Report - bepro.al/

Report Overview

Submitted URL
bepro.al/
IP
172.67.134.197
ASN
#13335 CLOUDFLARENET
Submitted
2022-12-05 04:08:36
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
24

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	80 kB	69.16.175.42
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	5.6 kB	216.58.211.3
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.41.252.32
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	482 B	32 kB	142.250.74.35
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	62 kB	34.120.237.76
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	366 B	29 kB	157.240.221.16
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	597 B	349 B	157.240.221.35
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	10 kB	104.17.24.14
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	44 kB	142.250.74.168
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	365 B	58 kB	142.250.74.110
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	6.8 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
bepro.al	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	23 kB	1.7 MB	104.21.6.116
use.fontawesome.com	942	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	412 B	1.0 kB	172.64.132.15
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	558 B	746 B	142.250.74.106
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.33.119.27

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-05	medium	bepro.al/	Malware
2022-12-05	medium	bepro.al/wp-includes/js/wp-embed.min.js?ver=5.4.12	Malware
2022-12-05	medium	bepro.al/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	Malware
2022-12-05	medium	bepro.al/wp-content/themes/Divi/core/admin/js/common.js?ver=3.26.6	Malware
2022-12-05	medium	bepro.al/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2	Malware
2022-12-05	medium	bepro.al/wp-includes/css/dist/block-library/style.min.css?ver=5.4.12	Malware
2022-12-05	medium	bepro.al/wp-content/plugins/carousel-slider/assets/css/frontend.css?ver=1.9.4	Malware
2022-12-05	medium	bepro.al/	Malware
2022-12-05	medium	bepro.al/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp	Malware
2022-12-05	medium	bepro.al/wp-includes/css/dashicons.min.css?ver=5.4.12	Malware
2022-12-05	medium	bepro.al/wp-content/themes/Divi/js/custom.min.js?ver=3.26.6	Malware
2022-12-05	medium	bepro.al/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (28)

	URL	Size	First Seen	Last Seen
	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-08	2023-11-28
Pretty URL connect.facebook.net/en_US/fbevents.js IP 157.240.221.16 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-11-28 17:55:58 Times Seen32 Hash a6ef7927128284961f4cadd572969f09 57e21033749687e69de710a0be6d4244edf1fe51 d5c905d7ce4679b183eb11f7c6811682ddffbf0f037590360ae2b1a84a51ef1b Loading...

	bepro.al/	47 B	2023-03-07	2024-04-23
Pretty URL bepro.al/ IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-04-23 13:49:37 Times Seen6621 Hash 2f518cfc8223c53c44094f57eacc972f a919f586352875054a0a7f438c3e3d33cb5768b3 1d89df5c4aeb93c45e67d479e74ca02e5a104d7e421e4f2415e4a204c9816b0b Loading...

	cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.min.js	6.6 kB	2023-03-08	2023-11-28
Pretty URL cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2023-11-28 10:56:12 Times Seen5 Hash 00a88512d92063be91f4dc9aee908a9c 0e920dcc97fc054e12b73a7818c1fe0f77e5bb69 38bf2d57a38d4edc8d57070b371d077d5d1156fade5b5aef042bbf36fdb3231a Loading...

	bepro.al/	82 B	2023-03-08	2023-03-13
Pretty URL bepro.al/ IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2023-03-13 07:13:13 Times Seen1 Hash 63d53f9b12ff23a66d5fb5387435efb6 ab303525d3107dd85f5a3bdf9c1976db052e707f d43478d278f5358cc79ce45aa1b05f509f02eeb976645a3305b96e37e9a575f5 Loading...

	bepro.al/wp-content/themes/Divi/core/admin/js/common.js?ver=3.26.6	1.4 kB	2023-03-07	2024-04-23
Pretty URL bepro.al/wp-content/themes/Divi/core/admin/js/common.js?ver=3.26.6 IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:40 Last Seen2024-04-23 13:49:38 Times Seen1377 Hash 82b34a0f20682b94458a89521a92c7ca cd97bdd72c8f7ca65a37ea7d78ff71580633169a c05ee8fac93fde19412046a913b9aecd86210aba6b72cff7c94e01170dd11e3b Loading...

	bepro.al/	382 B	2023-03-07	2024-04-11
Pretty URL bepro.al/ IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:11 Last Seen2024-04-11 14:36:29 Times Seen1005 Hash fc9be1f90b34ea9b460669e6d39663ed a5df6bb03ac3c2a09f07e0bc7ab0b5f9553b5c8e 31bd4b0882dd13a90dab3b1fb9795f645979fa959e17f5873865fe1a5f9f912c Loading...

	www.googletagmanager.com/gtag/js?id=UA-45543016-13	112 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=UA-45543016-13 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2023-03-08 16:32:59 Times Seen1 Hash 4dee56a5490914d3a2b1e8dff4600903 cd2bfdf0ed56eb804bc3d0e7b2dbe3ce0db262f4 5953de95c92b7802c60d110343997b04d23305c99adb409aa29e8fd154262539 Loading...

	bepro.al/	1.4 kB	2023-03-08	2023-03-13
Pretty URL bepro.al/ IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2023-03-13 07:13:13 Times Seen1 Hash 8cf160d6b289304fe0ce027ed2721a3f cfa31e9d88a939df476d1d5d31f71d4158db4f87 94f55b2b22accf2370261badd5f9de655893354816774a18fc2f9b494998acf1 Loading...

	bepro.al/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2	14 kB	2023-03-07	2024-04-18
Pretty URL bepro.al/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2 IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:28 Last Seen2024-04-18 02:51:38 Times Seen1671 Hash 309e1a27ab5c8722dea8f46fc8c384d5 784a35686079a37cf469e27fd7efa1b2fac7ac97 a0ea735f765d5bc1230beb63bcb701b69c80d77c48572a61bb159a8915903278 Loading...

	bepro.al/	2.2 kB	2023-03-08	2023-03-13
Pretty URL bepro.al/ IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2023-03-13 07:13:13 Times Seen1 Hash 82f969fbdb06114f9d9a9a219beccb29 9b2d407e7f13a9433f3e031ee0db5b3c7e0d9bde 445888de06d0cace2edcbf3ea9b8a2f8742f36b7acb475b30b0bfabd138a873f Loading...

	bepro.al/wp-includes/js/wp-emoji-release.min.js?ver=5.4.12	14 kB	2023-03-07	2024-04-18
Pretty URL bepro.al/wp-includes/js/wp-emoji-release.min.js?ver=5.4.12 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-18 02:51:38 Times Seen2868 Hash c8d5a4cd14632bc2bdf15b5e45ca9d4d cdf210b710c2792eda450a1a11e5dc1f8dae8594 956fa56f513e1a8025bc85f9314a1747eb061d434403393591145e4ae898c694 Loading...

	bepro.al/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-04-23
Pretty URL bepro.al/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-23 18:39:48 Times Seen54716 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	connect.facebook.net/signals/plugins/identity.js?v=2.9.89	65 kB	2023-03-08	2024-02-19
Pretty URL connect.facebook.net/signals/plugins/identity.js?v=2.9.89 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:50 Last Seen2024-02-19 23:40:48 Times Seen4401 Hash ed5d6caf417fab681343bc3414babc55 410ba8d8866d7c7df41f21526345cfb7426386f2 7e86f52cb0d423805ec541a4bccae5156a01fbe36355e6d798a450593212651f Loading...

	bepro.al/wp-includes/js/wp-embed.min.js?ver=5.4.12	1.4 kB	2023-03-07	2024-04-22
Pretty URL bepro.al/wp-includes/js/wp-embed.min.js?ver=5.4.12 IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-22 22:46:20 Times Seen6871 Hash 905225d5711b559d3092387d5ffbedbd 6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d 5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991 Loading...

	cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.js	24 kB	2023-03-08	2024-01-25
Pretty URL cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2024-01-25 14:53:38 Times Seen16 Hash 94a489e545f060e5c925027ca83d9427 9f4b24703a0ec9808fd9784139ab8d785510bf7e d1bccb90fe6fc3ade3b567dce92f6f640e2a9e3a4b942a9941166c8d069c7855 Loading...

	bepro.al/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	10 kB	2023-03-07	2024-04-23
Pretty URL bepro.al/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-23 19:29:24 Times Seen37153 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	bepro.al/	161 B	2023-03-08	2023-03-13
Pretty URL bepro.al/ IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2023-03-13 07:13:13 Times Seen1 Hash 3932fa6334000e9d5cce2a38f592ba63 596535eddb7b5f856d4fc1d67f56953c3b34a85f 6127ae45744691db3995b4cf8c2f3127970edf95e66a87d6a247a4a3b3019b8a Loading...

	bepro.al/wp-content/plugins/carousel-slider/assets/js/frontend.js?ver=1.9.4	2.9 kB	2023-03-07	2023-12-27
Pretty URL bepro.al/wp-content/plugins/carousel-slider/assets/js/frontend.js?ver=1.9.4 IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:26:22 Last Seen2023-12-27 11:19:25 Times Seen7 Hash 73f00ee4490cfa2d3c8c3466d0ca8e78 aafa75d6c30501a37e91af4ec8642210cb55a2f2 5f33f9ff91d186e1ffdcbdc263b39b0b263528a27debb3cdf3e174e7ff041e42 Loading...

	bepro.al/	348 B	2023-03-08	2023-03-13
Pretty URL bepro.al/ IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2023-03-13 07:13:13 Times Seen1 Hash fb5e43afd60fa7109f5d83228842310c 73b6320412a7b5dcc99d4606902c14f2f7b05c58 41a07075a2769d79dbbd0e6d4cebf1ed813dd57e0bf89de8d26aca1562b29706 Loading...

	unknown	0 B	2023-03-07	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 19:32:27 Times Seen37024097 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	bepro.al/wp-content/plugins/carousel-slider/assets/lib/owl-carousel/owl.carousel.min.js?ver=2.3.4	44 kB	2023-03-07	2024-04-23
Pretty URL bepro.al/wp-content/plugins/carousel-slider/assets/lib/owl-carousel/owl.carousel.min.js?ver=2.3.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-23 16:57:01 Times Seen19882 Hash f416f9031fef25ae25ba9756e3eb6978 e2a600e433df72b4cfde93d7880e3114917a3cbe a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d Loading...

	bepro.al/	33 B	2023-03-07	2024-04-10
Pretty URL bepro.al/ IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:11 Last Seen2024-04-10 08:27:28 Times Seen468 Hash 5850b11cf2e56e5715422af511623acb 06f00cd661cdab1c17d5205f3663ad18cb4286fa 658df6612fe50894b16579a987b8d181956854ba1e23e47f0e3dd0cd92b1e668 Loading...

	bepro.al/	155 B	2023-03-08	2023-03-13
Pretty URL bepro.al/ IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2023-03-13 07:13:13 Times Seen1 Hash 897ac2f5fde67217cebacb23228e0ad2 4462e1fd7dc61109b86ef40307117215f2f4cd6e e073e348f4e6b1b67f7b574414c66e2bc99c05b30ca620821865bc6f2550bcd0 Loading...

	bepro.al/	365 B	2023-03-08	2023-03-13
Pretty URL bepro.al/ IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2023-03-13 07:13:13 Times Seen1 Hash c707c4fde37a1d8c8070f24c75d44d92 2d441efb076838372d5ca1ef3a792e76b5100d91 6bd9a51018548628232ec1b7ba4a9ec19a6b64dad8109cf87785913560009dd2 Loading...

	bepro.al/	1.1 kB	2023-03-08	2023-03-08
Pretty URL bepro.al/ IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2023-03-08 16:32:59 Times Seen1 Hash a59a5399ea06441e897bb71831698842 ef4c337a80f27c518e705b7a2dc98bcc9a81a9e9 5c00028f96f68452c4980280179a41aa4bb667c22476c94da74886a5b58f565f Loading...

	bepro.al/wp-content/themes/Divi/js/custom.min.js?ver=3.26.6	273 kB	2023-03-08	2024-01-05
Pretty URL bepro.al/wp-content/themes/Divi/js/custom.min.js?ver=3.26.6 IP 104.21.6.116 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2024-01-05 17:29:26 Times Seen14 Hash 386286c78be467b41124ac48f637fb47 d5373b8ec9de44037dede991e9d1b7837abc9d30 34598a8b83a3a8be95976e5e7b504d5029fadbd9589122b7dd1ebea248bee4bf Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-20
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-20 17:36:09 Times Seen1522 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	connect.facebook.net/signals/config/231788647900228?v=2.9.89&r=stable	300 kB	2023-03-08	2023-03-11
Pretty URL connect.facebook.net/signals/config/231788647900228?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2023-03-11 15:58:27 Times Seen1 Hash 47a3247b8a3e7f9a4e6f6149912b5e80 53c85114eb038c7d86b56bd2dc12f229432f0b66 52a0c54b96293d63b4b307ae86601716c99c858232c09681aee29f97e8420498 Loading...

HTTP Transactions (103)

URL IP Response Size

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3446
Expires: Mon, 05 Dec 2022 05:05:51 GMT
Date: Mon, 05 Dec 2022 04:08:25 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2185
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:25 GMT
Etag: "638c76f5-1d7"
Last-Modified: Mon, 05 Dec 2022 03:32:00 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3213
Expires: Mon, 05 Dec 2022 05:01:58 GMT
Date: Mon, 05 Dec 2022 04:08:25 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 03:20:12 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2893
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: hyNp7UXbnxSqnvmZ7gdagg9ceRCfngbu6PWL/1hFrDdjbmagpH2/pPYljYU77x8vKU44+8aZCOA=
x-amz-request-id: ZT90G68CWMKNDH00
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 03:47:49 GMT
age: 1236
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

bepro.al/

104.21.6.116

301 Moved Permanently

694 B

URL HTTP/1.1
bepro.al/
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
694 B (694 bytes)
Hash
c9e760b83a4d479f53877a4a9c81e1c6
c8fe2c0c0d61eb4ff3dba7799196b899c7359baa
75d9c9b24b6b7a51cddbd2b86a7b6571b69c1bd1ffa5b92d6da92f125f68e5d7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Dec 2022 04:08:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
location: https://bepro.al/
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fqJrp32BbqW%2BB80VZr0sNGB%2FVC3QRlLESFDNaT5oDmfQmteJ5PKXTjwVlmY1G9T8d%2F6YI7CQZWg%2FtHCpzaR2FEJ8YhkmIr7i8qpbGqHgDeX3zlJ5evOcQizPYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7749eba34ce7b50c-OSL
alt-svc: h2=":443"; ma=60

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
3d69c861b2a3ef8997ee789ce2fb227f
b3ce2a6915b4ef375659e0c0f480538e12e0cd9d
18af8e2161a703c60db5665cda9250ea8ad6962bde790be723c629855c9a6cb2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=129849
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:25 GMT
Etag: "638cc6f2-117"
Expires: Tue, 06 Dec 2022 16:12:34 GMT
Last-Modified: Sun, 04 Dec 2022 16:12:34 GMT
Server: nginx
Content-Length: 279

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 04:08:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 03:11:19 GMT
cache-control: public,max-age=3600
age: 3426
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
31b129c94a90b1e695b21395cb54e378
a3cae46b48d469cc61ab0581303bcd5f5b654db9
fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2162
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:25 GMT
Last-Modified: Mon, 05 Dec 2022 03:32:23 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
3d69c861b2a3ef8997ee789ce2fb227f
b3ce2a6915b4ef375659e0c0f480538e12e0cd9d
18af8e2161a703c60db5665cda9250ea8ad6962bde790be723c629855c9a6cb2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=129849
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:25 GMT
Etag: "638cc6f2-117"
Expires: Tue, 06 Dec 2022 16:12:34 GMT
Last-Modified: Sun, 04 Dec 2022 16:12:34 GMT
Server: nginx
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
1245db08bc06bdc452fdb41b8e959f26
ba2fa041fbea0e124b6fd418724a46225fac0089
d591926f6495b722a0b545d292f16a342cba87889fd7d4f5ca448c3613760be6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4454
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Last-Modified: Mon, 05 Dec 2022 02:54:12 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278

code.jquery.com/ui/1.10.4/themes/flick/jquery-ui.css

69.16.175.42

200 OK

6.0 kB

URL HTTP/2
code.jquery.com/ui/1.10.4/themes/flick/jquery-ui.css
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (1356)
Size
6.0 kB (5981 bytes)
Hash
e28d702e2b72ef56134d6be4789a3f4c
fe5a80795c59faca1392b29c8caaa5d19e4a5cc8
3ef494fedff73d1314a7b699d271f8da150009014c940da0e8a5a61831ead584

HTTP Headers

GET /ui/1.10.4/themes/flick/jquery-ui.css HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-encoding: gzip
content-length: 5981
content-type: text/css
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-7d37"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670213306.dop065.sk1.t,1670213306.cds247.sk1.hn,1670213306.cds229.sk1.c
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
1245db08bc06bdc452fdb41b8e959f26
ba2fa041fbea0e124b6fd418724a46225fac0089
d591926f6495b722a0b545d292f16a342cba87889fd7d4f5ca448c3613760be6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4454
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Last-Modified: Mon, 05 Dec 2022 02:54:12 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278

code.jquery.com/jquery-2.1.1.js

69.16.175.42

200 OK

73 kB

URL HTTP/2
code.jquery.com/jquery-2.1.1.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text
Size
73 kB (72985 bytes)
Hash
114d4d418d604686178833c7c80640b3
41e5e17bba301ddf562a2402cf0284e158d3c947
205fa3ed22c4dbe27752e632b4476fdbfb53dab29584b7e5aa82963461c37b8b

HTTP Headers

GET /jquery-2.1.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-encoding: gzip
content-length: 72985
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-3c637"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670213306.dop065.sk1.t,1670213306.cds247.sk1.hn,1670213306.cds214.sk1.c
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
1d7ae9cb4d3ada56f3c875f55b37a3e1
296e23579403d85854df89b45e91dde802a91617
b86bdf54353e0459f9acb777656d5928b8d04aece9f060a8ecf4961548f7c490

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1805
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Last-Modified: Mon, 05 Dec 2022 03:38:21 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279

cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.min.css

104.17.24.14

200 OK

1.0 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.min.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (6307)
Size
1.0 kB (1025 bytes)
Hash
1499fdf8ee91396d2c39264681972f7e
188842d3c3a70bfcbd09d92b1c8622c11478c9b2
aaa20e886e9ca33d93b1d9092b56423c03c6594b9006ae37f7afb2cabdfa657f

HTTP Headers

GET /ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css; charset=utf-8
content-length: 1025
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ebd-1920"
last-modified: Mon, 04 May 2020 16:11:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 13256907
expires: Sat, 25 Nov 2023 04:08:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hM%2BF2byN273fC%2Fj7HtWxU2NikjVFEp5Xk3e8VIZoqM5UlJA9BdNb5yEJwI9gC%2BgJd%2BIzWWLHRdYySD2Ka1uLDcKqR7co3BxEKoBGW2ibWqStbeZztuii4IH9hkNPSWbn8t8w%2FCdJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7749ebab1b960b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.js

104.17.24.14

200 OK

4.1 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.js
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
4.1 kB (4145 bytes)
Hash
79d8537fe71c6762f249a9e47e3b10c2
219eca3742414c550441d344aa45dc505d796456
54186737816366f6e7a63e74738ae9a334d265dc0874efed4b8d3ec3305dc957

HTTP Headers

GET /ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 4145
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ebd-5deb"
last-modified: Mon, 04 May 2020 16:11:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 19172774
expires: Sat, 25 Nov 2023 04:08:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IUpdgunG1yr6WqO1AEk4bDkQ9J%2Bf4h9FPQiVE7DCZCP%2B5u8qa4cOpIOEYk%2BW02GrvFP1QZx7PJ3l2SvolcZvWEZL0VM8LV2ZwummNUXZu9oNAMzyHoLqKggWmz2n5lUT62hkFDvp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7749ebab4ba70b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
1245db08bc06bdc452fdb41b8e959f26
ba2fa041fbea0e124b6fd418724a46225fac0089
d591926f6495b722a0b545d292f16a342cba87889fd7d4f5ca448c3613760be6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4454
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Last-Modified: Mon, 05 Dec 2022 02:54:12 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278

bepro.al/wp-content/uploads/2019/07/viza.png

104.21.6.116

200 OK

217 B

URL HTTP/2
bepro.al/wp-content/uploads/2019/07/viza.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 175 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
217 B (217 bytes)
Hash
86a2d3a055e1041475d1ed760069b78b
950186fb9ed86b9ea640e28decfed1de6fddb870
bad84cb72af43902f57b93eff6fc4bd5ae9a125bf931c9e78ba0828cc99c8e07

HTTP Headers

GET /wp-content/uploads/2019/07/viza.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 217
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lIJE%2FK0tdGpynLzycRGpjpKBgZ2EU2FHZh2PyyOdB2FZdmWUZrqpK3xoDJkaWwU7UUmPztNUcL6Vsirr%2B%2F4lpSWQ0UDAxEAXv2gl4YK%2FgIEJGT6rlBpcNhcCaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaa9e050b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.41.252.32

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.41.252.32:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MnrvhwJPtEk5n5xLG2HSJg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wvY1EzJ0Na7MG74OT6L306glU9A=

www.googletagmanager.com/gtag/js?id=UA-45543016-13

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-45543016-13
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43634 bytes)
Hash
3b27bf89681cc1743b30d596e368253c
1c04070b866efb101d9366326e29516c5588466b
503114e0e6f804826bcc224d5c3e1406d1fa6834fe5cf36f81735b88205d84d3

HTTP Headers

GET /gtag/js?id=UA-45543016-13 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Dec 2022 04:08:26 GMT
expires: Mon, 05 Dec 2022 04:08:26 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Dec 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43634
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bepro.al/wp-includes/js/wp-embed.min.js?ver=5.4.12

104.21.6.116

200 OK

769 B

URL HTTP/2
bepro.al/wp-includes/js/wp-embed.min.js?ver=5.4.12
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1391)
Size
769 B (769 bytes)
Hash
82e67f050afdb38c20ac6eb305f97c17
df1349df76d66a9cf64377cf335c67c337d85470
5f6c33116e2106cd0f2f28c16062f1d584e74b8539a14ed45e17957634d71b7e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.4.12 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 769
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 16 Apr 2021 01:34:23 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6pu4jN%2FNtcGw2KI8enzByNldSdrSeYsp0xS75qZWqdgKZ%2F%2FcvOoEqAPABG9CqBObgKUGC96xUie7VNN%2BLiLTSggECp%2Fc2J0lmwXzOPFkjPZqZe%2B8aqZLXDcOiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9dddc0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/plugins/litespeed-cache/assets/js/instant_click.min.js?ver=4.4.2

104.21.6.116

200 OK

1.3 kB

URL HTTP/2
bepro.al/wp-content/plugins/litespeed-cache/assets/js/instant_click.min.js?ver=4.4.2
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (3683), with no line terminators
Size
1.3 kB (1280 bytes)
Hash
6bf1245ac2f45b315dd46fc54748d0da
9cd5bf62c579a93d9c731687eaab07e3f8e29e2c
79bff6a88e84dad7a55bda49858d09cbf224247e5e1fd19ab37e000b20c45675

HTTP Headers

GET /wp-content/plugins/litespeed-cache/assets/js/instant_click.min.js?ver=4.4.2 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 1280
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 08 Oct 2021 23:26:22 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FaDc4fi81xzvNJSduw2Oks2M9p7GLYBNmvGDWZ0isDaA8MhdwF1Lo3cD5i3PvGvSB8OFZ8Nttize4IMdEFICbqm5N%2F0f7FVVpdhXiwRijuPI7POoO49oQvDC8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9ddd50b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

104.21.6.116

200 OK

4.0 kB

URL HTTP/2
bepro.al/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (9959)
Size
4.0 kB (4034 bytes)
Hash
2f89b08855471c7476435ce0bec33ba7
970533f152623df03b5fc6fb793b21889e4e0349
d200586b6dd1ff779b6c30947361ff736e076d8c7d502505ab3174ca33455ea0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 4034
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 10 Apr 2020 18:49:12 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vSSAYRtMrTlo%2BFyH%2FPfytZTQt8NJiTU0lz4lzoSjTKmquJbG3vUUzclShV0A8EJP%2BK%2BT9J51covKbSfQSygAU%2FFFNXVWYFXZAPiASE8NQYp%2B0C%2FisBqFHHSaPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9ddd60b39-OSL
X-Firefox-Spdy: h2

bepro.al/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2

104.21.6.116

200 OK

3.9 kB

URL HTTP/2
bepro.al/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
3.9 kB (3913 bytes)
Hash
0af35ef9644e91e1780c2e53fd1778bc
3f04b66eeeadecb25d9d6801f8f3a2590783f8a1
9b0db76c15e3fe0bc3f8d5235335bf5b83609144f8492da9a9a7b96ae0904bf0

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 3913
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Wed, 15 Jul 2020 09:35:50 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=buGdD8%2Fx2%2B98A6b%2BGtFkDnE%2FeeJ%2Bi698esBJS2%2BNoWlqkEYDd7YzsOp%2Bjzg4K903XeLv7q6vNpV%2Bdq6zjWZCSQlziNbZd5nN3eAj57IZdAKXQr3leX0EzRb9WQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9ddd70b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/plugins/carousel-slider/assets/js/frontend.js?ver=1.9.4

104.21.6.116

200 OK

1.2 kB

URL HTTP/2
bepro.al/wp-content/plugins/carousel-slider/assets/js/frontend.js?ver=1.9.4
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (2900), with no line terminators
Size
1.2 kB (1230 bytes)
Hash
cd1baeb70aad2098c1f4e3ef72f6fe28
e55792d6eb11cf2ef317a4e5dcfa8bbdd512fbce
b500633aaf14b391282ff1085b071eebda06ee424766ff754ae547c1bec078ad

HTTP Headers

GET /wp-content/plugins/carousel-slider/assets/js/frontend.js?ver=1.9.4 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 1230
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Wed, 15 Jul 2020 09:35:46 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AwrQJOwRvyhgR%2B%2B2y4tcfPXUcoxpMYXw2LHbJPq5orzIt4RxnztkifAaj2ZIAr1RwnwLLYUGygTtvNQcPiWrTXduE%2BE8USDGSssKJsNkyHxCD0PuIWtqTzDm1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9ddda0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/themes/Divi/core/admin/js/common.js?ver=3.26.6

104.21.6.116

200 OK

581 B

URL HTTP/2
bepro.al/wp-content/themes/Divi/core/admin/js/common.js?ver=3.26.6
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
581 B (581 bytes)
Hash
aad2ff88b007e293d43fd863b0649201
9f882d07b2d3e4813321472cd45fe3aa23c70f82
e0b8a3838822b97bfa6723a399b71747899cd40307b65d8d8bac6649b3680786

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/Divi/core/admin/js/common.js?ver=3.26.6 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 581
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 10 Apr 2020 18:49:10 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vlB2GoyIb%2FifbjJEJgWqqaFvwlKuJA%2BgDS%2B3kvOmoUoWH%2FPB172J%2FxV%2BWwSL%2B859wS9ppyoAlQPGQ4083F4YkbkQtkVBqmhLbo4%2B3MnZpvuxlg3WaexL2XDwUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9dddb0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2

104.21.6.116

200 OK

735 B

URL HTTP/2
bepro.al/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
735 B (735 bytes)
Hash
4515f9bb47d354a1ea17ba040b395d54
ad90d6cac6d4c8cce2fe94311ba9971bb6de4cdc
f5252f398377d3f318580618967fea449ffb6240f2a41317053c90c271224c3d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css
content-length: 735
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Wed, 15 Jul 2020 09:35:50 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G48aoXw6j9z3BqQZ2WjkMhJgXjVwRYhMmwaqKXf7bNnZ9PQbMg7mbtTKXt22Yo979UgGWsvSFYHocP84sDn27GrXALML8lcn3knzT4h%2FpzS6wfxFitxWV91E2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749ebaa8df60b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-includes/css/dist/block-library/style.min.css?ver=5.4.12

104.21.6.116

200 OK

7.6 kB

URL HTTP/2
bepro.al/wp-includes/css/dist/block-library/style.min.css?ver=5.4.12
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (28088)
Size
7.6 kB (7624 bytes)
Hash
8352f5522fd5f4be771cfdc668ef4000
ced844dc9a8941ce3a3001a338d1922b596194e0
7ca12fd9f2da9640c5645bce572d39f193f686929ef14f5acef17a16bfb7ef8c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.4.12 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css
content-length: 7624
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Wed, 15 Jul 2020 09:34:24 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b1ufApXNRBpHddSzyMJHCaz9GAUuoFzvWr5gl8vA62OwAHo24qE9y2QmFII6STS0Ds%2Fiv0rTJ6%2BSc7MklW4Pd5rShxXJQWHIpVwA%2BnTAw1wrPZeI6AjsZY2roA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749ebaa8df50b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/07/icon-22.png

104.21.6.116

200 OK

2.5 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/07/icon-22.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Size
2.5 kB (2473 bytes)
Hash
c8cb224393b931cb5d070759b4dfbf0f
574694803526975f8fca8277167f3d6ed912e7f5
77fb61e52b95ffbbb8f2a1e3bd5ca49cdfe1d403a4a505a8defc27055a799b69

HTTP Headers

GET /wp-content/uploads/2019/07/icon-22.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2473
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TaXhlwYs09z5nOQSqhwFO4FajRxXvDnPfCaJmdGct9sUUMIyIxyF%2F%2B0h9EvWidc%2B%2FXtL7%2FaaWDMgSdYDAcfOG0fHp7knkTEDh1HwJQ8p1vZJMjaZfyP5eQ4yWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaae0c0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/cache/et/10/et-core-unified-16683399856549.min.css

104.21.6.116

200 OK

7.6 kB

URL HTTP/2
bepro.al/wp-content/cache/et/10/et-core-unified-16683399856549.min.css
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (57412), with no line terminators
Size
7.6 kB (7638 bytes)
Hash
21a15fe339e41df414975279cbed7ac8
f6349bd00ec6b9fc64f8b8e0b183e71baea30993
b34e556589f90ae488be0e184386d61d65335ea7322acf85d806e0708d4c5e55

HTTP Headers

GET /wp-content/cache/et/10/et-core-unified-16683399856549.min.css HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css
content-length: 7638
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 13 Nov 2022 11:46:30 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ePu6E%2BFPC8FSf%2BFJeYEmoYQ6R5NY0aktQ3lyVuP6D%2ByhMuypA1HIgP2EZQErMgHW%2B0Yemx90Z9jKuzj0O4SDTAcWAJ8vb1DWbqG9YtWd6l3I9qyvN3UXDT%2BB%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749ebaa9dfd0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/07/icon-27.png

104.21.6.116

200 OK

3.3 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/07/icon-27.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Size
3.3 kB (3334 bytes)
Hash
06924e057b86f5058f2697f79e517b8b
54ca4997562788412815b39be888dcd7151cffde
162236f0a2410afb213fdf78fbe36caa3bb5b50aea0cb25cb5c3290269467454

HTTP Headers

GET /wp-content/uploads/2019/07/icon-27.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 3334
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IlFrSevrY4OF%2FdT7a8axpjOIL2kxJh51VfW64kXykKmZD18QzW%2BNwWowKvP%2Bs%2FOWYBo%2FLbcuB7Ki544OBiVxtc4DbEmYRca3OITdLeYE%2F40hPm3nio5Rj1VgRw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaa9e080b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/L1-37.png

104.21.6.116

200 OK

6.1 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/L1-37.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 195 x 96, 8-bit colormap, non-interlaced\012- data
Size
6.1 kB (6083 bytes)
Hash
94e6fdd83a5c3f3441745a171ecfaa28
d64fbde1a1a50e729ba25acd1c797466b0499526
dab8320cc1c08d1b2aff0f6c1f9d065200f9b0c12b671b075913c755a6237856

HTTP Headers

GET /wp-content/uploads/2019/08/L1-37.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 6083
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:21 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PXEQBMhN09FSoLiwS%2BnTkytzk2WTqOhJB%2BhtjraKRJm%2BuLc4iE1HW6wC6gaKO7OH8vRj0ZHVTnrybrwaDhG5WswJ1gXnF4IrW7a8sykeYiLZhUgYzsPvvEsVXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe270b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/07/bepeo-web1.png

104.21.6.116

200 OK

7.7 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/07/bepeo-web1.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 400 x 96, 8-bit colormap, non-interlaced\012- data
Size
7.7 kB (7719 bytes)
Hash
65371c793820ee42f7c9abfefb4d07e5
cb3a3d3e6b2c9ea78ed9170ad1dc65fbaad6cab7
0e70c4f20b21ad6b202aea5afbeb682a230b3e0512bbe00a84469559744292fb

HTTP Headers

GET /wp-content/uploads/2019/07/bepeo-web1.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 7719
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:47 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FqJFnP6K1jEjhy9SxeWU%2B4AStVd68khbdxIuYX1lluQcxfwW9twyyteWK1Nlzre8WjkjEmUppx2kjSzel29tFKVGRqMnLPRsVvVKegk8dpeXsg9jDGNaCg8DkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaa9e020b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/07/icon-28.png

104.21.6.116

200 OK

2.0 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/07/icon-28.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 132 x 129, 8-bit colormap, non-interlaced\012- data
Size
2.0 kB (2043 bytes)
Hash
4d5889fcbf859ef9f41b388b7f13ed16
7021edfc564e23d22ab9cb91c416621d9b1df7e1
33200075e3d7c0abf8cf1b5f7dd5178dfcbe473b71b8125ec1a5a89732559c68

HTTP Headers

GET /wp-content/uploads/2019/07/icon-28.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2043
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:38 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HSg1KyyXsPbUaRlo1YJ9%2BxvFfwZAaFxJsJ%2B0vUoC8VIhnvXvlzgTi6stTM4EAkc0PsU%2FfudDXuAUSB3kmAcl3PwnDz1XY9MhLrnL%2BF5teX8Gcvu%2BUCNUhwxZUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaae0e0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/L1-29.png

104.21.6.116

200 OK

2.4 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/L1-29.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 171 x 96, 8-bit colormap, non-interlaced\012- data
Size
2.4 kB (2433 bytes)
Hash
1f3e8852a1a5c14488e4e6eb0556913f
e4250860262b5f08c96f4f70af610a945642778d
8b3a45940efbce218a0b7de0137092ded721ef5aefcc9b463d55a721b27a616b

HTTP Headers

GET /wp-content/uploads/2019/08/L1-29.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2433
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:23 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zv8ec7vYb%2Bm9lt7kWQtMlDwnEjBtK5cLCcLCjTD5O%2BUovk6%2FYQowEc72aKIuK1036xVcEcfKxt22lsfJ%2Bnsj0uXIS9gUCr9f7DK8Y9ejK9qG8DKXF7iayBtmUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe280b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/plugins/carousel-slider/assets/css/frontend.css?ver=1.9.4

104.21.6.116

200 OK

8.2 kB

URL HTTP/2
bepro.al/wp-content/plugins/carousel-slider/assets/css/frontend.css?ver=1.9.4
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (30189), with no line terminators
Size
8.2 kB (8247 bytes)
Hash
e2dbd12078e01a7ec3e0268c8c1ed43d
25170794b28db3b7ee9cc7877c80e2bc9b2b81d7
fcd32ad3873ab9a3ef4dcefb4481e78c89aa146a81c17635c19678d852e7090b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/carousel-slider/assets/css/frontend.css?ver=1.9.4 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css
content-length: 8247
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Wed, 15 Jul 2020 09:35:46 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kKYuSwc3HFO70u60cDI8T5D%2FGNT6YZd7Ke8N%2FwiiKJIfS9Jwu6QNd6ruF3hVZC5Ed3w%2BkaW%2FdoLwwkSzXR44K4JqmlLvZw2v3tJp4IPjsk0t1BQyomiIvBWkdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749ebaa8dfa0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/07/icon-25.png

104.21.6.116

200 OK

2.3 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/07/icon-25.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Size
2.3 kB (2286 bytes)
Hash
4fab64f783523cbac0687451313e4a48
21609d4fb77670e1b31a5f1f6b5f9e48878ea2b2
3991bb7de65ad9542c786f134acdc537d6800ab55253f0df871f23844c0a7c6b

HTTP Headers

GET /wp-content/uploads/2019/07/icon-25.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2286
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MP46sRgB3zfdmYtnhmwviOlMP9DeGWyx4pbiJ8Xfz8IG7N90drCLOPKjxOM8SqzGCOpGq5eil0ttHlx8hNi%2Fyr%2BOTyJ135QM0FB2HuB6ABMeSqkYCahDOVkMbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaae0d0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/07/icon-29.png

104.21.6.116

200 OK

2.9 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/07/icon-29.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 130 x 129, 8-bit colormap, non-interlaced\012- data
Size
2.9 kB (2944 bytes)
Hash
29bf01a326d67ee185a0e121612911ec
e96b79a5d4ab656e993f66498496744fa3be74c2
01acdcf2a998af76c4267a7fd1394670057cd01626047f8e12eff252b78ad1d9

HTTP Headers

GET /wp-content/uploads/2019/07/icon-29.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2944
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:38 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zVTdaTDLNAVB9mmqb%2F%2FBX%2BRAbB3xHzJku%2BBXhCAfNm2gZcKwVE7tKlxJJLMAwMuz7iucpUlCpqYN43OLqh0iV6xsgh6F4e%2FN%2FB3MJodqfdvmxchZuOXS8Yx2rw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe110b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/07/icon-21.png

104.21.6.116

200 OK

3.1 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/07/icon-21.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Size
3.1 kB (3115 bytes)
Hash
e7ec7490469383816802f304087751db
af3dfd3c5e77042ab1640acf1cc04c94e8ad128e
3d8f10960fbdc6dd8dd075dfe5f933fade502bf753a453eb5eee18327722b881

HTTP Headers

GET /wp-content/uploads/2019/07/icon-21.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 3115
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AgWfKka1uZLWAbVqEEP12pTB4S754RNbdSMy%2Fw3Fx6uk47QZ4DBeXaqRqdRF3AGYNF%2Frev5%2ByC1T8ME1LBGAxzD2aHO69DaPEJktL2616ezzMPl%2FiogxwZplYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaa9e060b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
1d7ae9cb4d3ada56f3c875f55b37a3e1
296e23579403d85854df89b45e91dde802a91617
b86bdf54353e0459f9acb777656d5928b8d04aece9f060a8ecf4961548f7c490

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1805
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Last-Modified: Mon, 05 Dec 2022 03:38:21 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279

bepro.al/wp-content/uploads/2019/08/L1-27.png

104.21.6.116

200 OK

2.7 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/L1-27.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 162 x 96, 8-bit/color RGBA, non-interlaced\012- data
Size
2.7 kB (2720 bytes)
Hash
1d46dd6acbcd37d9c601e5dc8f81cdea
4bf071796b104c5ec68060994aa6ce002540d5e5
df87864fc5f59f2d8d45228b88d5abaed8d81e6e3aaa0831fc633be3c0b837ab

HTTP Headers

GET /wp-content/uploads/2019/08/L1-27.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2720
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:24 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XK1vGoOcjaxhlVcMv%2B9JeUbC%2BnFkIVEMfXOP%2By6oEZkuK7j0j5hazEYYj984%2BHrJQ75MQit7EoiyQQS6m%2FLv%2BB26NqXOjYvronezQ1ToDd%2FcF2NasXfi%2FnTntA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaace2e0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/07/icon-24.png

104.21.6.116

200 OK

3.8 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/07/icon-24.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Size
3.8 kB (3800 bytes)
Hash
6ec2ca15eac167e09bc9274bbbc9ae4d
a77199c38c517bcb15bb0b56d4e220e72ebce1ed
6f00b73a6a68041ca02ef00f8e081378c1bc5db9faa47f28287295d7f9534ddd

HTTP Headers

GET /wp-content/uploads/2019/07/icon-24.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 3800
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eO0kET8O8zrkxjHfGVtHOBS4qp14hh1iF3%2FGhHS2wKiGWy6uktd1XUMkCPCqhVTJmda7YmAPtaiCQQM3t%2F%2FAiMoOwQLrpq%2F6uVFYAF12y2zUkyFuCMg4ABDTCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaa9e070b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/07/icon-23.png

104.21.6.116

200 OK

2.7 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/07/icon-23.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Size
2.7 kB (2678 bytes)
Hash
603e2470875caf67eec64d25db7f1557
d0f8a1932639f3cd1203bd856e18cc373d437ddd
fb078e50736a09a458016dba3c24a997d47526643299ae1a7a5b46ab4f27c836

HTTP Headers

GET /wp-content/uploads/2019/07/icon-23.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2678
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BVjOpv6qut19ZodABZ3aDZXMBAiANT0MyIHFmqQbNOXG7qyc%2FviZlJAHeW8weo9OttLVgyoTL66weogJksZuKtUwSq4F0kBRvXWsR64rb58K8tLU4M0BHdewRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaae0f0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/L1-31.png

104.21.6.116

200 OK

3.5 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/L1-31.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 195 x 96, 8-bit/color RGBA, non-interlaced\012- data
Size
3.5 kB (3534 bytes)
Hash
90d455540502bbc822ea7d228e2675c0
9cf18013ffdc55dcc4767335840e6016fe60b1e6
86357288c4946cf38d43b141cbccc21089c90606a2dc160e4cb8a9ecfa6ac6da

HTTP Headers

GET /wp-content/uploads/2019/08/L1-31.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 3534
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:23 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pubh7iufdoouYkB60r7R5HjBe%2F%2BTltL0VTqcOjb5hb3eqja%2FGN6i9AzOH5mGPN5%2BA8xxXn%2FdokS9ZYGNOB27%2BgW6UgSXcIwRZCBJ66LwfRIlVBzrI7K67BPLOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe2a0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/L1-34.png

104.21.6.116

200 OK

4.5 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/L1-34.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 195 x 96, 8-bit colormap, non-interlaced\012- data
Size
4.5 kB (4463 bytes)
Hash
179bab541d8735a96dd6bd6909a55e42
e9230f1de5570080692f68a576ba376c9b03ba84
a7621291a3bccfd2d1b5ac2f83ca2e746181ce5408e47127f639ffa0d16dbb48

HTTP Headers

GET /wp-content/uploads/2019/08/L1-34.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 4463
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:22 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WKCq5uuDVt1%2BjSMw7LOfc6AQ4hIRtI74DmEtcGe1t92XoKzyB4TRI%2B2UxRZUix7WdOt4xZ9%2BOnbihm%2FKxO1Ifr%2F%2BR%2Fed%2Brk79yjnej24AjQkTnmRk3JRLjPkiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe250b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/L1-28.png

104.21.6.116

200 OK

4.0 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/L1-28.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 195 x 96, 8-bit/color RGBA, non-interlaced\012- data
Size
4.0 kB (4025 bytes)
Hash
0272aebbb40dbc1be15d6a290a02083b
2c34e69a987577430930e09300be8feeed36d0eb
2643b57ead2255e8645fdc6896aa0b13ac59e62a52cbbeb8d09ca78d7c4587f9

HTTP Headers

GET /wp-content/uploads/2019/08/L1-28.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 4025
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:24 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DnOwCOqi%2BPgOq%2F%2FzBEFLlEt72eut0biEjOpSvEBmg1gX4bRdvAdX7Mp%2BJcE%2FNJduyeLR79n%2FbjMKWZ0cd5skbfQRucmwUUTt6tV0BJADKsz7lDbIHKNeIe21iw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe1a0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/L1-33.png

104.21.6.116

200 OK

2.8 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/L1-33.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 195 x 96, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2809 bytes)
Hash
b9bdf1ad4f97eb0d8da59152760c23de
67015fb51333a6bf0767917946d94862698fbc7e
13522e4d469a407e690c830ead520780d40b70c7f05ee5fc92b89a766d974d6c

HTTP Headers

GET /wp-content/uploads/2019/08/L1-33.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2809
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:22 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BGXkSW7YBl%2B58WdLjvsbHxtdMfZCSuu7qRwbCB2DXNAnuZr8bzjXhs1T4C4KgURTJpRIWoOSyOaQFo1NqwVGxlKX6KM7X0qdY4cj7IoJ75lWPaVZ%2F8MrAizB9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaace2c0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/L1-35.png

104.21.6.116

200 OK

4.2 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/L1-35.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 195 x 96, 8-bit colormap, non-interlaced\012- data
Size
4.2 kB (4171 bytes)
Hash
d8b557a3277a7200f15b882935740320
00c90c2fc1b225e7c8994e104dffa57e16839849
ef06bc9e07c588d8e675a50f9e6d7d885f9ef6dabd3f6c988f83d332407e633c

HTTP Headers

GET /wp-content/uploads/2019/08/L1-35.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 4171
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:21 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hRZQx2IQJO7Q%2FVT5G8%2BxqB6M7LqRAVbJZ%2B4cJDlOat0fkbkf8yh1v24WFNxUD9WNk3YEDY0ppoNV3bAlK2XrotK9rFUjpH7slvQmi1EMd0jD%2FKFbrEPUKr6sCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe260b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/07/icon-26.png

104.21.6.116

200 OK

3.4 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/07/icon-26.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Size
3.4 kB (3385 bytes)
Hash
d124903c2fb8ec8b2d62641c161135dc
9bd058e35122dfc09bc1c32f07f4e7fa6ae6dc66
db318c1da442e433bf4334a9b601872ad0cf54b91bd90b2c942629a58b9392e8

HTTP Headers

GET /wp-content/uploads/2019/07/icon-26.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 3385
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zRc1tx6E8veZ2YbqKT9kpzwXGoGI20L9IM7K29MunZnF4dILMvb%2F3BmZs5hHw2O3AfBrNZzKqq6Rd%2BxCTlRvH1TpUzJqukhPJa7%2BQcZO6LA8WSLFPG0Gi%2FqdAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaae100b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/L1-26.png

104.21.6.116

200 OK

2.2 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/L1-26.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 195 x 96, 8-bit colormap, non-interlaced\012- data
Size
2.2 kB (2194 bytes)
Hash
463d2f2fab8eb1e654c84b75c59d5a9b
7ab5678de8ebf59df0c7648407318d6e862f75f4
ff3e83e9ef1cd6fa940d459cccf488b41b97595a2b1c838ac1f7e403c946809c

HTTP Headers

GET /wp-content/uploads/2019/08/L1-26.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2194
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:24 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4H3nplnBURtb4mxBAMtJA9m1cRPPhH1LGhVCbo0AGt%2B0kz9%2FJMrg64U014dbEI41ehwqJPSHxdK2q0nVyfqO0phUlfgzT6XfOGdw9bu8fwNl30qGFIwY2oNbNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaace2d0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/L1-32.png

104.21.6.116

200 OK

2.1 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/L1-32.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 156 x 96, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2135 bytes)
Hash
bf096d2ae83cb42d206255b428f3ce44
da02abcbcfe7ab9569f3f9b28f90766d966e23b8
8b32fb861986c3e72f3294a4fa3d0d3ead9ecb2c1085f23bdc309e9fec63d1b1

HTTP Headers

GET /wp-content/uploads/2019/08/L1-32.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 2135
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:22 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ITXjGsL%2FqEsBnXf0jhcZexnzbkD8hMorxt3fYQdYqeTZYyy3OlnJeXCYbApSIDEnR4jeAlpNScRMUiZ%2BX0nriuGWKHfeARGl4wJnPczSkzUHfl1q1vJdrATUzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaace2b0b39-OSL
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/L1-36.png

104.21.6.116

200 OK

3.5 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/L1-36.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 144 x 96, 8-bit colormap, non-interlaced\012- data
Size
3.5 kB (3451 bytes)
Hash
59facef0b7e668df62e3936bf832a3e6
30d90a12fd2b561edcaf1f464f836e1e7b003b7d
e2af46f7a1f1af2d84d4d39683c4a358dc96e4318998df1b06e34613b66bc1b3

HTTP Headers

GET /wp-content/uploads/2019/08/L1-36.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 3451
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:21 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tX1RQ62aQQ9gUNcocAnWhX0Am2Ibm1UpJ2Y6s%2BLpaGP7t7UJTsWxTdOdcbRKtkV0Sg36ji4Kx6YypV3KmESpc5bztEJ9VcsGSEpLOfavDrPL1nLubsW6d7aOsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe230b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/L1-30.png

104.21.6.116

200 OK

3.3 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/L1-30.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 195 x 96, 8-bit colormap, non-interlaced\012- data
Size
3.3 kB (3323 bytes)
Hash
ae8c267d44da69107744b3cd4fd8eb7b
05a259ca0e42f242a4ffc81c9f9102891d077f6c
45f4b2bb972f28bc258397de50366fcf27c644d96b1de48b63c653b0b7f6d8ae

HTTP Headers

GET /wp-content/uploads/2019/08/L1-30.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 3323
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:23 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MSEBdsomFRpXXsoJGWb7FPGM8vEUEMFq8MJ%2B41EQ9VVYaYat1u%2BEG3PQMZj%2Fd7%2BPy3VL1yM%2FvE1SZLESBEkLutHX7VLONYE9UZBs7aB5x4hFWTSiCrThmoIQhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe290b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/

104.21.6.116

200 OK

20 kB

URL HTTP/2
bepro.al/
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (24473), with CRLF, LF line terminators
Size
20 kB (20022 bytes)
Hash
129d8f62219950022ceda45db30a515a
a8c0cca2178264808e642fb9594312fe2000439f
6a7ced877bd1a42e0f885cf84f7e949c2a9b7dbbf4900d0446d0c21679629cd1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:25 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.3.33
x-dns-prefetch-control: on
link: <https://bepro.al/wp-json/>; rel="https://api.w.org/", <https://bepro.al/>; rel=shortlink, </wp-includes/js/jquery/jquery.js?ver=1.12.4-wp>; rel=preload; as=script,</wp-content/plugins/litespeed-cache/assets/js/instant_click.min.js?ver=4.4.2>; rel=preload; as=script,</wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1>; rel=preload; as=script,</wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2>; rel=preload; as=script,</wp-content/themes/Divi/js/custom.min.js?ver=3.26.6>; rel=preload; as=script,</wp-content/plugins/carousel-slider/assets/lib/owl-carousel/owl.carousel.min.js?ver=2.3.4>; rel=preload; as=script,</wp-content/plugins/carousel-slider/assets/js/frontend.js?ver=1.9.4>; rel=preload; as=script,</wp-content/themes/Divi/core/admin/js/common.js?ver=3.26.6>; rel=preload; as=script,</wp-includes/js/wp-embed.min.js?ver=5.4.12>; rel=preload; as=script
x-litespeed-cache: hit
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Mon, 05 Dec 2022 04:08:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QR64clxKFZnXN42dlfhnSRHM5la%2Fdx1XD1Rv2qydgyVXRgH4SHYBmNoQuuqmtr%2FPjifc9doGrUmhwrlLsc5Z0k5CuiqgNihC71QWO7phTkNXuGtU6BRZJMp8dg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba60d030b39-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-h2-pushed: </wp-includes/js/jquery/jquery.js?ver=1.12.4-wp>,</wp-content/plugins/litespeed-cache/assets/js/instant_click.min.js?ver=4.4.2>,</wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1>,</wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2>,</wp-content/themes/Divi/js/custom.min.js?ver=3.26.6>,</wp-content/plugins/carousel-slider/assets/lib/owl-carousel/owl.carousel.min.js?ver=2.3.4>,</wp-content/plugins/carousel-slider/assets/js/frontend.js?ver=1.9.4>,</wp-content/themes/Divi/core/admin/js/common.js?ver=3.26.6>,</wp-includes/js/wp-embed.min.js?ver=5.4.12>
X-Firefox-Spdy: h2

bepro.al/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp

104.21.6.116

200 OK

34 kB

URL HTTP/2
bepro.al/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (31997)
Size
34 kB (33836 bytes)
Hash
167b4b3aef1415384a1d72a851584464
7edb972190b2048300fb5eb1668e54ec049b91a2
2d29b6f8700dbeda5b83991887d89ef850f3d570946b8eef360a86b9adcb0fb3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 33836
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 10 Apr 2020 18:49:12 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mgn0xazc9QaNgU5rsq2CFf2KU5YjqltDdTUbuv56hF1CTClYZYeoR%2BP1zsuDLDXAO672G9YTk2fNIM%2BBfyOVY4EJDaMsSvykWkOppv19g40PVuRzrji3F2pjBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9ddd40b39-OSL
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.css

104.17.24.14

200 OK

1.6 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
1.6 kB (1597 bytes)
Hash
7119dac83a7b0347e4ab14f1d0024cd4
48c46915441dfca18ce470ccba46a155d3b70ed7
adc555f73c2ddac365f07c2a365d3773f361fda1990a49e6e6a93ad0f4a9c3e1

HTTP Headers

GET /ajax/libs/jQuery-ui-Slider-Pips/1.11.4/jquery-ui-slider-pips.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css; charset=utf-8
content-length: 1597
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ebd-226c"
last-modified: Mon, 04 May 2020 16:11:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sat, 25 Nov 2023 04:08:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dKZPFun2zO5SqketCOti6Pbzol5HiWy0dQzOsEikzx8BSdfbIgo60QVVJ2am0HsySY5U7uqIpCOiNrciUjDL5PQaR2JctDFgSvDo%2FcIRXUDBUEhBiDMK0Isg9Q89MrcXBGdDWaw2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7749ebab0b920b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-includes/css/dashicons.min.css?ver=5.4.12

104.21.6.116

200 OK

28 kB

URL HTTP/2
bepro.al/wp-includes/css/dashicons.min.css?ver=5.4.12
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (47529)
Size
28 kB (28481 bytes)
Hash
b62651a2244a63063170012e9bccec44
65a6cc4943d6b2bb63650086ae5159bed211a8ed
9c03c98b5964ba99d1bf2ebcce31a8fcb1ad9772e9173c5a8e199f602c19fd72

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/css/dashicons.min.css?ver=5.4.12 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css
content-length: 28481
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 16 Apr 2021 01:34:23 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pheulESctYoic%2BIjm6p15wlM0HPxCi51haJIzbqMN7AutxcPxVzzm1tEVxSEPVEx32zvdQzz%2BdFrthUHfOemItxqIZHwBoAs2GqlsD5orighVTPFvasSRo27Ng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749ebaa8dfb0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/p2.jpg

104.21.6.116

200 OK

37 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/p2.jpg
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=[*0*], xresolution=98, yresolution=106, resolutionunit=1, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:07:25 16:18:59], baseline, precision 8, 800x572, components 3\012- data
Size
37 kB (36926 bytes)
Hash
8342e607d78f70c8c39c512a4cbfbdf2
80ea82170b10b28b78dd6326b2e5758aa925e8b1
c60cc3ecf31108d1c55fcf85e50e42fabecb2b8e5a5e808ed6638fc36c4e9cab

HTTP Headers

GET /wp-content/uploads/2019/08/p2.jpg HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/jpeg
content-length: 36926
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:32 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1wsH4ibBRUVEYPp%2FKCjpSls30wxBWCXdIqTh6XKwDpXoCVRoWdahYiECQX3rBIwRDjPXHPewc39%2Fy3f3yNFI6%2FG2x%2B%2FiKBmYyfY03fTzfP8pXxmcrecy9VG6Yg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe150b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/themes/Divi/js/custom.min.js?ver=3.26.6

104.21.6.116

200 OK

63 kB

URL HTTP/2
bepro.al/wp-content/themes/Divi/js/custom.min.js?ver=3.26.6
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (20990)
Size
63 kB (63379 bytes)
Hash
0b894352c2ce37bf0d5ebfb68e6748d6
ddb465ee3930a74a5115e5f962e5218aa054ed92
e59047998bf1933a0573b04b8ef29bf0f645436c6001da8e070d0f454c8592c2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/Divi/js/custom.min.js?ver=3.26.6 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
content-length: 63379
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 10 Apr 2020 18:49:10 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RKXbomxqnHUuXPm6US5HjMfmHvymCXQ1%2BF5C2lmp6mhHdyGYVrTLDq%2BZEEsXfnT97mw%2B3ue4otdBXwCRaiOtm%2FkVNic8oEmTEP1xMzFe%2BXMk4oNSjCbExdaMVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749eba9ddd80b39-OSL
X-Firefox-Spdy: h2

bepro.al/wp-content/themes/Divi/style.css?ver=3.26.6

104.21.6.116

200 OK

73 kB

URL HTTP/2
bepro.al/wp-content/themes/Divi/style.css?ver=3.26.6
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (64928)
Size
73 kB (73007 bytes)
Hash
95795607d4688e505211803454039c13
bdc0ade2aafa5b6ecf5f5de2813a2a2576721214
4a9725e441289dcd6127ab21562c0a048a94bc4c22d5a24b05db568fb3be0266

HTTP Headers

GET /wp-content/themes/Divi/style.css?ver=3.26.6 HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css
content-length: 73007
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Fri, 10 Apr 2020 18:49:10 GMT
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LHi%2Bl4%2FznshePq6%2BqfbUeczaFOtzj9dHLUra8Mu7B3Y%2FPKhzNh7%2FAlvAA5LHVUdzveroo%2FGnxftw8LjAnlx4glBh48rHwjgTAH4gTFjvPlzIaTQSxHlpQyTiIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749ebaa8df80b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/07/bepeo-web.png

104.21.6.116

200 OK

60 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/07/bepeo-web.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 657 x 853, 8-bit/color RGBA, non-interlaced\012- data
Size
60 kB (59911 bytes)
Hash
58b257a028cc6519da331dea549c76b1
358c2b108e86fa9cc16b2f36d89a4045de1d2b9a
ef78411203dcdfc20f0d7a180a51544f23bd12ad37364ce530ba119fba210a34

HTTP Headers

GET /wp-content/uploads/2019/07/bepeo-web.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 59911
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jg%2BEmSy4XJdKNnabIjX0gTHgfCq%2FBgl3otM2NVc4FWE7BwFddSjCuY8VqC5eueHFW32RH8EuCBatlwFCCvnItEDTo0sNk4HYz7hMQfQfyAlKIW7KKNGA0duiOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaa9e030b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/p1.jpg

104.21.6.116

200 OK

42 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/p1.jpg
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=[*0*], xresolution=98, yresolution=106, resolutionunit=1, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:07:25 16:17:56], baseline, precision 8, 792x563, components 3\012- data
Size
42 kB (42123 bytes)
Hash
1d92415e9267ad5e16c14a7e28e04734
4011acdc2c10b4ff8ad6f488ffcfb3754368a3ba
b426fa2f8f4b789322fd236679c48f71dcc3cb67e52d57b3332bf80822756d9b

HTTP Headers

GET /wp-content/uploads/2019/08/p1.jpg HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/jpeg
content-length: 42123
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:33 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=unpMm5AYru09noLlDo4ndHMd0LfhYAqqK8B99jCD0oTIU%2FKtYGzrIiOE70H1ZBGtCQC0ow99FIqv1aYCAcxMkpGl0ocmSr33XvUWgD5ZZASvYj4eSm47qvy9aA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe130b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/p5.jpg

104.21.6.116

200 OK

41 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/p5.jpg
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=[*0*], xresolution=98, yresolution=106, resolutionunit=1, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:07:25 16:18:39], baseline, precision 8, 797x574, components 3\012- data
Size
41 kB (41099 bytes)
Hash
71bc9a63f0c4d64795e3afea96c42008
0ada49611c07e98f06a0e435196379002d95200a
8b53a6b5131ac554e44dfe3fb54a8f4fee12bdbbd06bbc802317dfbfb7f798c6

HTTP Headers

GET /wp-content/uploads/2019/08/p5.jpg HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/jpeg
content-length: 41099
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DVefi%2BrpHzdgeNu7u5jUqubVijCxQd%2B0%2Fhl5MZkDSZNslSFEk5khKctas38HkTEP4yBi44b0QNmXwSzSRA90w3vNxwpZIa95KRY%2BnMBKQfTkNUP2z4kkBolwEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe160b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/p6.jpg

104.21.6.116

200 OK

40 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/p6.jpg
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=[*0*], xresolution=98, yresolution=106, resolutionunit=1, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:07:25 16:18:33], baseline, precision 8, 800x572, components 3\012- data
Size
40 kB (40268 bytes)
Hash
4c50ea30291792876d2145699cbf5a16
ec94e7d78407bd109cbd58ab6578cc3d990d80e6
cefe8d6c774e1b9d56975795cf01cd185f73a89362f1fd7af850870fbec94964

HTTP Headers

GET /wp-content/uploads/2019/08/p6.jpg HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/jpeg
content-length: 40268
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:25 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F0KspaUk0FHpAE%2BvyT54riF3CqNP4jAb0XNTDtQ%2B%2BtYeSiyQhseG6RRB40Q3YiUpyMaunWbqR4ATvmxqcysYF8PelOLMOhyKN1zyLQ41usNq0No5ZtgAcW9a7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe180b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/p3.jpg

104.21.6.116

200 OK

57 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/p3.jpg
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=[*0*], xresolution=98, yresolution=106, resolutionunit=1, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:07:25 16:18:53], baseline, precision 8, 796x572, components 3\012- data
Size
57 kB (57237 bytes)
Hash
000eb17623184f05063ff2cc679ce7d5
422742bab3eec6e54c27f5829e5d5b5f804ad7f0
317dfb374aea6e421a802ce8fc9318050b2e059968f23355944071a6ee39d472

HTTP Headers

GET /wp-content/uploads/2019/08/p3.jpg HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/jpeg
content-length: 57237
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:30 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vP5hFC0qX3OnROJpB33QHgG%2FuAh2dfW%2FxPqv3liEM4%2FuLRpejI6uFW3bdHnROu%2B%2Bq2c4LteSjgUZCM1dzIUxKJZnM2CCPvmDpT6TrkW6BicwQHXggp%2ByWkKxjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe170b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/p4.jpg

104.21.6.116

200 OK

81 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/p4.jpg
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=[*0*], xresolution=98, yresolution=106, resolutionunit=1, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:07:25 16:18:45], baseline, precision 8, 800x574, components 3\012- data
Size
81 kB (81098 bytes)
Hash
c330f9562a1ced4e11d012546b66c103
558661a8cd7a70f22722e16c7abc26fe8dcb73d0
7b1e0eebee799b92db639d8cce3d06d8e38d21fcd08192ffd1aa79b8c0fb2e16

HTTP Headers

GET /wp-content/uploads/2019/08/p4.jpg HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/jpeg
content-length: 81098
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:28 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O62Bz24Xu6IPaS%2BJ1j9E5s1%2B0ROUZjwaYdOvx9i%2FgdN39RrERR02idGOij7jKAK0MPxZAdmnl0qEjZbPqXCsoGuUg%2B0K41NI1WIRKtU1SaqHmm34Xm9bNKnAjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe140b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bepro.al/wp-content/uploads/2019/08/circle-05.png

104.21.6.116

200 OK

157 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/circle-05.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 1093 x 1092, 8-bit colormap, non-interlaced\012- data
Size
157 kB (157072 bytes)
Hash
5927c13d521d6616fe5f5fc5101d0ac1
84cd5fd228d17466b61fa7857367f041f8b4cf4f
aa3c43834a562af185790f63e5a4d4996e77274685ce788c6ec66e13e8926729

HTTP Headers

GET /wp-content/uploads/2019/08/circle-05.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 157072
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:45:54 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TNXWfDyD02Wh0issm4T3Rjk%2FzViNSjjLt%2FooIfZksx1IaqoE%2BwQnoLEtaHRF68pc7hFjPnjX67vFbwbboOFWJGwawfg%2BLqlYBsQbVykoM7rQoi7eV6OsbPbutw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaade320b39-OSL
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/lapi.png

104.21.6.116

200 OK

119 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/lapi.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 1214 x 761, 8-bit colormap, non-interlaced\012- data
Size
119 kB (118951 bytes)
Hash
0832195c9830ba5b4476a0dee5ccc3ac
7131b4027dc41c462e2d013e5665acc1928460f9
004a8a3e9800146f3c39a7968daa327e110dd6e8930c9fe1c405e18651f08d0b

HTTP Headers

GET /wp-content/uploads/2019/08/lapi.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 118951
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:57:35 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ksRV%2Bx6khD5rxjswtMpDuA6uw7QrswIFlduYiqP44pi8ogmbEF73yp%2Bl6dkZnpUm6VUR8dHUhfOs8pm7DgiSJtK0C3QarR8hz%2FmnMWYWKfpRLDzi6gfy9rHcow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaabe120b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bepro.al/wp-content/uploads/2020/06/DSC_2781.png

104.21.6.116

200 OK

188 kB

URL HTTP/2
bepro.al/wp-content/uploads/2020/06/DSC_2781.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 1093 x 1093, 8-bit colormap, non-interlaced\012- data
Size
188 kB (187928 bytes)
Hash
dfd62897d9933de9190da4a9a6a3aaf0
15ab323a0cf857931c3302b68214e6e724af06f1
d2d1fd931e400afb5b0729c235ca81d2cdc048f12997f779fd8653136a681f83

HTTP Headers

GET /wp-content/uploads/2020/06/DSC_2781.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:27 GMT
content-type: image/png
content-length: 187928
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:39:49 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c%2B2ZImtpV5mxW%2Bl5zjF1mVrQxjzhgLhPBV62BFDt0D8jGl0h9npBb3PV6kekDozj%2F3H596UThKjo%2BQ0nqNLKplOpg4Rz6fcF7GYRfJra3DZnyTo37%2FwQHBNOXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaade330b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.35

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bepro.al
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 06:30:11 GMT
expires: Sat, 02 Dec 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 250696
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/circle-04.png

104.21.6.116

200 OK

187 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/circle-04.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 1093 x 1092, 8-bit colormap, non-interlaced\012- data
Size
187 kB (186747 bytes)
Hash
f0864b6b8a16b56d18a83976dd86a9da
ec573ca4a4dc5d78749c196281100ed952e0cc53
e974a610f8dee760195260fb750b3fbe603453b55d2df8a8cdb12cc98b9e5c08

HTTP Headers

GET /wp-content/uploads/2019/08/circle-04.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:27 GMT
content-type: image/png
content-length: 186747
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:45:57 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lmts8LjOZ8qdN0JquieAuXH%2F%2BmPfJqkpQo4FSLF058Lu%2BKBWdMH5AOMq0asfeY8BIcLYKnNlhhOPLA3rJ%2BhIZ0UEubbMaUt17cQgOFBsTR7nQLxO0YWrOxzrrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaade300b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/drawing-17.png

104.21.6.116

200 OK

97 kB

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/drawing-17.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 1093 x 1093, 8-bit/color RGBA, non-interlaced\012- data
Size
97 kB (96797 bytes)
Hash
caf9288e0879e0d401382a6bc2b56252
73089ef32bfd1562f302dcaaf254cb80511059e9
a33a7cb49edf3ce61b4e065bcfad8ab83f024a498f7d5eae6933373dd3a227a4

HTTP Headers

GET /wp-content/uploads/2019/08/drawing-17.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:27 GMT
content-type: image/png
content-length: 96797
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:45:51 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FZJHVyxy5YufKDtUOmc%2F1qqC2QeCdD7NYML5DIvAB9oA%2BfZqv9btnkv%2FnW7x%2Bi9K%2BpBiyQkWuWBoicOnETVv1cZkCMOweEw1VlanFrJUHppNpezSsCnTZRQ4qg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaee380b39-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bepro.al/wp-content/uploads/2020/09/Adi.png

104.21.6.116

200 OK

216 kB

URL HTTP/2
bepro.al/wp-content/uploads/2020/09/Adi.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 1092 x 1092, 8-bit colormap, non-interlaced\012- data
Size
216 kB (215528 bytes)
Hash
69ffbc98db1205d9cbda40a98a6efce9
11797ce5f1742c9fccc250da1ac7c8e40276729a
e53bfe960d228fc99d35413badc71c057b61ab013acbeda93da438edcf8662dc

HTTP Headers

GET /wp-content/uploads/2020/09/Adi.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:27 GMT
content-type: image/png
content-length: 215528
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:26:36 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9W%2BstbzEHrt04Yo03MP%2FKHyBSwzkdPopReYbdYeVxBD7gk4VEjRfMd9MYI6xxEsKs4U%2BCEV5Lfj8APF77a2DP3K1NAjrL3dVP0EnFxojD7LWGRBU4iiEDBeQEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaee360b39-OSL
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8859
Expires: Mon, 05 Dec 2022 06:36:06 GMT
Date: Mon, 05 Dec 2022 04:08:27 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8859
Expires: Mon, 05 Dec 2022 06:36:06 GMT
Date: Mon, 05 Dec 2022 04:08:27 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8859
Expires: Mon, 05 Dec 2022 06:36:06 GMT
Date: Mon, 05 Dec 2022 04:08:27 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6826 bytes)
Hash
a349d02cce160f72cc93f6fb6e45fa46
a6f82481ea0a820da0f199e8f9051a4aa4013c82
ab320118577a2dcb6ab7ad904d6350e187501a94b39b71fdd70b31cbc8853b24

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6826
x-amzn-requestid: f0abdba6-14c8-4aae-ba3b-37ba0af2ff08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_t2FsLIAMFekA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1325-3452be066acddb554f528cc3;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GS4yLzXiIZt-eL9T7gjbf2-vMu8i30WKPDmc2EQDxv0CELjdW1gMVA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:46:51 GMT
age: 22896
etag: "a6f82481ea0a820da0f199e8f9051a4aa4013c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10396 bytes)
Hash
24c69d7ef356b352956d6dcbc9f5df1d
2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9
94d068620c34652cb2d24ca8b3cf962febe9606e6d3a33d937fc9d99f176edef

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10396
x-amzn-requestid: b879fd2e-b6cf-4373-b780-2d97481c45f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cioNbH5KoAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a8722-6add7f8e225878473b20c015;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 23:15:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ir97GJKaFoW6BNXCcmMqp0JSUd5JhCACyUvLh5G-0BWCDVJsqs7XhQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 22:03:01 GMT
age: 21926
etag: "2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13647 bytes)
Hash
6079166a1ed5bac7373183f03f33b84e
b0c9391b87a4560598e43d5084dda41e267974a9
3e2faccbc3e14a10da4a433d789068cdc3fb2d3e2a04a7e2b7ea5f6f6313dcd4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13647
x-amzn-requestid: 36276b12-9e02-4d00-a100-9aa5c794fc79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_ueEWUoAMFj7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1329-7abb45a85c6bc2235c25d61e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oXeR8DTpEoK8E-BiI7gT4JEIdVBfiimfydNYIC62_rNLlTdem9Buig==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:45:46 GMT
age: 22961
etag: "b0c9391b87a4560598e43d5084dda41e267974a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9e8d044-2cda-4dba-9da8-c0a296845bca.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12348 bytes)
Hash
b8e6f84dff61fedd8ff9baa9bb648883
f8d5cc7b315879b66a11b403463da1330617d2fa
025c66a4a0e7927353e1733d7f8cfb6ec3c9c0228d34267cbff11f09cf112127

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9e8d044-2cda-4dba-9da8-c0a296845bca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12348
x-amzn-requestid: 72f681ef-9ae7-4fc5-8539-230e1d4277a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKa_HpTIAMFrcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abddf-43ef45165fd982997e5018c8;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:09:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ee7Rihwq-F-zcJWcnxZtfzfmhrn0w3mub_5F4j8u0r2Uc91oXrKPzA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 04:17:01 GMT
age: 85886
etag: "f8d5cc7b315879b66a11b403463da1330617d2fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6886 bytes)
Hash
f71032604eecccf0a81f323a5f96a400
f8866d4f3185bcf7871581d75339998b34d6cf6d
d053eedc717d7fd86e621ba948680be16538396d1ba9854b6816626d149b1c57

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6886
x-amzn-requestid: d721caf6-2252-4ede-9533-3d3fcd6cce0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpsw-FfRoAMFtOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d5b39-7644a195142f6c420ec7eac6;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 02:45:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RwhNdxS-EBTraqzS_TnCNXj3JXgz5NkO8oLyQaHOhHdtnvBbg4vsRQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 02:45:13 GMT
etag: "f8866d4f3185bcf7871581d75339998b34d6cf6d"
content-type: image/jpeg
age: 4994
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1caf4c1-b9c0-4db1-a780-00b9a6198731.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5209 bytes)
Hash
8d76ec668361348eb17d54001fd2e6c6
534299a20a76ea6e3250f0fb35fe772cac04ef51
22676fae3909acf18e6cd4f505ec718fdac156990edb20926afdae2a359a2859

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1caf4c1-b9c0-4db1-a780-00b9a6198731.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5209
x-amzn-requestid: 682056d5-7815-4fd1-b05b-723619128d8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKUXF5eoAMFRvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abdb5-6df5d866267739212832ee66;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:08:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TUn27-HAzSq5FHhr2K7W377QRIQqOh9owE1xVL6BQetiK9U-jtwbsg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 03:45:47 GMT
age: 1360
etag: "534299a20a76ea6e3250f0fb35fe772cac04ef51"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/circle-02.png

104.21.6.116

200 OK

146 B

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/circle-02.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
146 B (146 bytes)
Hash
8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0

HTTP Headers

GET /wp-content/uploads/2019/08/circle-02.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: image/png
content-length: 198703
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:46:04 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oASDjxfiU0Yf%2B3OZcW46ZZOzXuDRTvbZJqSHyURCFln%2B2ZbF44YkyyuaFNZM1eCZjm0l74z3s61cU2ONPDArnYqi1YuPIpskbK5mBZwgMmYO1HBzRz2NReo7dg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaade310b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

58 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Size
58 kB (57633 bytes)
Hash
cc07150a8145f0230f17c0e5dc629fbf
c3433c5c74c0e7a887b4f23e834c031f93da4b94
9901a381cbbcd5c406233c881abdb8accec9e2012a16dfad5fb009df6d701f6c

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 05 Dec 2022 02:41:08 GMT
expires: Mon, 05 Dec 2022 04:41:08 GMT
cache-control: public, max-age=7200
age: 5239
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
33002e87ed87cec83ec76bdfe55cb33a
a2dafcefab949833412ab20508096c9974b9e359
f73d30247eb325d9dc9531381224e8942b39b56c264ade1618855f1fad9eda2a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3035
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:27 GMT
Last-Modified: Mon, 05 Dec 2022 03:17:52 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/fbevents.js

157.240.221.16

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
157.240.221.16:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27340 bytes)
Hash
44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: sBL+cZC+RGXYdmDwK/lcAg5XC9sHaJOg0ItUSSIaFgdCFbZOpNXqZEu0jmRVtO8nxMRH2xo2KLRrl/onTFUGTg==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1679558926
date: Mon, 05 Dec 2022 04:08:27 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
33002e87ed87cec83ec76bdfe55cb33a
a2dafcefab949833412ab20508096c9974b9e359
f73d30247eb325d9dc9531381224e8942b39b56c264ade1618855f1fad9eda2a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3035
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:08:27 GMT
Last-Modified: Mon, 05 Dec 2022 03:17:52 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

www.facebook.com/tr/?id=231788647900228&ev=PageView&dl=https%3A%2F%2Fbepro.al%2F&rl=&if=false&ts=1670213305322&sw=1280&sh=1024&v=2.9.89&r=stable&a=wordpress-5.4.12-2.1.0&ec=0&o=30&fbp=fb.1.1670213305321.1365527288&it=1670213305114&coo=false&rqm=GET

157.240.221.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=231788647900228&ev=PageView&dl=https%3A%2F%2Fbepro.al%2F&rl=&if=false&ts=1670213305322&sw=1280&sh=1024&v=2.9.89&r=stable&a=wordpress-5.4.12-2.1.0&ec=0&o=30&fbp=fb.1.1670213305321.1365527288&it=1670213305114&coo=false&rqm=GET
IP
157.240.221.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=231788647900228&ev=PageView&dl=https%3A%2F%2Fbepro.al%2F&rl=&if=false&ts=1670213305322&sw=1280&sh=1024&v=2.9.89&r=stable&a=wordpress-5.4.12-2.1.0&ec=0&o=30&fbp=fb.1.1670213305321.1365527288&it=1670213305114&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 05 Dec 2022 04:08:27 GMT
X-Firefox-Spdy: h2

bepro.al/wp-content/uploads/2019/08/circle-01.png

104.21.6.116

200 OK

0 B

URL HTTP/2
bepro.al/wp-content/uploads/2019/08/circle-01.png
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/08/circle-01.png HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:27 GMT
content-type: image/png
content-length: 176135
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 04:08:26 GMT
last-modified: Sun, 22 Aug 2021 14:46:08 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2ilghlgfj2kIvU4xJZHcvihTTVhEX%2F4Dm8COJYcO0fMXmUyNkJo5ynlCHzo3ScWCAS2IaZl7%2B9Enmj5d9x%2FfH4n%2BlH0nxZeeL52fKJv%2BnaF3VRyyEZMIJGY1MQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaade2f0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bepro.al/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

104.21.6.116

200 OK

0 B

URL HTTP/2
bepro.al/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
104.21.6.116:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: bepro.al
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: application/javascript
last-modified: Wed, 30 Nov 2022 18:31:41 GMT
etag: W/"6387a18d-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7wvjE2Tdk5VDaEHlCYVGnVAcyFlHsnQ6mHdsya7GsgkV2aiEztgLBANWOxZRYNznSm10GSORv%2FrW0krYBvGr%2FQnGtjc1dg12Lsudaj0Dc%2BQ5XYprretIiTarvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7749ebaaee3c0b39-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Wed, 07 Dec 2022 04:08:26 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2

code.jquery.com/ui/1.11.1/jquery-ui.js

69.16.175.42

200 OK

0 B

URL HTTP/2
code.jquery.com/ui/1.11.1/jquery-ui.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /ui/1.11.1/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-encoding: gzip
content-length: 112090
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-71633"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670213306.dop065.sk1.t,1670213306.cds247.sk1.hn,1670213306.cds218.sk1.c
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.6.3/css/all.css

172.64.132.15

200 OK

0 B

URL HTTP/2
use.fontawesome.com/releases/v5.6.3/css/all.css
IP
172.64.132.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v5.6.3/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bepro.al
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 04:08:26 GMT
content-type: text/css
x-amz-id-2: /yzJNGwPlrO4qRZsWGgkmzfL7gJ2qYrtf9ByKoo3vVM19j/uaBDRD8l8vZXWDNQtZuGVATU8hgE=
x-amz-request-id: 624P5AKMN9BYECEH
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:44:33 GMT
etag: W/"dc93d584e41f8417f6b7163320d34329"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3JBuNu14qCkPGOE74klBV%2BXGxAkbnSIE1RxZqpz5je49gIcmKFwU2LmwCDlvboBdM3VUrL01d8HHDUBr4sixt4SxK33JDmwxXO8XYX066vthh9P1MA535UVY6jQFOQj3h2Gcwgik"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7749ebab5bf3886e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.4.12

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.4.12
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.4.12 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bepro.al/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Dec 2022 04:08:26 GMT
date: Mon, 05 Dec 2022 04:08:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (28)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations