Report - shbukrydh.com/

Report Overview

Submitted URL
shbukrydh.com/
IP
162.241.85.111
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2023-02-05 20:04:56
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
94

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	95.101.11.115
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
shbukrydh.com	unknown	2023-01-16T21:58:42Z	2023-01-16T21:58:42Z	20 kB	1.3 MB	162.241.85.111
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.33.182.41
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	381 B	82 kB	172.217.21.168
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	425 B	1.8 kB	142.250.74.106
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.1 kB	4.2 kB	216.58.211.3
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	60 kB	34.120.237.76
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
xtratheme.com	76152	2015-03-24T23:11:26Z	2023-03-09T11:32:06Z	2.9 kB	29 kB	148.251.217.13
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	1.9 kB	90 kB	142.250.74.35
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	680 B	1.9 kB	172.64.155.188
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	833 B	444 B	216.239.32.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed
2023-02-05	medium	shbukrydh.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	shbukrydh.com/js/footer2.js	48 kB	2023-03-13	2023-03-13
Pretty URL shbukrydh.com/js/footer2.js IP 162.241.85.111 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:54:12 Last Seen2023-03-13 17:54:12 Times Seen1 Hash 52fdbd70f2e7dbd45efa35eaef5e5035 3363b9bcc01c01e7982e15f4f9b2bac03137f7d6 617aab6aa436e1c52f56c261f4249d1ff707624401676e287f9b3c3dedd58688 Loading...

	shbukrydh.com/	2.0 kB	2023-03-13	2023-03-13
Pretty URL shbukrydh.com/ IP 162.241.85.111 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:54:12 Last Seen2023-03-13 17:54:12 Times Seen1 Hash 2610a9d940506882ec4fc72245b759b7 ca22d85bf9013feb0805f76fcbe86173488bb70d 342d0de189b42fe5daf338afa29b1db345ce7535f10c437c052c97926c8aa0ca Loading...

	xtratheme.com/arabic-elementor/business/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0	11 kB	2023-03-07	2024-04-24
Pretty URL xtratheme.com/arabic-elementor/business/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 IP 148.251.217.13 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 14:04:56 Times Seen5358 Hash 4eee50ac6f4f364ba3a284d0753ddae3 a8e7e824e6824ae0b370ff36e2c07ca07276fae0 b936db5880aa9b6b2f26a8d32fc2b689fb75f69d971b94194f16dba801221ffe Loading...

	shbukrydh.com/js/min.js	116 kB	2023-03-13	2023-03-13
Pretty URL shbukrydh.com/js/min.js IP 162.241.85.111 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:54:12 Last Seen2023-03-13 17:54:12 Times Seen1 Hash a313e03a30b0a1715defb06339cc1978 5b3aebd87073a116a74795d904efb95a3803eab3 2fbd3fa4e42e56ee4b584ad7e209bea451b7828ddd8c28556b93151160e229b1 Loading...

	shbukrydh.com/lightbox2/dist/js/lightbox-plus-jquery.min.js	99 kB	2023-03-08	2024-01-01
Pretty URL shbukrydh.com/lightbox2/dist/js/lightbox-plus-jquery.min.js IP 162.241.85.111 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:45:51 Last Seen2024-01-01 22:34:34 Times Seen12 Hash d6f11c039428d051fbb5ad896c08c626 d61a8a17ffa69f89dde28d01afe8b49c3c0e75f9 51fcd3698d1a2a65bca3c9d03d60108dfbc2daae52fc24bb7abee10ce4b4d41d Loading...

	shbukrydh.com/	488 B	2023-03-13	2024-02-06
Pretty URL shbukrydh.com/ IP 162.241.85.111 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:54:12 Last Seen2024-02-06 17:47:13 Times Seen3 Hash d4c544cb2fe8629318ecaa246046460f 772dded7b6353e3f06eec7d7fd0d63fe6a90192b c8cb70cc19b37c3459f1fda6a78ebcb3c5fc120bf76f5cd2f2d8e285aa7f4929 Loading...

	www.googletagmanager.com/gtag/js?id=G-G19B88B5PP	239 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-G19B88B5PP IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:54:12 Last Seen2023-03-13 17:54:12 Times Seen1 Hash e006f1de576370e38d243001fca664f0 149b7e89289b48e17d50ac4781c84a479fc38abc 61f856c26c767a53466d3a35ebef22809ccb00be92c6f3fc7e7b8aa3f3c89f70 Loading...

	shbukrydh.com/	493 B	2023-03-07	2024-04-24
Pretty URL shbukrydh.com/ IP 162.241.85.111 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:11 Last Seen2024-04-24 20:13:14 Times Seen4270 Hash f73f3cc147a181d5955eaba113c1c122 07a5ef5a63d37a99d17986786d75bdcb3cda6409 5aab3a40376dc0dffe15b2882b50d298e6c877683a4f25ddfcf77fbd16d47b56 Loading...

	xtratheme.com/arabic-elementor/business/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.6.8	2.6 kB	2023-03-07	2024-04-24
Pretty URL xtratheme.com/arabic-elementor/business/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.6.8 IP 148.251.217.13 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:07 Last Seen2024-04-24 16:05:57 Times Seen11293 Hash 020e87460ce58802842e34a3aac97d83 d2eed5f7573c0bd640fb9f125b6bfedf43ebf9b9 138154c0deed3326477b9b4909175101070a5a3a95342291b53d8cc9879a5f47 Loading...

	shbukrydh.com/	2.3 kB	2023-03-07	2024-04-24
Pretty URL shbukrydh.com/ IP 162.241.85.111 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:07 Last Seen2024-04-24 20:13:13 Times Seen7933 Hash f0bef95e258d5b84f82c5d4e29252176 eac5936c555c039bc38816d0916e13c0b364d797 a6c3ffec54ef5f2ca033b1fcdf84e1feac93437a3d8d4439667e9276ca2a9836 Loading...

	shbukrydh.com/	153 B	2023-03-13	2023-03-13
Pretty URL shbukrydh.com/ IP 162.241.85.111 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:54:12 Last Seen2023-03-13 17:54:12 Times Seen1 Hash b5601e4b2d2a1c3afefc12dde9c2a6e4 e5ba554b5b095393828cfdb7e65bdd112b04a685 902464af9ed874106266bca961796d22e442c6fc20e7c11121f4a417d8ca1e31 Loading...

	shbukrydh.com/	332 B	2023-03-07	2024-04-24
Pretty URL shbukrydh.com/ IP 162.241.85.111 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-24 20:13:14 Times Seen9148 Hash 7d495bb1d6c246a2d57df3ab9332a3cc 6367d4f8addf48f2af1023b8176a2263bb424d01 df09a4f39d495e901a5479fce56c8ddec4f8a6acda1b3ceab7adc704fa439e32 Loading...

HTTP Transactions (87)

URL IP Response Size

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20552
Expires: Mon, 06 Feb 2023 01:47:17 GMT
Date: Sun, 05 Feb 2023 20:04:45 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11960
Expires: Sun, 05 Feb 2023 23:24:05 GMT
Date: Sun, 05 Feb 2023 20:04:45 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 19:36:21 GMT
content-type: application/json
age: 1704
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8806
Expires: Sun, 05 Feb 2023 22:31:31 GMT
Date: Sun, 05 Feb 2023 20:04:45 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: V4i99L8UZ4/OSmWBjoL/honH/cA7CSv0QadQSWBahPL/0N+saHzZORC8neu4L2WNTb3WcbZYt6Q=
x-amz-request-id: ETJ2SF89SZZXTXDS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 19:24:37 GMT
age: 2408
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 20:04:45 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

shbukrydh.com/

162.241.85.111

301 Moved Permanently

230 B

URL HTTP/1.1
shbukrydh.com/
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
230 B (230 bytes)
Hash
5e1cfd005845f8b3f2b5a154eb7085ff
85ffc41e0bde860788fe1ff0adb111e64122fdc1
467c6092db2e114399cc7704c6cb950f6a529479de489d39b8a52618806302a2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sun, 05 Feb 2023 20:04:45 GMT
Server: Apache
Location: https://shbukrydh.com/
Content-Length: 230
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 19:07:20 GMT
age: 3445
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb31b5464476a5ef5f6928ffb0f20fff
2df29ee8897ed1e5305a6817e1a6ae705fed6f8c
512400be97a8a9dd82cd78252bf446d5e58a8bb52f983fc5234cfec8dcb79f18

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "512400BE97A8A9DD82CD78252BF446D5E58A8BB52F983FC5234CFEC8DCB79F18"
Last-Modified: Fri, 03 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21544
Expires: Mon, 06 Feb 2023 02:03:49 GMT
Date: Sun, 05 Feb 2023 20:04:45 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11226
Expires: Sun, 05 Feb 2023 23:11:51 GMT
Date: Sun, 05 Feb 2023 20:04:45 GMT
Connection: keep-alive

push.services.mozilla.com/

52.33.182.41

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.33.182.41:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FMRguqyxK4dEOuCz6jU06Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZJuWiqIs8QbzWcSIq6DufZHeQwQ=

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:04:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:04:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-G19B88B5PP

172.217.21.168

200 OK

82 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-G19B88B5PP
IP
172.217.21.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (29647)
Size
82 kB (81642 bytes)
Hash
efb7881d43f612bd53e8b700b06cabd4
0280043ba4e75f2ab03f22c543d48d6cecdc66f5
f2cba48f3cc2fac29243a77ec04d89bffc8445de3f5cdff63a8a3291a0b3dd9c

HTTP Headers

GET /gtag/js?id=G-G19B88B5PP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 20:04:46 GMT
expires: Sun, 05 Feb 2023 20:04:46 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81642
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shbukrydh.com/css/min2.css

162.241.85.111

200 OK

2.0 kB

URL HTTP/2
shbukrydh.com/css/min2.css
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (5652), with no line terminators
Size
2.0 kB (1957 bytes)
Hash
d514528729e39fbf0fcfe39b25b4ef90
cba56c2c3d560d59a42d9056739c0b4ae5cf304c
e7a57cad82dea873c5657b2e3ab7b8e9dba4de51628b2fb6396044f7df5562a5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/min2.css HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Aug 2022 01:43:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1957
content-type: text/css
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/lightbox2/dist/css/lightbox.min.css

162.241.85.111

200 OK

1.0 kB

URL HTTP/2
shbukrydh.com/lightbox2/dist/css/lightbox.min.css
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2532), with no line terminators
Size
1.0 kB (1000 bytes)
Hash
d011a3820b39efda650a001bce0a4285
471d13a933a9308391fc1611166f7296e40e59c1
ef3eede9c7826f3b7df56f058d4fa91583add70181dadd66ad39ae96a23592ad

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lightbox2/dist/css/lightbox.min.css HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 07 Jul 2020 08:02:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1000
content-type: text/css
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:04:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=El+Messiri:500%2C400%7CRoboto:400&display=swap

142.250.74.106

200 OK

1.1 kB

URL HTTP/2
fonts.googleapis.com/css?family=El+Messiri:500%2C400%7CRoboto:400&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
1.1 kB (1138 bytes)
Hash
ce61f6817083949f2e94f13d34384938
a6acf7ef687e0b93d4b2908124764fc3f6b4b6f7
0633356ab1130e3da1f66931a764c1b1d6d4510dd6b0e821b5f42e841f2cdc10

HTTP Headers

GET /css?family=El+Messiri:500%2C400%7CRoboto:400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 20:04:46 GMT
date: Sun, 05 Feb 2023 20:04:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shbukrydh.com/css/min3.css

162.241.85.111

200 OK

14 kB

URL HTTP/2
shbukrydh.com/css/min3.css
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (58865), with no line terminators
Size
14 kB (14282 bytes)
Hash
5e46b55dd0336898a8d72e8044b6f8e3
cc6ec240a2a73a771bfb926ccdcb442dc7e05900
4c2986004177d060a027aa9697ef0b60639eb0cb1182021727e365b1cf1e4891

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/min3.css HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Aug 2022 02:06:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14282
content-type: text/css
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/images/logo-1-1.png

162.241.85.111

200 OK

8.6 kB

URL HTTP/2
shbukrydh.com/images/logo-1-1.png
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 250 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
8.6 kB (8557 bytes)
Hash
9083933f44b101a39a9972cbd1cbfcfd
6dee345604dd6f139f530ff7f405f617537222b3
0aa1e7bf21a8a983c3ae730b83e79b8468fa85c94962c70277cbb692b0992a1f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/logo-1-1.png HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:05:01 GMT
accept-ranges: bytes
content-length: 8557
content-type: image/png
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/images/dummy.png

162.241.85.111

200 OK

68 B

URL HTTP/2
shbukrydh.com/images/dummy.png
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/dummy.png HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Aug 2022 17:36:46 GMT
accept-ranges: bytes
content-length: 68
content-type: image/png
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739049036.jpg

162.241.85.111

200 OK

36 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739049036.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x466, components 3\012- data
Size
36 kB (35642 bytes)
Hash
44c8d396b3e7a8fb52775d9d09095073
cb1b2cb5a4a6942f171713c2dbba05a9948635f0
c7c53de186f6df1cb01b13a7846ad10dd138b348b0e30ace544dd4b953a81ac0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739049036.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:35:03 GMT
accept-ranges: bytes
content-length: 35642
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739048955.jpg

162.241.85.111

200 OK

13 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739048955.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x196, components 3\012- data
Size
13 kB (12644 bytes)
Hash
ae68ad2ef2b950b67afe2f174983b6e0
c43957f7f6eb4cb478aa91548a79d2bf3d165329
9d21dcc3386a6b8748be63d780bad939608cc19cfb6c8af20f2e5b485ac62c82

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739048955.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:34:55 GMT
accept-ranges: bytes
content-length: 12644
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739049092.jpg

162.241.85.111

200 OK

16 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739049092.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x262, components 3\012- data
Size
16 kB (15744 bytes)
Hash
8cb7b76801a35d992e7ade60ab0494ec
58515822563f7c0669ee1b298425f686087f380f
fb843bdba5eb1625f523c68369f827c5934f691f4cc23c9df0e89c21862ea970

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739049092.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:35:09 GMT
accept-ranges: bytes
content-length: 15744
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:04:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:04:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

shbukrydh.com/js/min.js

162.241.85.111

200 OK

48 kB

URL HTTP/2
shbukrydh.com/js/min.js
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
48 kB (48519 bytes)
Hash
a33c013ad5b8abeff05b2543b5d2211d
26ca97bd48c1734215ae30ace74e5e920dad635b
ce0c60d43a4352bee0ac31d26b0cc52d704fb923a3156b3fc2ff7f5004f1d303

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/min.js HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Aug 2022 01:46:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/css/iconfont.css

162.241.85.111

200 OK

62 kB

URL HTTP/2
shbukrydh.com/css/iconfont.css
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
62 kB (61860 bytes)
Hash
42574924de639b476d3d58bfe38abb08
9126bbaf218914e9725c6c48be4c919ae9cdcaed
9316b554151a990e40c1e34a0e3786c5f47fe1c5fb4176aedb2a95a2c78c37eb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/iconfont.css HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Aug 2022 02:04:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739048899.jpg

162.241.85.111

200 OK

21 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739048899.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x234, components 3\012- data
Size
21 kB (21237 bytes)
Hash
6390c76406c19823cce0c576018d049b
6ba47163e6781225002c2d78aa15d8e138462bd4
a4316ac631c35653ddd5add36101a1ea6e92292842257ece8e0df69a71f07152

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739048899.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:34:50 GMT
accept-ranges: bytes
content-length: 21237
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/elmessiri/v16/K2F0fZBRmr9vQ1pHEey6Mo2AAgDwbWs.woff2

142.250.74.35

200 OK

23 kB

URL HTTP/2
fonts.gstatic.com/s/elmessiri/v16/K2F0fZBRmr9vQ1pHEey6Mo2AAgDwbWs.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23288, version 1.0\012- data
Size
23 kB (23288 bytes)
Hash
822eaf4cdcb853b74eb1d0cf1fb28312
6c792808101e22198da075f9d0c55da086418a8e
9406855df583a9ae47fdffc8a1dcc912710876894565a18dae73fd0296ed7f46

HTTP Headers

GET /s/elmessiri/v16/K2F0fZBRmr9vQ1pHEey6Mo2AAgDwbWs.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shbukrydh.com
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 08:00:06 GMT
expires: Fri, 02 Feb 2024 08:00:06 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 19:14:52 GMT
content-type: font/woff2
age: 302681
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739048976.jpg

162.241.85.111

200 OK

19 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739048976.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x350, components 3\012- data
Size
19 kB (18865 bytes)
Hash
01685e3d06434af3b788a16f7bc4283b
3ede9a56fca46bc91aeb4b0855ec75cb3bca7fce
7cbf25a6dff5cc2ec063187f79cc42e089236a996c998e9b634fbaeb6028e03e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739048976.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:34:57 GMT
accept-ranges: bytes
content-length: 18865
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739048971.jpg

162.241.85.111

200 OK

18 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739048971.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x350, components 3\012- data
Size
18 kB (18013 bytes)
Hash
2639bc4e3fd6f87316c7506825d193d4
e4af961d31e1d0620cdcacd98050a862574e5c42
795cdd32508d05e9f3c86f4184e09313e4f39bfa3eef9f1c22599e4d7b28e533

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739048971.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:34:57 GMT
accept-ranges: bytes
content-length: 18013
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739048850.jpg

162.241.85.111

200 OK

18 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739048850.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x262, components 3\012- data
Size
18 kB (18067 bytes)
Hash
c89dcbded52760d2550d540078927ee7
252fd64a4638924bbadb126f1ed8c667dd6066ef
98670d5b247a5f641acece6a99c71f6ec5f6489a11c6c6c4c9fff0b41de1f7d6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739048850.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:34:45 GMT
accept-ranges: bytes
content-length: 18067
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739049062.jpg

162.241.85.111

200 OK

34 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739049062.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x444, components 3\012- data
Size
34 kB (33954 bytes)
Hash
0bc883bc9ca02ff9ca88fa741a1da9a5
4f66239c4d72025e42453f7f76e625d1c99713ce
ed1cf5ca59b9715123fb26688d7b9fa207f8bcc95a558eb25fd6038e1a3ce7a5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739049062.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:35:06 GMT
accept-ranges: bytes
content-length: 33954
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/css/webfonts/revicons.woff?5510888

162.241.85.111

200 OK

7.5 kB

URL HTTP/2
shbukrydh.com/css/webfonts/revicons.woff?5510888
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Size
7.5 kB (7536 bytes)
Hash
04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/webfonts/revicons.woff?5510888 HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Aug 2022 22:37:56 GMT
accept-ranges: bytes
content-length: 7536
content-type: font/woff
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739049078.jpg

162.241.85.111

200 OK

21 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739049078.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x250, components 3\012- data
Size
21 kB (20702 bytes)
Hash
751ab358590a29d4c6fc27f83985c018
8473234521f79e5714a3b6528e01a121d4f5749c
578a83a8dc480d9f5e5d1f4ea652c9d077a568ee5819edcd7f39ff99872f6485

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739049078.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:35:08 GMT
accept-ranges: bytes
content-length: 20702
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739048907.jpg

162.241.85.111

200 OK

22 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739048907.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x350, components 3\012- data
Size
22 kB (22295 bytes)
Hash
fa9c6c55f8881f50536bdf0fe59d49ca
f735a55882d068ba93980c5620264d10c21e69e7
afeac84cb6e53904c22679eec964b0d0e29cb38b6f5439cdafa2ad186840d68d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739048907.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:34:51 GMT
accept-ranges: bytes
content-length: 22295
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/elmessiri/v18/K2F0fZBRmr9vQ1pHEey6MoiAAhLz.woff2

142.250.74.35

200 OK

20 kB

URL HTTP/2
fonts.gstatic.com/s/elmessiri/v18/K2F0fZBRmr9vQ1pHEey6MoiAAhLz.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 20108, version 1.0\012- data
Size
20 kB (20108 bytes)
Hash
3134db8ee569b55ef964eeca34afc538
089b0d772bd3392b58d7777fda7576a7d4e41779
d21ea66884a90a9148d3f6e109a6bb1e2bcad851e2a06b46350eb1edefa5a546

HTTP Headers

GET /s/elmessiri/v18/K2F0fZBRmr9vQ1pHEey6MoiAAhLz.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shbukrydh.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20108
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 02:53:18 GMT
expires: Fri, 02 Feb 2024 02:53:18 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 18:08:23 GMT
content-type: font/woff2
age: 321089
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shbukrydh.com/files/thumbs/542821673904694.jpg

162.241.85.111

200 OK

54 kB

URL HTTP/2
shbukrydh.com/files/thumbs/542821673904694.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 600x480, components 3\012- data
Size
54 kB (54513 bytes)
Hash
fb67f30270e2b1a4bf9c9937305f513b
577791f3ac598ff51c158d31c89d1840338e0726
8f72665ad7b16f64e5087a2ce11a75fceeeadd295ec39e47f2d758367a1d8699

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /files/thumbs/542821673904694.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:31:34 GMT
accept-ranges: bytes
content-length: 54513
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/images/shboook.jpg

162.241.85.111

200 OK

148 kB

URL HTTP/2
shbukrydh.com/images/shboook.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=440, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=510], progressive, precision 8, 510x440, components 3\012- data
Size
148 kB (147662 bytes)
Hash
20b5265a37b1a959c9207890b058175e
251e7cf8e9bba87144a535d10308b56c927f1702
c4e07b52e21b0878341a23fa0e28a339970f6b7cdfd8cdab8122a5f9de0324f8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/shboook.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:02:21 GMT
accept-ranges: bytes
content-length: 147662
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/elmessiri/v18/K2F0fZBRmr9vQ1pHEey6Mo2AAg.woff2

142.250.74.35

200 OK

23 kB

URL HTTP/2
fonts.gstatic.com/s/elmessiri/v18/K2F0fZBRmr9vQ1pHEey6Mo2AAg.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23296, version 1.0\012- data
Size
23 kB (23296 bytes)
Hash
6ca4e0beeb42484aca2343b8f1e08ed8
43dd435519f8aa767e5b9d9379ea839bd2518bf0
feafd9234c68a7f1d92fee6ec91b0f37668660b83611bf3e91fa73621f56d58c

HTTP Headers

GET /s/elmessiri/v18/K2F0fZBRmr9vQ1pHEey6Mo2AAg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shbukrydh.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23296
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 00:32:53 GMT
expires: Tue, 30 Jan 2024 00:32:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 17:51:35 GMT
content-type: font/woff2
age: 588714
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/elmessiri/v16/K2F0fZBRmr9vQ1pHEey6MoiAAgDwbWu1jw.woff2

142.250.74.35

200 OK

20 kB

URL HTTP/2
fonts.gstatic.com/s/elmessiri/v16/K2F0fZBRmr9vQ1pHEey6MoiAAgDwbWu1jw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 20036, version 1.0\012- data
Size
20 kB (20036 bytes)
Hash
361770d6dfb893e8fb06de7b8aed7a89
2361b8ca3bdba7c5315100ec7ef2bdd4c5334071
758f3e7106bb46307c36e2bd671221485acccc026bf31ac05e808295317ab3a2

HTTP Headers

GET /s/elmessiri/v16/K2F0fZBRmr9vQ1pHEey6MoiAAgDwbWu1jw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shbukrydh.com
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: font/woff2
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20036
date: Sun, 05 Feb 2023 20:04:47 GMT
expires: Mon, 05 Feb 2024 20:04:47 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 19:12:04 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:04:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

shbukrydh.com/uploads/thumb-img-16739048995.jpg

162.241.85.111

200 OK

16 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739048995.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x196, components 3\012- data
Size
16 kB (16146 bytes)
Hash
00083fc80cf5701d22612d7633899b87
2aeb4f32fbd98a3002b7b6a3c7deeafb837a3fba
c25f872193d28273fb8e37f6154bd8af2d8804c0d998437dabdf022fd2c2b72c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739048995.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:34:59 GMT
accept-ranges: bytes
content-length: 16146
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739049086.jpg

162.241.85.111

200 OK

21 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739049086.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x454, components 3\012- data
Size
21 kB (20863 bytes)
Hash
44e6b3efe5f227d6d047f1c65b42c9a7
bc360b84e10345f751eaea8849bf815dd1b65493
4e33d8d244ebf4d361ee23a8c60b1174bea7212e0afc545b8d462426d121e480

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739049086.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:35:08 GMT
accept-ranges: bytes
content-length: 20863
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739048974.jpg

162.241.85.111

200 OK

22 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739048974.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x262, components 3\012- data
Size
22 kB (21999 bytes)
Hash
6ab362c0fb85ee83018df4840239afeb
ad9a5b7182c5dd1e56f6d0f7a2a4ad27736406e3
81542563e35424727c2574a4ac1e6b0d6c4961eb65204736e395f7b70f6bfef8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739048974.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:34:57 GMT
accept-ranges: bytes
content-length: 21999
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739048947.jpg

162.241.85.111

200 OK

29 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739048947.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x466, components 3\012- data
Size
29 kB (29265 bytes)
Hash
1ac05f8b849abf85d269d573598ca27c
1701d8a9f5706a80431aa55ff3c3a837440b0b30
b7bca2c9e1b7ca8ea562da5810475a6de1c7fc6cdc28551849cf7e5b2486da0b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739048947.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:34:54 GMT
accept-ranges: bytes
content-length: 29265
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739048869.jpg

162.241.85.111

200 OK

19 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739048869.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x466, components 3\012- data
Size
19 kB (18799 bytes)
Hash
7d7140e268b934379742a5c791800790
1767d39d48323f8c6872ff32aed61a7da49bee8c
02f4f08bd2f4a4f481f9712553061aee75dcfdff9634e0681f9636899bf71b9a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739048869.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:34:46 GMT
accept-ranges: bytes
content-length: 18799
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739049057.jpg

162.241.85.111

200 OK

24 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739049057.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x387, components 3\012- data
Size
24 kB (23779 bytes)
Hash
ed0dfc2fcf2417beae59f71839605cd1
032ac14d6b9a584f88b5bbf34d701f6d7b7803d4
a405e0de1489bf7857c425a2e7c5f42c88a0739c4b5f90040ec11dc2b9137a7c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739049057.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:35:06 GMT
accept-ranges: bytes
content-length: 23779
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/uploads/thumb-img-16739049008.jpg

162.241.85.111

200 OK

34 kB

URL HTTP/2
shbukrydh.com/uploads/thumb-img-16739049008.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x466, components 3\012- data
Size
34 kB (34136 bytes)
Hash
26436841f2a0db67099324c7f5a67b43
4dc8538e1a93de2619bcee9d13713a377fe42bf4
1359f285e3858bcaf76d8941ea712f0fd8f6d3ec3b24ae4983ab9f041b4ca65f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/thumb-img-16739049008.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:35:00 GMT
accept-ranges: bytes
content-length: 34136
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/css/webfonts/fa-regular-400.woff2

162.241.85.111

200 OK

13 kB

URL HTTP/2
shbukrydh.com/css/webfonts/fa-regular-400.woff2
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 13224, version 331.-31196\012- data
Size
13 kB (13224 bytes)
Hash
b91d376b8d7646d671cd820950d5f7f1
13517529affa39e2585c591acae6dc336b6aa917
e42a88444448ac3d60549cc7c1ff2c8a9cac721034c073d80a14a44e79730cca

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://shbukrydh.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 04 Aug 2021 20:25:46 GMT
accept-ranges: bytes
content-length: 13224
content-type: font/woff2
date: Sun, 05 Feb 2023 20:04:47 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/css/webfonts/fa-brands-400.woff2

162.241.85.111

200 OK

77 kB

URL HTTP/2
shbukrydh.com/css/webfonts/fa-brands-400.woff2
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 76736, version 331.-31196\012- data
Size
77 kB (76736 bytes)
Hash
ed311c7a0ade9a75bb3ebf5a7670f31d
0613c7ebba55ee47ef302c0f7766324692f899a7
8ea8791754915a898a3100e63e32978a6d1763be6df8e73a39d3a90d691cdeef

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://shbukrydh.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 04 Aug 2021 20:25:46 GMT
accept-ranges: bytes
content-length: 76736
content-type: font/woff2
date: Sun, 05 Feb 2023 20:04:47 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/css/webfonts/fa-solid-900.woff2

162.241.85.111

200 OK

78 kB

URL HTTP/2
shbukrydh.com/css/webfonts/fa-solid-900.woff2
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 78268, version 331.-31196\012- data
Size
78 kB (78268 bytes)
Hash
d824df7eb2e268626a2dd9a6a741ac4e
0ccb2c814a7e4ca12c4778821633809cb0361eaa
9834b82ad26e2a37583d22676a12dd2eb0fe7c80356a2114d0db1aa8b3899537

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://shbukrydh.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 04 Aug 2021 20:25:46 GMT
accept-ranges: bytes
content-length: 78268
content-type: font/woff2
date: Sun, 05 Feb 2023 20:04:47 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12031
Expires: Sun, 05 Feb 2023 23:25:18 GMT
Date: Sun, 05 Feb 2023 20:04:47 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12031
Expires: Sun, 05 Feb 2023 23:25:18 GMT
Date: Sun, 05 Feb 2023 20:04:47 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12031
Expires: Sun, 05 Feb 2023 23:25:18 GMT
Date: Sun, 05 Feb 2023 20:04:47 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12967 bytes)
Hash
8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 38c58626-f4ad-4e2b-ad71-a628519d2ea2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmEdHFwCoAMFhxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8b453-7da6d0c1093468d320caaa1e;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 06:25:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t8dZTwod1-pZr8ACfp-6gfEu0TA3kGpfJrQeF8VgLg2tlrt03sa6Bg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:40:08 GMT
age: 59079
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9579 bytes)
Hash
b3e7140400336984afc6093c1246f863
59e0b21cdf4cfdac3f1ea05badd007727939ac42
4d927e74922159db5d07b9947fa1021cff74bb7b55759960cb3941d05c1e8f11

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9579
x-amzn-requestid: c474008d-a6a9-409b-88e2-c55062044575
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzQtnFGhoAMF5Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddfb23-54dd67257ba25ad24e977a9c;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 06:28:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0Of3BK3VqVMGQGDIODQthVmi7BC8Ney4zgGCpVuzYc1j6D8RRP-AxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 12:03:14 GMT
age: 28893
etag: "59e0b21cdf4cfdac3f1ea05badd007727939ac42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (5014 bytes)
Hash
5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 14:53:51 GMT
age: 18656
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8527 bytes)
Hash
6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: c11233d1-ef16-4b03-9174-a493011dc0ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEoFHOKIAMFZwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8166-4a290e811547293f437311bb;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:49:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1F0bxib8bn4kZvGBTL63ecNDDEy6XZ8kIb8K5BNqusVL9SvAAARUJw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:11:45 GMT
age: 78782
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3474 bytes)
Hash
d7a466d89c75ff3459b7328591db52cf
c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb
e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:10:58 GMT
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
age: 78829
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a38348b-ed70-4e2f-80ce-d13e44fefcfc.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13557 bytes)
Hash
7b596a8e984911df703e15c72d25d513
a1fa1355f4de6f246d35bed9f128e13fc9dc4e72
aba708124199ec6b0ce86ac14c6c18d233ff405071a7f22522217c2fcb0aa9b7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a38348b-ed70-4e2f-80ce-d13e44fefcfc.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13557
x-amzn-requestid: 981a0f31-e874-4392-a81d-12d667020700
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fH8-JGEsoAMFhZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cca85a-7398031f2676734c65447e5b;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 03:07:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3dw5Oj2su-_kCvpC1jDJsyAEUPzaexgTzhAC9yAYSyXTFRVge2FR6Q==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:10:43 GMT
age: 78844
etag: "a1fa1355f4de6f246d35bed9f128e13fc9dc4e72"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

shbukrydh.com/images/favicon.png

162.241.85.111

200 OK

4.5 kB

URL HTTP/2
shbukrydh.com/images/favicon.png
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 50 x 33, 8-bit/color RGBA, non-interlaced\012- data
Size
4.5 kB (4507 bytes)
Hash
88e522e48fa4c84b1659656fdaa8353a
1b22171f8e5a4655639ce2cc337b9fa40d109d4a
b78d19cb203252877402f840430f24d5210f6b9da82288559f10393f788f6703

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/favicon.png HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Cookie: _ga_G19B88B5PP=GS1.1.1675627528.1.0.1675627528.0.0.0; _ga=GA1.1.1559435652.1675627529
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:02:52 GMT
accept-ranges: bytes
content-length: 4507
content-type: image/png
date: Sun, 05 Feb 2023 20:04:47 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/lightbox2/dist/images/prev.png

162.241.85.111

200 OK

1.4 kB

URL HTTP/2
shbukrydh.com/lightbox2/dist/images/prev.png
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 50 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1360 bytes)
Hash
84b76dee6b27b795e89e3649078a11c2
6640a3432f7ba7aea6129cdf7a5d3eabd47c295c
7fd9273f20fdb1229c224341271a119020a5eee74ccf6b4605730917c864caf2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lightbox2/dist/images/prev.png HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/lightbox2/dist/css/lightbox.min.css
Cookie: _ga_G19B88B5PP=GS1.1.1675627528.1.0.1675627528.0.0.0; _ga=GA1.1.1559435652.1675627529
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 07 Jul 2020 08:02:10 GMT
accept-ranges: bytes
content-length: 1360
content-type: image/png
date: Sun, 05 Feb 2023 20:04:47 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/lightbox2/dist/images/close.png

162.241.85.111

200 OK

280 B

URL HTTP/2
shbukrydh.com/lightbox2/dist/images/close.png
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 27 x 27, 8-bit colormap, non-interlaced\012- data
Size
280 B (280 bytes)
Hash
d9d2d0b1308cb694aa8116915592e2a9
3ca48361cfe0e41163023d03c26296f375bb3eac
5d62e6c90005bfb71f6abb440f9e4753681cb23bbd5e60477ab6f442d2f0e69c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lightbox2/dist/images/close.png HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/lightbox2/dist/css/lightbox.min.css
Cookie: _ga_G19B88B5PP=GS1.1.1675627528.1.0.1675627528.0.0.0; _ga=GA1.1.1559435652.1675627529
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 07 Jul 2020 08:02:10 GMT
accept-ranges: bytes
content-length: 280
content-type: image/png
date: Sun, 05 Feb 2023 20:04:47 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/lightbox2/dist/images/loading.gif

162.241.85.111

200 OK

8.5 kB

URL HTTP/2
shbukrydh.com/lightbox2/dist/images/loading.gif
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
GIF image data, version 89a, 32 x 32\012- data
Size
8.5 kB (8476 bytes)
Hash
2299ad0b3f63413f026dfec20c205b8f
cf720b50cf8dde0e1a84ce1c6a77788bfc5882d5
225aa88b6ab02c06222ec9468d62e15fa188e39cdb9431d1f55401ad380753ed

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lightbox2/dist/images/loading.gif HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/lightbox2/dist/css/lightbox.min.css
Cookie: _ga_G19B88B5PP=GS1.1.1675627528.1.0.1675627528.0.0.0; _ga=GA1.1.1559435652.1675627529
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 07 Jul 2020 08:02:10 GMT
accept-ranges: bytes
content-length: 8476
content-type: image/gif
date: Sun, 05 Feb 2023 20:04:47 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/lightbox2/dist/images/next.png

162.241.85.111

200 OK

1.4 kB

URL HTTP/2
shbukrydh.com/lightbox2/dist/images/next.png
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 50 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1350 bytes)
Hash
31f15875975aab69085470aabbfec802
777e92c050f600b4519299c3d786b8f2f459fea4
15b869b02c6fbaa8c6c26445a2dd2d9bad80fd27b1409f8179e5dd89dc89d90a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lightbox2/dist/images/next.png HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/lightbox2/dist/css/lightbox.min.css
Cookie: _ga_G19B88B5PP=GS1.1.1675627528.1.0.1675627528.0.0.0; _ga=GA1.1.1559435652.1675627529
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 07 Jul 2020 08:02:10 GMT
accept-ranges: bytes
content-length: 1350
content-type: image/png
date: Sun, 05 Feb 2023 20:04:47 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
6a4530bffc6be0d61aed0956840ab742
61b882503ac12292adbdd4c5c68382466c586acd
647cb659e01e37c423003ebe4aadaaac8eea1a7dd388ec6b90b5a4c41af10ec1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:04:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 03:14:16 GMT
Expires: Sun, 12 Feb 2023 03:14:15 GMT
Etag: "61b882503ac12292adbdd4c5c68382466c586acd"
Cache-Control: max-age=543567,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e41d688050b31-OSL

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
6a4530bffc6be0d61aed0956840ab742
61b882503ac12292adbdd4c5c68382466c586acd
647cb659e01e37c423003ebe4aadaaac8eea1a7dd388ec6b90b5a4c41af10ec1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:04:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 03:14:16 GMT
Expires: Sun, 12 Feb 2023 03:14:15 GMT
Etag: "61b882503ac12292adbdd4c5c68382466c586acd"
Cache-Control: max-age=543567,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e41d6badab524-OSL

xtratheme.com/arabic-elementor/building/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff

148.251.217.13

200 OK

7.5 kB

URL HTTP/2
xtratheme.com/arabic-elementor/building/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff
IP
148.251.217.13:0
ASN
#24940 Hetzner Online GmbH

File type
Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Size
7.5 kB (7536 bytes)
Hash
04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686

HTTP Headers

GET /arabic-elementor/building/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff HTTP/1.1
Host: xtratheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shbukrydh.com
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 20:04:47 GMT
content-type: application/font-woff
content-length: 7536
last-modified: Tue, 24 Jan 2023 15:54:35 GMT
etag: "1d70-5f30488458766"
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 07 Mar 2023 20:04:47 GMT
vary: User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2

xtratheme.com/arabic-elementor/business/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0

148.251.217.13

200 OK

3.4 kB

URL HTTP/2
xtratheme.com/arabic-elementor/business/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP
148.251.217.13:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (10544)
Size
3.4 kB (3446 bytes)
Hash
88f71137b2a89a53df46cdb4deeb4e3d
426e12f0e8712db20afd2c54e77e1384074f3181
591a8b7a859de8af878c56e1ec72384596285f768387e9958f0a0afe53d89428

HTTP Headers

GET /arabic-elementor/business/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: xtratheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 20:04:47 GMT
content-type: application/javascript
content-length: 3446
last-modified: Sat, 04 Feb 2023 06:00:28 GMT
etag: "29ba-5f3d983cc4262-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=31536000, public
expires: Mon, 05 Feb 2024 20:04:47 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2

xtratheme.com/arabic-elementor/building/wp-content/plugins/revslider/public/assets/assets/loader.gif

148.251.217.13

200 OK

2.5 kB

URL HTTP/2
xtratheme.com/arabic-elementor/building/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP
148.251.217.13:0
ASN
#24940 Hetzner Online GmbH

File type
GIF image data, version 89a, 24 x 24\012- data
Size
2.5 kB (2545 bytes)
Hash
4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645

HTTP Headers

GET /arabic-elementor/building/wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: xtratheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 20:04:47 GMT
content-type: image/gif
content-length: 2545
last-modified: Tue, 24 Jan 2023 15:54:37 GMT
etag: "9f1-5f3048862e301"
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 07 Mar 2023 20:04:47 GMT
vary: User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2

xtratheme.com/arabic-elementor/building/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.ttf

148.251.217.13

200 OK

12 kB

URL HTTP/2
xtratheme.com/arabic-elementor/building/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.ttf
IP
148.251.217.13:0
ASN
#24940 Hetzner Online GmbH

File type
TrueType Font data, 14 tables, 1st "OS/2", 18 names, Macintosh, Copyright (C) 2013 by original authors @ fontello.comreviconsRegularreviconsreviconsVersion 1.0r\012- DOS 2.0-3.2 backed up sequence 1 of file \016\012- data
Size
12 kB (11968 bytes)
Hash
17629a5dfe0d3c3946cf401e1895f091
a3b3b3a91df3025adcdbc700519dd7be75e275f5
4ca02b8a5c8034de8ddb76e33e50e8398758a83bd18a5073493cace46362780a

HTTP Headers

GET /arabic-elementor/building/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.ttf HTTP/1.1
Host: xtratheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shbukrydh.com
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 20:04:47 GMT
content-type: application/font-sfnt
content-length: 11968
last-modified: Tue, 24 Jan 2023 15:54:35 GMT
etag: "2ec0-5f30488458b4e"
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 07 Mar 2023 20:04:47 GMT
vary: User-Agent
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-G19B88B5PP&gtm=45je3210&_p=1578496939&cid=1559435652.1675627529&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675627528&sct=1&seg=0&dl=https%3A%2F%2Fshbukrydh.com%2F&dt=%D9%85%D9%82%D8%A7%D9%88%D9%84%20%D8%B4%D8%A8%D9%88%D9%83%20%7C%20%D8%AA%D8%B1%D9%83%D9%8A%D8%A8%20%D8%B4%D8%A8%D9%88%D9%83%20%7C%20%D8%B4%D8%A8%D9%83%20%D8%A7%D9%84%D8%B1%D9%8A%D8%A7%D8%B6%200533424635&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-G19B88B5PP&gtm=45je3210&_p=1578496939&cid=1559435652.1675627529&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675627528&sct=1&seg=0&dl=https%3A%2F%2Fshbukrydh.com%2F&dt=%D9%85%D9%82%D8%A7%D9%88%D9%84%20%D8%B4%D8%A8%D9%88%D9%83%20%7C%20%D8%AA%D8%B1%D9%83%D9%8A%D8%A8%20%D8%B4%D8%A8%D9%88%D9%83%20%7C%20%D8%B4%D8%A8%D9%83%20%D8%A7%D9%84%D8%B1%D9%8A%D8%A7%D8%B6%200533424635&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-G19B88B5PP&gtm=45je3210&_p=1578496939&cid=1559435652.1675627529&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675627528&sct=1&seg=0&dl=https%3A%2F%2Fshbukrydh.com%2F&dt=%D9%85%D9%82%D8%A7%D9%88%D9%84%20%D8%B4%D8%A8%D9%88%D9%83%20%7C%20%D8%AA%D8%B1%D9%83%D9%8A%D8%A8%20%D8%B4%D8%A8%D9%88%D9%83%20%7C%20%D8%B4%D8%A8%D9%83%20%D8%A7%D9%84%D8%B1%D9%8A%D8%A7%D8%B6%200533424635&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shbukrydh.com
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://shbukrydh.com
date: Sun, 05 Feb 2023 20:04:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shbukrydh.com/files/789861673904975.jpg

162.241.85.111

200 OK

66 kB

URL HTTP/2
shbukrydh.com/files/789861673904975.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 600x338, components 3\012- data
Size
66 kB (66511 bytes)
Hash
b4f6f2744692df07d809e21715f93d58
fcb9d208c418a0060a79e1d7427de8802fa03a58
a35769ebd66076384b2467e671e6cca2770a3f88ca2f8076428a3effcab92806

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /files/789861673904975.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Cookie: _ga_G19B88B5PP=GS1.1.1675627528.1.0.1675627528.0.0.0; _ga=GA1.1.1559435652.1675627529
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:36:15 GMT
accept-ranges: bytes
content-length: 66511
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:47 GMT
server: Apache
X-Firefox-Spdy: h2

xtratheme.com/arabic-elementor/business/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.6.8

148.251.217.13

200 OK

1.1 kB

URL HTTP/2
xtratheme.com/arabic-elementor/business/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.6.8
IP
148.251.217.13:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (2620), with no line terminators
Size
1.1 kB (1139 bytes)
Hash
366a9c35bbef9fea7021f6b1b56cf8d0
18feab78c61c6e8261db364d6681a9633041e837
b1108a264198109bc4e692e30e2dc7c148625fa9a3dce15477fc7618669c7a6f

HTTP Headers

GET /arabic-elementor/business/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.6.8 HTTP/1.1
Host: xtratheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 20:04:47 GMT
content-type: application/javascript
content-length: 1139
last-modified: Sat, 04 Feb 2023 06:00:28 GMT
etag: "a3c-5f3d983cc3a92-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=31536000, public
expires: Mon, 05 Feb 2024 20:04:47 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2

shbukrydh.com/images/shbk.jpg?var=2

162.241.85.111

200 OK

164 kB

URL HTTP/2
shbukrydh.com/images/shbk.jpg?var=2
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=700, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=486], progressive, precision 8, 486x700, components 3\012- data
Size
164 kB (163520 bytes)
Hash
aba7eae0c49d74f758f36f462f2e2564
abc586196b6b821de27be94a5f21be5725fce685
c2d6bd9ecd57c8f6f39d1741b7cee803b6f92859fc05981abaa9cf22f2c5d5bb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/shbk.jpg?var=2 HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Cookie: _ga_G19B88B5PP=GS1.1.1675627528.1.0.1675627528.0.0.0; _ga=GA1.1.1559435652.1675627529
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:00:54 GMT
accept-ranges: bytes
content-length: 163520
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:48 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/files/844061673905047.jpg

162.241.85.111

200 OK

68 kB

URL HTTP/2
shbukrydh.com/files/844061673905047.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data
Size
68 kB (67666 bytes)
Hash
90a8774822163b7eee00dbe89247f67c
3e3277b8a2ac7d6c8bee0eba569728aa31e77138
b9c97a7828e3f60bfdde4ec89fd7fbe99ffedb873a781dad00928d5d4d3ce94e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /files/844061673905047.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Cookie: _ga_G19B88B5PP=GS1.1.1675627528.1.0.1675627528.0.0.0; _ga=GA1.1.1559435652.1675627529
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:37:27 GMT
accept-ranges: bytes
content-length: 67666
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:48 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/files/682991673905197.jpg

162.241.85.111

200 OK

86 kB

URL HTTP/2
shbukrydh.com/files/682991673905197.jpg
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 928x680, components 3\012- data
Size
86 kB (85565 bytes)
Hash
0a4a6069a33146553cae6868989332a6
31fdc58cb8b78a62d3b40745ffe36d88577f1a77
1a5877e2f08fd9a036eefc5182c3a37602469c6839772ab58ba09837972b5bce

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /files/682991673905197.jpg HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Cookie: _ga_G19B88B5PP=GS1.1.1675627528.1.0.1675627528.0.0.0; _ga=GA1.1.1559435652.1675627529
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 21:39:57 GMT
accept-ranges: bytes
content-length: 85565
content-type: image/jpeg
date: Sun, 05 Feb 2023 20:04:48 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/

162.241.85.111

200 OK

0 B

URL HTTP/2
shbukrydh.com/
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

xtratheme.com/arabic-elementor/business/wp-content/plugins/elementor/assets/js/lightbox.b0d31eee8059c4c01953.bundle.min.js

148.251.217.13

404 Not Found

0 B

URL HTTP/2
xtratheme.com/arabic-elementor/business/wp-content/plugins/elementor/assets/js/lightbox.b0d31eee8059c4c01953.bundle.min.js
IP
148.251.217.13:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /arabic-elementor/business/wp-content/plugins/elementor/assets/js/lightbox.b0d31eee8059c4c01953.bundle.min.js HTTP/1.1
Host: xtratheme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
server: nginx
date: Sun, 05 Feb 2023 20:04:47 GMT
content-type: text/html
vary: Accept-Encoding
last-modified: Sun, 01 Sep 2019 14:32:18 GMT
etag: W/"328-5917eb8eda494"
content-encoding: br
X-Firefox-Spdy: h2

shbukrydh.com/css/footer.css

162.241.85.111

200 OK

0 B

URL HTTP/2
shbukrydh.com/css/footer.css
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/footer.css HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Aug 2022 22:39:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/js/footer2.js

162.241.85.111

200 OK

0 B

URL HTTP/2
shbukrydh.com/js/footer2.js
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/footer2.js HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Aug 2022 22:41:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/css/min1.css

162.241.85.111

200 OK

0 B

URL HTTP/2
shbukrydh.com/css/min1.css
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/min1.css HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Aug 2022 01:43:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/css/style.css

162.241.85.111

200 OK

0 B

URL HTTP/2
shbukrydh.com/css/style.css
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/style.css HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 07 Aug 2022 14:25:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/lightbox2/dist/js/lightbox-plus-jquery.min.js

162.241.85.111

200 OK

0 B

URL HTTP/2
shbukrydh.com/lightbox2/dist/js/lightbox-plus-jquery.min.js
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lightbox2/dist/js/lightbox-plus-jquery.min.js HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 07 Jul 2020 08:02:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

shbukrydh.com/js/footer.js

162.241.85.111

200 OK

0 B

URL HTTP/2
shbukrydh.com/js/footer.js
IP
162.241.85.111:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/footer.js HTTP/1.1
Host: shbukrydh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shbukrydh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Aug 2022 22:40:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 05 Feb 2023 20:04:46 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML