp-content/uploads/2019/07/icon-26.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 3385
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zRc1tx6E8veZ2YbqKT9kpzwXGoGI20L9IM7K29MunZnF4dILMvb%2F3BmZs5hHw2O3AfBrNZzKqq6Rd%2BxCTlRvH1TpUzJqukhPJa7%2BQcZO6LA8WSLFPG0Gi%2FqdAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaae100b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/L1-26.png
104.21.6.116200 OK 2.2 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/L1-26.png
IP 104.21.6.116:0
File type PNG image data, 195 x 96, 8-bit colormap, non-interlaced\012- data
Hash 463d2f2fab8eb1e654c84b75c59d5a9b
7ab5678de8ebf59df0c7648407318d6e862f75f4
ff3e83e9ef1cd6fa940d459cccf488b41b97595a2b1c838ac1f7e403c946809c
GET /wp-content/uploads/2019/08/L1-26.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2194
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:24 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4H3nplnBURtb4mxBAMtJA9m1cRPPhH1LGhVCbo0AGt%2B0kz9%2FJMrg64U014dbEI41ehwqJPSHxdK2q0nVyfqO0phUlfgzT6XfOGdw9bu8fwNl30qGFIwY2oNbNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaace2d0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/L1-32.png
104.21.6.116200 OK 2.1 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/L1-32.png
IP 104.21.6.116:0
File type PNG image data, 156 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash bf096d2ae83cb42d206255b428f3ce44
da02abcbcfe7ab9569f3f9b28f90766d966e23b8
8b32fb861986c3e72f3294a4fa3d0d3ead9ecb2c1085f23bdc309e9fec63d1b1
GET /wp-content/uploads/2019/08/L1-32.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2135
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:22 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ITXjGsL%2FqEsBnXf0jhcZexnzbkD8hMorxt3fYQdYqeTZYyy3OlnJeXCYbApSIDEnR4jeAlpNScRMUiZ%2BX0nriuGWKHfeARGl4wJnPczSkzUHfl1q1vJdrATUzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaace2b0b39-OSL
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/L1-36.png
104.21.6.116200 OK 3.5 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/L1-36.png
IP 104.21.6.116:0
File type PNG image data, 144 x 96, 8-bit colormap, non-interlaced\012- data
Hash 59facef0b7e668df62e3936bf832a3e6
30d90a12fd2b561edcaf1f464f836e1e7b003b7d
e2af46f7a1f1af2d84d4d39683c4a358dc96e4318998df1b06e34613b66bc1b3
GET /wp-content/uploads/2019/08/L1-36.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 3451
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:21 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tX1RQ62aQQ9gUNcocAnWhX0Am2Ibm1UpJ2Y6s%2BLpaGP7t7UJTsWxTdOdcbRKtkV0Sg36ji4Kx6YypV3KmESpc5bztEJ9VcsGSEpLOfavDrPL1nLubsW6d7aOsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe230b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/L1-30.png
104.21.6.116200 OK 3.3 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/L1-30.png
IP 104.21.6.116:0
File type PNG image data, 195 x 96, 8-bit colormap, non-interlaced\012- data
Hash ae8c267d44da69107744b3cd4fd8eb7b
05a259ca0e42f242a4ffc81c9f9102891d077f6c
45f4b2bb972f28bc258397de50366fcf27c644d96b1de48b63c653b0b7f6d8ae
GET /wp-content/uploads/2019/08/L1-30.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 3323
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:23 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MSEBdsomFRpXXsoJGWb7FPGM8vEUEMFq8MJ%2B41EQ9VVYaYat1u%2BEG3PQMZj%2Fd7%2BPy3VL1yM%2FvE1SZLESBEkLutHX7VLONYE9UZBs7aB5x4hFWTSiCrThmoIQhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe290b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/
104.21.6.116200 OK 20 kB IP 104.21.6.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (24473), with CRLF, LF line terminators
Hash 129d8f62219950022ceda45db30a515a
a8c0cca2178264808e642fb9594312fe2000439f
6a7ced877bd1a42e0f885cf84f7e949c2a9b7dbbf4900d0446d0c21679629cd1
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:25 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.3.33
x-dns-prefetch-control: on
link: <https://bepro.al/wp-json/>; rel="https://api.w.org/", <https://bepro.al/>; rel=shortlink, </wp-includes/js/jquery/jquery.js?ver=1.12.4-wp>; rel=preload; as=script,</wp-content/plugins/litespeed-cache/assets/js/instant_click.min.js?ver=4.4.2>; rel=preload; as=script,</wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1>; rel=preload; as=script,</wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2>; rel=preload; as=script,</wp-content/themes/Divi/js/custom.min.js?ver=3.26.6>; rel=preload; as=script,</wp-content/plugins/carousel-slider/assets/lib/owl-carousel/owl.carousel.min.js?ver=2.3.4>; rel=preload; as=script,</wp-content/plugins/carousel-slider/assets/js/frontend.js?ver=1.9.4>; rel=preload; as=script,</wp-content/themes/Divi/core/admin/js/common.js?ver=3.26.6>; rel=preload; as=script,</wp-includes/js/wp-embed.min.js?ver=5.4.12>; rel=preload; as=script
x-litespeed-cache: hit
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Mon, 05 Dec 2022 04:08:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QR64clxKFZnXN42dlfhnSRHM5la%2Fdx1XD1Rv2qydgyVXRgH4SHYBmNoQuuqmtr%2FPjifc9doGrUmhwrlLsc5Z0k5CuiqgNihC71QWO7phTkNXuGtU6BRZJMp8dg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba60d030b39-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-h2-pushed: </wp-includes/js/jquery/jquery.js?ver=1.12.4-wp>,</wp-content/plugins/litespeed-cache/assets/js/instant_click.min.js?ver=4.4.2>,</wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1>,</wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2>,</wp-content/themes/Divi/js/custom.min.js?ver=3.26.6>,</wp-content/plugins/carousel-slider/assets/lib/owl-carousel/owl.carousel.min.js?ver=2.3.4>,</wp-content/plugins/carousel-slider/assets/js/frontend.js?ver=1.9.4>,</wp-content/themes/Divi/core/admin/js/common.js?ver=3.26.6>,</wp-includes/js/wp-embed.min.js?ver=5.4.12>
X-Firefox-Spdy: h2
bepro.al/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
104.21.6.116200 OK 34 kB URL HTTP/2 bepro.al/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 104.21.6.116:0
File type ASCII text, with very long lines (31997)
Hash 167b4b3aef1415384a1d72a851584464
7edb972190b2048300fb5eb1668e54ec049b91a2
2d29b6f8700dbeda5b83991887d89ef850f3d570946b8eef360a86b9adcb0fb3
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 33836
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 10 Apr 2020 18:49:12 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mgn0xazc9QaNgU5rsq2CFf2KU5YjqltDdTUbuv56hF1CTClYZYeoR%2BP1zsuDLDXAO672G9YTk2fNIM%2BBfyOVY4EJDaMsSvykWkOppv19g40PVuRzrji3F2pjBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9ddd40b39-OSL
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.css
104.17.24.14200 OK 1.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.css
IP 104.17.24.14:0
Hash 7119dac83a7b0347e4ab14f1d0024cd4
48c46915441dfca18ce470ccba46a155d3b70ed7
adc555f73c2ddac365f07c2a365d3773f361fda1990a49e6e6a93ad0f4a9c3e1
GET /ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css; charset=utf-8
content-length: 1597
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ebd-226c"
last-modified: Mon, 04 May 2020 16:11:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sat, 25 Nov 2023 04:08:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dKZPFun2zO5SqketCOti6Pbzol5HiWy0dQzOsEikzx8BSdfbIgo60QVVJ2am0HsySY5U7uqIpCOiNrciUjDL5PQaR2JctDFgSvDo%2FcIRXUDBUEhBiDMK0Isg9Q89MrcXBGdDWaw2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7749ebab0b920b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-includes/css/dashicons.min.css?ver=5.4.12
104.21.6.116200 OK 28 kB URL HTTP/2 bepro.al/wp-includes/css/dashicons.min.css?ver=5.4.12
IP 104.21.6.116:0
File type ASCII text, with very long lines (47529)
Hash b62651a2244a63063170012e9bccec44
65a6cc4943d6b2bb63650086ae5159bed211a8ed
9c03c98b5964ba99d1bf2ebcce31a8fcb1ad9772e9173c5a8e199f602c19fd72
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dashicons.min.css?ver=5.4.12 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css
content-length: 28481
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 16 Apr 2021 01:34:23 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pheulESctYoic%2BIjm6p15wlM0HPxCi51haJIzbqMN7AutxcPxVzzm1tEVxSEPVEx32zvdQzz%2BdFrthUHfOemItxqIZHwBoAs2GqlsD5orighVTPFvasSRo27Ng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749ebaa8dfb0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/p2.jpg
104.21.6.116200 OK 37 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/p2.jpg
IP 104.21.6.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=[*0*], xresolution=98, yresolution=106, resolutionunit=1, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:07:25 16:18:59], baseline, precision 8, 800x572, components 3\012- data
Hash 8342e607d78f70c8c39c512a4cbfbdf2
80ea82170b10b28b78dd6326b2e5758aa925e8b1
c60cc3ecf31108d1c55fcf85e50e42fabecb2b8e5a5e808ed6638fc36c4e9cab
GET /wp-content/uploads/2019/08/p2.jpg HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/jpeg
content-length: 36926
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:32 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1wsH4ibBRUVEYPp%2FKCjpSls30wxBWCXdIqTh6XKwDpXoCVRoWdahYiECQX3rBIwRDjPXHPewc39%2Fy3f3yNFI6%2FG2x%2B%2FiKBmYyfY03fTzfP8pXxmcrecy9VG6Yg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe150b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/themes/Divi/js/custom.min.js?ver=3.26.6
104.21.6.116200 OK 63 kB URL HTTP/2 bepro.al/wp-content/themes/Divi/js/custom.min.js?ver=3.26.6
IP 104.21.6.116:0
File type Unicode text, UTF-8 text, with very long lines (20990)
Hash 0b894352c2ce37bf0d5ebfb68e6748d6
ddb465ee3930a74a5115e5f962e5218aa054ed92
e59047998bf1933a0573b04b8ef29bf0f645436c6001da8e070d0f454c8592c2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Divi/js/custom.min.js?ver=3.26.6 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 63379
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 10 Apr 2020 18:49:10 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RKXbomxqnHUuXPm6US5HjMfmHvymCXQ1%2BF5C2lmp6mhHdyGYVrTLDq%2BZEEsXfnT97mw%2B3ue4otdBXwCRaiOtm%2FkVNic8oEmTEP1xMzFe%2BXMk4oNSjCbExdaMVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9ddd80b39-OSL
X-Firefox-Spdy: h2
bepro.al/wp-content/themes/Divi/style.css?ver=3.26.6
104.21.6.116200 OK 73 kB URL HTTP/2 bepro.al/wp-content/themes/Divi/style.css?ver=3.26.6
IP 104.21.6.116:0
File type ASCII text, with very long lines (64928)
Hash 95795607d4688e505211803454039c13
bdc0ade2aafa5b6ecf5f5de2813a2a2576721214
4a9725e441289dcd6127ab21562c0a048a94bc4c22d5a24b05db568fb3be0266
GET /wp-content/themes/Divi/style.css?ver=3.26.6 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css
content-length: 73007
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 10 Apr 2020 18:49:10 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LHi%2Bl4%2FznshePq6%2BqfbUeczaFOtzj9dHLUra8Mu7B3Y%2FPKhzNh7%2FAlvAA5LHVUdzveroo%2FGnxftw8LjAnlx4glBh48rHwjgTAH4gTFjvPlzIaTQSxHlpQyTiIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749ebaa8df80b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/07/bepeo-web.png
104.21.6.116200 OK 60 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/07/bepeo-web.png
IP 104.21.6.116:0
File type PNG image data, 657 x 853, 8-bit/color RGBA, non-interlaced\012- data
Hash 58b257a028cc6519da331dea549c76b1
358c2b108e86fa9cc16b2f36d89a4045de1d2b9a
ef78411203dcdfc20f0d7a180a51544f23bd12ad37364ce530ba119fba210a34
GET /wp-content/uploads/2019/07/bepeo-web.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 59911
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jg%2BEmSy4XJdKNnabIjX0gTHgfCq%2FBgl3otM2NVc4FWE7BwFddSjCuY8VqC5eueHFW32RH8EuCBatlwFCCvnItEDTo0sNk4HYz7hMQfQfyAlKIW7KKNGA0duiOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaa9e030b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/p1.jpg
104.21.6.116200 OK 42 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/p1.jpg
IP 104.21.6.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=[*0*], xresolution=98, yresolution=106, resolutionunit=1, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:07:25 16:17:56], baseline, precision 8, 792x563, components 3\012- data
Hash 1d92415e9267ad5e16c14a7e28e04734
4011acdc2c10b4ff8ad6f488ffcfb3754368a3ba
b426fa2f8f4b789322fd236679c48f71dcc3cb67e52d57b3332bf80822756d9b
GET /wp-content/uploads/2019/08/p1.jpg HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/jpeg
content-length: 42123
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:33 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=unpMm5AYru09noLlDo4ndHMd0LfhYAqqK8B99jCD0oTIU%2FKtYGzrIiOE70H1ZBGtCQC0ow99FIqv1aYCAcxMkpGl0ocmSr33XvUWgD5ZZASvYj4eSm47qvy9aA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe130b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/p5.jpg
104.21.6.116200 OK 41 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/p5.jpg
IP 104.21.6.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=[*0*], xresolution=98, yresolution=106, resolutionunit=1, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:07:25 16:18:39], baseline, precision 8, 797x574, components 3\012- data
Hash 71bc9a63f0c4d64795e3afea96c42008
0ada49611c07e98f06a0e435196379002d95200a
8b53a6b5131ac554e44dfe3fb54a8f4fee12bdbbd06bbc802317dfbfb7f798c6
GET /wp-content/uploads/2019/08/p5.jpg HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/jpeg
content-length: 41099
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DVefi%2BrpHzdgeNu7u5jUqubVijCxQd%2B0%2Fhl5MZkDSZNslSFEk5khKctas38HkTEP4yBi44b0QNmXwSzSRA90w3vNxwpZIa95KRY%2BnMBKQfTkNUP2z4kkBolwEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe160b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/p6.jpg
104.21.6.116200 OK 40 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/p6.jpg
IP 104.21.6.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=[*0*], xresolution=98, yresolution=106, resolutionunit=1, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:07:25 16:18:33], baseline, precision 8, 800x572, components 3\012- data
Hash 4c50ea30291792876d2145699cbf5a16
ec94e7d78407bd109cbd58ab6578cc3d990d80e6
cefe8d6c774e1b9d56975795cf01cd185f73a89362f1fd7af850870fbec94964
GET /wp-content/uploads/2019/08/p6.jpg HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/jpeg
content-length: 40268
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:25 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F0KspaUk0FHpAE%2BvyT54riF3CqNP4jAb0XNTDtQ%2B%2BtYeSiyQhseG6RRB40Q3YiUpyMaunWbqR4ATvmxqcysYF8PelOLMOhyKN1zyLQ41usNq0No5ZtgAcW9a7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe180b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/p3.jpg
104.21.6.116200 OK 57 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/p3.jpg
IP 104.21.6.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=[*0*], xresolution=98, yresolution=106, resolutionunit=1, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:07:25 16:18:53], baseline, precision 8, 796x572, components 3\012- data
Hash 000eb17623184f05063ff2cc679ce7d5
422742bab3eec6e54c27f5829e5d5b5f804ad7f0
317dfb374aea6e421a802ce8fc9318050b2e059968f23355944071a6ee39d472
GET /wp-content/uploads/2019/08/p3.jpg HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/jpeg
content-length: 57237
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:30 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vP5hFC0qX3OnROJpB33QHgG%2FuAh2dfW%2FxPqv3liEM4%2FuLRpejI6uFW3bdHnROu%2B%2Bq2c4LteSjgUZCM1dzIUxKJZnM2CCPvmDpT6TrkW6BicwQHXggp%2ByWkKxjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe170b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/p4.jpg
104.21.6.116200 OK 81 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/p4.jpg
IP 104.21.6.116:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=[*0*], xresolution=98, yresolution=106, resolutionunit=1, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:07:25 16:18:45], baseline, precision 8, 800x574, components 3\012- data
Hash c330f9562a1ced4e11d012546b66c103
558661a8cd7a70f22722e16c7abc26fe8dcb73d0
7b1e0eebee799b92db639d8cce3d06d8e38d21fcd08192ffd1aa79b8c0fb2e16
GET /wp-content/uploads/2019/08/p4.jpg HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/jpeg
content-length: 81098
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:28 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O62Bz24Xu6IPaS%2BJ1j9E5s1%2B0ROUZjwaYdOvx9i%2FgdN39RrERR02idGOij7jKAK0MPxZAdmnl0qEjZbPqXCsoGuUg%2B0K41NI1WIRKtU1SaqHmm34Xm9bNKnAjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe140b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bepro.al/wp-content/uploads/2019/08/circle-05.png
104.21.6.116200 OK 157 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/circle-05.png
IP 104.21.6.116:0
File type PNG image data, 1093 x 1092, 8-bit colormap, non-interlaced\012- data
Size 157 kB (157072 bytes)
Hash 5927c13d521d6616fe5f5fc5101d0ac1
84cd5fd228d17466b61fa7857367f041f8b4cf4f
aa3c43834a562af185790f63e5a4d4996e77274685ce788c6ec66e13e8926729
GET /wp-content/uploads/2019/08/circle-05.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 157072
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:45:54 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TNXWfDyD02Wh0issm4T3Rjk%2FzViNSjjLt%2FooIfZksx1IaqoE%2BwQnoLEtaHRF68pc7hFjPnjX67vFbwbboOFWJGwawfg%2BLqlYBsQbVykoM7rQoi7eV6OsbPbutw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaade320b39-OSL
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/lapi.png
104.21.6.116200 OK 119 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/lapi.png
IP 104.21.6.116:0
File type PNG image data, 1214 x 761, 8-bit colormap, non-interlaced\012- data
Size 119 kB (118951 bytes)
Hash 0832195c9830ba5b4476a0dee5ccc3ac
7131b4027dc41c462e2d013e5665acc1928460f9
004a8a3e9800146f3c39a7968daa327e110dd6e8930c9fe1c405e18651f08d0b
GET /wp-content/uploads/2019/08/lapi.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 118951
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:35 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ksRV%2Bx6khD5rxjswtMpDuA6uw7QrswIFlduYiqP44pi8ogmbEF73yp%2Bl6dkZnpUm6VUR8dHUhfOs8pm7DgiSJtK0C3QarR8hz%2FmnMWYWKfpRLDzi6gfy9rHcow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe120b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bepro.al/wp-content/uploads/2020/06/DSC_2781.png
104.21.6.116200 OK 188 kB URL HTTP/2 bepro.al/wp-content/uploads/2020/06/DSC_2781.png
IP 104.21.6.116:0
File type PNG image data, 1093 x 1093, 8-bit colormap, non-interlaced\012- data
Size 188 kB (187928 bytes)
Hash dfd62897d9933de9190da4a9a6a3aaf0
15ab323a0cf857931c3302b68214e6e724af06f1
d2d1fd931e400afb5b0729c235ca81d2cdc048f12997f779fd8653136a681f83
GET /wp-content/uploads/2020/06/DSC_2781.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:27 GMT
content-type: image/png
content-length: 187928
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:39:49 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c%2B2ZImtpV5mxW%2Bl5zjF1mVrQxjzhgLhPBV62BFDt0D8jGl0h9npBb3PV6kekDozj%2F3H596UThKjo%2BQ0nqNLKplOpg4Rz6fcF7GYRfJra3DZnyTo37%2FwQHBNOXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaade330b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.35200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bepro.al
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 06:30:11 GMT
expires: Sat, 02 Dec 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 250696
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/circle-04.png
104.21.6.116200 OK 187 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/circle-04.png
IP 104.21.6.116:0
File type PNG image data, 1093 x 1092, 8-bit colormap, non-interlaced\012- data
Size 187 kB (186747 bytes)
Hash f0864b6b8a16b56d18a83976dd86a9da
ec573ca4a4dc5d78749c196281100ed952e0cc53
e974a610f8dee760195260fb750b3fbe603453b55d2df8a8cdb12cc98b9e5c08
GET /wp-content/uploads/2019/08/circle-04.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:27 GMT
content-type: image/png
content-length: 186747
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:45:57 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lmts8LjOZ8qdN0JquieAuXH%2F%2BmPfJqkpQo4FSLF058Lu%2BKBWdMH5AOMq0asfeY8BIcLYKnNlhhOPLA3rJ%2BhIZ0UEubbMaUt17cQgOFBsTR7nQLxO0YWrOxzrrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaade300b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/drawing-17.png
104.21.6.116200 OK 97 kB URL HTTP/2 bepro.al/wp-content/uploads/2019/08/drawing-17.png
IP 104.21.6.116:0
File type PNG image data, 1093 x 1093, 8-bit/color RGBA, non-interlaced\012- data
Hash caf9288e0879e0d401382a6bc2b56252
73089ef32bfd1562f302dcaaf254cb80511059e9
a33a7cb49edf3ce61b4e065bcfad8ab83f024a498f7d5eae6933373dd3a227a4
GET /wp-content/uploads/2019/08/drawing-17.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:27 GMT
content-type: image/png
content-length: 96797
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:45:51 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FZJHVyxy5YufKDtUOmc%2F1qqC2QeCdD7NYML5DIvAB9oA%2BfZqv9btnkv%2FnW7x%2Bi9K%2BpBiyQkWuWBoicOnETVv1cZkCMOweEw1VlanFrJUHppNpezSsCnTZRQ4qg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaee380b39-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bepro.al/wp-content/uploads/2020/09/Adi.png
104.21.6.116200 OK 216 kB URL HTTP/2 bepro.al/wp-content/uploads/2020/09/Adi.png
IP 104.21.6.116:0
File type PNG image data, 1092 x 1092, 8-bit colormap, non-interlaced\012- data
Size 216 kB (215528 bytes)
Hash 69ffbc98db1205d9cbda40a98a6efce9
11797ce5f1742c9fccc250da1ac7c8e40276729a
e53bfe960d228fc99d35413badc71c057b61ab013acbeda93da438edcf8662dc
GET /wp-content/uploads/2020/09/Adi.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:27 GMT
content-type: image/png
content-length: 215528
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:26:36 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9W%2BstbzEHrt04Yo03MP%2FKHyBSwzkdPopReYbdYeVxBD7gk4VEjRfMd9MYI6xxEsKs4U%2BCEV5Lfj8APF77a2DP3K1NAjrL3dVP0EnFxojD7LWGRBU4iiEDBeQEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaee360b39-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8859
Expires: Mon, 05 Dec 2022 06:36:06 GMT
Date: Mon, 05 Dec 2022 04:08:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8859
Expires: Mon, 05 Dec 2022 06:36:06 GMT
Date: Mon, 05 Dec 2022 04:08:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8859
Expires: Mon, 05 Dec 2022 06:36:06 GMT
Date: Mon, 05 Dec 2022 04:08:27 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a349d02cce160f72cc93f6fb6e45fa46
a6f82481ea0a820da0f199e8f9051a4aa4013c82
ab320118577a2dcb6ab7ad904d6350e187501a94b39b71fdd70b31cbc8853b24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6826
x-amzn-requestid: f0abdba6-14c8-4aae-ba3b-37ba0af2ff08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_t2FsLIAMFekA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1325-3452be066acddb554f528cc3;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GS4yLzXiIZt-eL9T7gjbf2-vMu8i30WKPDmc2EQDxv0CELjdW1gMVA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:46:51 GMT
age: 22896
etag: "a6f82481ea0a820da0f199e8f9051a4aa4013c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24c69d7ef356b352956d6dcbc9f5df1d
2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9
94d068620c34652cb2d24ca8b3cf962febe9606e6d3a33d937fc9d99f176edef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10396
x-amzn-requestid: b879fd2e-b6cf-4373-b780-2d97481c45f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cioNbH5KoAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a8722-6add7f8e225878473b20c015;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 23:15:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ir97GJKaFoW6BNXCcmMqp0JSUd5JhCACyUvLh5G-0BWCDVJsqs7XhQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 22:03:01 GMT
age: 21926
etag: "2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6079166a1ed5bac7373183f03f33b84e
b0c9391b87a4560598e43d5084dda41e267974a9
3e2faccbc3e14a10da4a433d789068cdc3fb2d3e2a04a7e2b7ea5f6f6313dcd4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13647
x-amzn-requestid: 36276b12-9e02-4d00-a100-9aa5c794fc79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_ueEWUoAMFj7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1329-7abb45a85c6bc2235c25d61e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oXeR8DTpEoK8E-BiI7gT4JEIdVBfiimfydNYIC62_rNLlTdem9Buig==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:45:46 GMT
age: 22961
etag: "b0c9391b87a4560598e43d5084dda41e267974a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9e8d044-2cda-4dba-9da8-c0a296845bca.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9e8d044-2cda-4dba-9da8-c0a296845bca.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b8e6f84dff61fedd8ff9baa9bb648883
f8d5cc7b315879b66a11b403463da1330617d2fa
025c66a4a0e7927353e1733d7f8cfb6ec3c9c0228d34267cbff11f09cf112127
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9e8d044-2cda-4dba-9da8-c0a296845bca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12348
x-amzn-requestid: 72f681ef-9ae7-4fc5-8539-230e1d4277a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKa_HpTIAMFrcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abddf-43ef45165fd982997e5018c8;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:09:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ee7Rihwq-F-zcJWcnxZtfzfmhrn0w3mub_5F4j8u0r2Uc91oXrKPzA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 04:17:01 GMT
age: 85886
etag: "f8d5cc7b315879b66a11b403463da1330617d2fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f71032604eecccf0a81f323a5f96a400
f8866d4f3185bcf7871581d75339998b34d6cf6d
d053eedc717d7fd86e621ba948680be16538396d1ba9854b6816626d149b1c57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6886
x-amzn-requestid: d721caf6-2252-4ede-9533-3d3fcd6cce0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpsw-FfRoAMFtOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d5b39-7644a195142f6c420ec7eac6;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 02:45:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RwhNdxS-EBTraqzS_TnCNXj3JXgz5NkO8oLyQaHOhHdtnvBbg4vsRQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 02:45:13 GMT
etag: "f8866d4f3185bcf7871581d75339998b34d6cf6d"
content-type: image/jpeg
age: 4994
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1caf4c1-b9c0-4db1-a780-00b9a6198731.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1caf4c1-b9c0-4db1-a780-00b9a6198731.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8d76ec668361348eb17d54001fd2e6c6
534299a20a76ea6e3250f0fb35fe772cac04ef51
22676fae3909acf18e6cd4f505ec718fdac156990edb20926afdae2a359a2859
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1caf4c1-b9c0-4db1-a780-00b9a6198731.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5209
x-amzn-requestid: 682056d5-7815-4fd1-b05b-723619128d8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKUXF5eoAMFRvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abdb5-6df5d866267739212832ee66;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:08:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TUn27-HAzSq5FHhr2K7W377QRIQqOh9owE1xVL6BQetiK9U-jtwbsg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 03:45:47 GMT
age: 1360
etag: "534299a20a76ea6e3250f0fb35fe772cac04ef51"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/circle-02.png
104.21.6.116200 OK 146 B URL HTTP/2 bepro.al/wp-content/uploads/2019/08/circle-02.png
IP 104.21.6.116:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /wp-content/uploads/2019/08/circle-02.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 198703
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:46:04 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oASDjxfiU0Yf%2B3OZcW46ZZOzXuDRTvbZJqSHyURCFln%2B2ZbF44YkyyuaFNZM1eCZjm0l74z3s61cU2ONPDArnYqi1YuPIpskbK5mBZwgMmYO1HBzRz2NReo7dg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaade310b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 58 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Hash cc07150a8145f0230f17c0e5dc629fbf
c3433c5c74c0e7a887b4f23e834c031f93da4b94
9901a381cbbcd5c406233c881abdb8accec9e2012a16dfad5fb009df6d701f6c
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 05 Dec 2022 02:41:08 GMT
expires: Mon, 05 Dec 2022 04:41:08 GMT
cache-control: public, max-age=7200
age: 5239
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 33002e87ed87cec83ec76bdfe55cb33a
a2dafcefab949833412ab20508096c9974b9e359
f73d30247eb325d9dc9531381224e8942b39b56c264ade1618855f1fad9eda2a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3035
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:27 GMT
Last-Modified: Mon, 05 Dec 2022 03:17:52 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
157.240.221.16200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.221.16:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: sBL+cZC+RGXYdmDwK/lcAg5XC9sHaJOg0ItUSSIaFgdCFbZOpNXqZEu0jmRVtO8nxMRH2xo2KLRrl/onTFUGTg==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1679558926
date: Mon, 05 Dec 2022 04:08:27 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 33002e87ed87cec83ec76bdfe55cb33a
a2dafcefab949833412ab20508096c9974b9e359
f73d30247eb325d9dc9531381224e8942b39b56c264ade1618855f1fad9eda2a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3035
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:27 GMT
Last-Modified: Mon, 05 Dec 2022 03:17:52 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
www.facebook.com/tr/?id=231788647900228&ev=PageView&dl=https%3A%2F%2Fbepro.al%2F&rl=&if=false&ts=1670213305322&sw=1280&sh=1024&v=2.9.89&r=stable&a=wordpress-5.4.12-2.1.0&ec=0&o=30&fbp=fb.1.1670213305321.1365527288&it=1670213305114&coo=false&rqm=GET
157.240.221.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=231788647900228&ev=PageView&dl=https%3A%2F%2Fbepro.al%2F&rl=&if=false&ts=1670213305322&sw=1280&sh=1024&v=2.9.89&r=stable&a=wordpress-5.4.12-2.1.0&ec=0&o=30&fbp=fb.1.1670213305321.1365527288&it=1670213305114&coo=false&rqm=GET
IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=231788647900228&ev=PageView&dl=https%3A%2F%2Fbepro.al%2F&rl=&if=false&ts=1670213305322&sw=1280&sh=1024&v=2.9.89&r=stable&a=wordpress-5.4.12-2.1.0&ec=0&o=30&fbp=fb.1.1670213305321.1365527288&it=1670213305114&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 05 Dec 2022 04:08:27 GMT
X-Firefox-Spdy: h2
bepro.al/wp-content/uploads/2019/08/circle-01.png
104.21.6.116200 OK 0 B URL HTTP/2 bepro.al/wp-content/uploads/2019/08/circle-01.png
IP 104.21.6.116:0
GET /wp-content/uploads/2019/08/circle-01.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:27 GMT
content-type: image/png
content-length: 176135
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:46:08 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2ilghlgfj2kIvU4xJZHcvihTTVhEX%2F4Dm8COJYcO0fMXmUyNkJo5ynlCHzo3ScWCAS2IaZl7%2B9Enmj5d9x%2FfH4n%2BlH0nxZeeL52fKJv%2BnaF3VRyyEZMIJGY1MQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaade2f0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bepro.al/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
104.21.6.116200 OK 0 B URL HTTP/2 bepro.al/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 104.21.6.116:0
Analyzer Verdict Alert fortinet Malware
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
last-modified: Wed, 30 Nov 2022 18:31:41 GMT
etag: W/"6387a18d-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7wvjE2Tdk5VDaEHlCYVGnVAcyFlHsnQ6mHdsya7GsgkV2aiEztgLBANWOxZRYNznSm10GSORv%2FrW0krYBvGr%2FQnGtjc1dg12Lsudaj0Dc%2BQ5XYprretIiTarvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaee3c0b39-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Wed, 07 Dec 2022 04:08:26 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
code.jquery.com/ui/1.11.1/jquery-ui.js
69.16.175.42200 OK 0 B URL HTTP/2 code.jquery.com/ui/1.11.1/jquery-ui.js
IP 69.16.175.42:0
GET /ui/1.11.1/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-encoding: gzip
content-length: 112090
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-71633"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670213306.dop065.sk1.t,1670213306.cds247.sk1.hn,1670213306.cds218.sk1.c
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.6.3/css/all.css
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.6.3/css/all.css
IP 172.64.132.15:0
GET /releases/v5.6.3/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bepro.al
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css
x-amz-id-2: /yzJNGwPlrO4qRZsWGgkmzfL7gJ2qYrtf9ByKoo3vVM19j/uaBDRD8l8vZXWDNQtZuGVATU8hgE=
x-amz-request-id: 624P5AKMN9BYECEH
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:44:33 GMT
etag: W/"dc93d584e41f8417f6b7163320d34329"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3JBuNu14qCkPGOE74klBV%2BXGxAkbnSIE1RxZqpz5je49gIcmKFwU2LmwCDlvboBdM3VUrL01d8HHDUBr4sixt4SxK33JDmwxXO8XYX066vthh9P1MA535UVY6jQFOQj3h2Gcwgik"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749ebab5bf3886e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.4.12
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.4.12
IP 142.250.74.106:0
GET /css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.4.12 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Dec 2022 04:08:26 GMT
date: Mon, 05 Dec 2022 04:08:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2