firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 09:10:02 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DvvciDHUo6qTFpxPUiYr8LAybf6cF9_qQkuhJK7D2LnxNiWI4ILFgg==
Age: 2523
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7068
Expires: Thu, 08 Sep 2022 11:49:53 GMT
Date: Thu, 08 Sep 2022 09:52:05 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: X8Yitp_HCzzATcNBuO1N2uqpDCgxu2taMiBm_kZhfM5cB6tWAE_r4Q==
age: 21931
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 09:52:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 09:52:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 08 Sep 2022 09:38:18 GMT
Expires: Thu, 08 Sep 2022 10:06:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -XA68rkbhLQ98zmyYcK5FPQTPTW1oakdz6-XdiT_EXfsVfLKJ-i0tQ==
Age: 827
uaeneurology.com/brainconference2022/hotel-accommodation/
198.72.99.38200 OK 62 kB URL HTTP/1.1 uaeneurology.com/brainconference2022/hotel-accommodation/
IP 198.72.99.38:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 6aacb02c76c81781ef9470b81c53b7fb
291b4ec3519cb04c0353802dbb5275bda274029e
d3a7b425498db053880c7952b2e43c7f41679da9766ac1ff6253570877ccd796
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/hotel-accommodation/ HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 09:52:05 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <https://uaeneurology.com/brainconference2022/wp-json/>; rel="https://api.w.org/", <https://uaeneurology.com/brainconference2022/wp-json/wp/v2/pages/5134>; rel="alternate"; type="application/json", <https://uaeneurology.com/brainconference2022/?p=5134>; rel=shortlink
Set-Cookie: PHPSESSID=db59818aa1c9f3fcce05c4b85becd27d; path=/
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: upgrade-insecure-requests
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
X-Permitted-Cross-Domain-Policies: none
Feature-Policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
Keep-Alive: timeout=5, max=25
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 09:52:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a81b0f5b5d11bf95fc176833b2f6e808
5b194aa5a8bf3a6b0d117ccfd0f487f6db0587b5
8f6ae83f2b85db7174bbbc6553e2921617b5c8a401315e76082682949a0bd9cc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6335
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 09:52:05 GMT
Last-Modified: Thu, 08 Sep 2022 08:06:30 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
uaeneurology.com/brainconference2022/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.2
198.72.99.38200 OK 2.7 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.2
IP 198.72.99.38:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 29 Aug 2022 04:44:21 GMT
accept-ranges: bytes
content-length: 2731
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:05 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/core/parallax/assets/css/style.css?ver=1662630725
198.72.99.38200 OK 3.3 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/core/parallax/assets/css/style.css?ver=1662630725
IP 198.72.99.38:0
Hash c9c1d82aefc5fe3b5d81fb9a1cd7a8eb
8aa4f1c1c941f2f1f6c5388cdfed4865f895f920
2eb6e17c2045e3a2effca96e1b44aaf50526a7e76530f3a0ee0822e138e09755
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/themes/exhibz/core/parallax/assets/css/style.css?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:22 GMT
accept-ranges: bytes
content-length: 3307
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:05 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.3
198.72.99.38200 OK 14 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.3
IP 198.72.99.38:0
File type ASCII text, with very long lines (13766)
Hash 7c82ee2189ec61a0fedf58f46eed7543
190611b9018ce99af1bd68d350fb6b4ea20a4b75
7ee756dd724f4da2021fd1f5feaf96cddda43ba6dd9194250ef30935f96eb981
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.3 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:39 GMT
accept-ranges: bytes
content-length: 13805
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:05 GMT
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.212.13.96101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.212.13.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1/pVnQELiw2LNfi/gI3mEw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KxsahNyc3/wIZxKnhaIfF6pXHBs=
uaeneurology.com/brainconference2022/wp-content/plugins/countdown-timer-for-elementor/assets/css/countdown-timer-widget.css?ver=6.0.2
198.72.99.38200 OK 1.1 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/countdown-timer-for-elementor/assets/css/countdown-timer-widget.css?ver=6.0.2
IP 198.72.99.38:0
Hash e7aef624eba085b57b6e43d5c55114e7
34dab240ea32704986548fec77a2f7a2d084fdef
4f19a8e8ce27220493765c1a7a37471873f0b5cd7f2ccea93f6f06e883692b68
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/countdown-timer-for-elementor/assets/css/countdown-timer-widget.css?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 06 Jun 2022 20:54:40 GMT
accept-ranges: bytes
content-length: 1072
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:05 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/uploads/elementor/css/post-1975.css?ver=1661850265
198.72.99.38200 OK 1.2 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/uploads/elementor/css/post-1975.css?ver=1661850265
IP 198.72.99.38:0
File type ASCII text, with very long lines (1214), with no line terminators
Hash 92a8f5608698d08040c1d16b6dba2b5f
0b43d6e02d496768eee81cd68045412579d8e3a4
237a567ee35ec165376199d1bc56640ba86227bbf6d2b9f8b203465dbbdb6589
GET /brainconference2022/wp-content/uploads/elementor/css/post-1975.css?ver=1661850265 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:04:25 GMT
accept-ranges: bytes
content-length: 1214
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.0
198.72.99.38200 OK 40 B URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.0
IP 198.72.99.38:0
File type ASCII text, with no line terminators
Hash 94d041d462db321cdb888066586f2068
717d2f9da7fb9f9e2bf2058a8177a0344f8a8647
b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5
GET /brainconference2022/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 29 Aug 2022 04:46:31 GMT
accept-ranges: bytes
content-length: 40
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=6.0.2
198.72.99.38200 OK 677 B URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=6.0.2
IP 198.72.99.38:0
File type ASCII text, with very long lines (491)
Hash 3eef8c9e589a6fd58292e79bbac4ba5d
d3ebdb629b8d9c92380b14b1676b123398f0841b
eea3d6ccda7f6503078cce9dc41176c1357af1c93a5b3625131ef7cf21c9d7c4
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:41 GMT
accept-ranges: bytes
content-length: 677
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.2.4
198.72.99.38200 OK 3.4 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.2.4
IP 198.72.99.38:0
File type ASCII text, with very long lines (3432)
Hash 9a9ecfe405e38be1cf08b752d3afbda9
8f55bc1619b42231d464bf965c67cfddf6b29df9
b9b869f479a2181cbc0c5d8b6e5bb8bb9cbf81d59a18d056681d8b3de448b1d4
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.2.4 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:01:53 GMT
accept-ranges: bytes
content-length: 3433
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A%2C400%2C700%2C900%7CRaleway%3A%2C400%2C700%2C900
142.250.74.10200 OK 4.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A%2C400%2C700%2C900%7CRaleway%3A%2C400%2C700%2C900
IP 142.250.74.10:0
Hash cebc89ce8011ca78aaccfcbb3ca992cd
cd1e8d2f48364bf1b78df730192d9b8aafe96c1b
bd15a843da13279f1547520c97a40d5ae80bc37887ff76ffa29216626886b602
GET /css?family=Roboto%3A%2C400%2C700%2C900%7CRaleway%3A%2C400%2C700%2C900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uaeneurology.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Sep 2022 09:52:05 GMT
date: Thu, 08 Sep 2022 09:52:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/js/common/helper.min.js?ver=4.5.0
198.72.99.38200 OK 171 B URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/js/common/helper.min.js?ver=4.5.0
IP 198.72.99.38:0
File type ASCII text, with no line terminators
Hash f6557f77704f2228893447994e264e47
3b78ec86f4b6d4623fe196f44d873126cfd84935
67c1138bb5d4c86e74840e9d1efb9e383de860ce91d2205380c7e64897e2a6fb
GET /brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/js/common/helper.min.js?ver=4.5.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:01:30 GMT
accept-ranges: bytes
content-length: 171
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/css/owl.carousel.css?ver=6.0.2
198.72.99.38200 OK 2.9 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/css/owl.carousel.css?ver=6.0.2
IP 198.72.99.38:0
File type ASCII text, with very long lines (2884), with no line terminators
Hash e70ac9bc95a4f084d7aca003b7bb74d2
0339b035ff14756f213186b325983cc49926220b
9987a4f8b21b9b73069d69a1f5c91e2aede58e0fa4ef7395954fa1bb0a144620
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/css/owl.carousel.css?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 06 Jun 2022 20:55:56 GMT
accept-ranges: bytes
content-length: 2884
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz-child/style.css?ver=6.0.2
198.72.99.38200 OK 3.5 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz-child/style.css?ver=6.0.2
IP 198.72.99.38:0
Hash a1d9a85935af2b3e4fdb9d379de7ce52
fc595a3dbfe9b477363be8054bf9bd8333a992cd
b0a0987f477096598331addd269dbc05aa610bcf58f725af52bbcaddb86b72ac
GET /brainconference2022/wp-content/themes/exhibz-child/style.css?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 02 Aug 2022 05:56:46 GMT
accept-ranges: bytes
content-length: 3507
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.0
198.72.99.38200 OK 810 B URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.0
IP 198.72.99.38:0
File type ASCII text, with very long lines (810), with no line terminators
Hash 5ab577656d48e7fb2da4071c3477d4f4
34a292f50ec979d7967a08c2ff4d707c39a11f3c
8667a50fdab17dd946e43e37c6fd1623583b9440bdca887e44cc726e48feedaf
GET /brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.7.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 29 Aug 2022 04:46:26 GMT
accept-ranges: bytes
content-length: 810
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/uploads/elementor/css/post-5134.css?ver=1662104591
198.72.99.38200 OK 8.2 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/uploads/elementor/css/post-5134.css?ver=1662104591
IP 198.72.99.38:0
File type ASCII text, with very long lines (8191), with no line terminators
Hash ac5d3f1a4bcf16d4e6788e02c6c83741
8da04d39d07a5a3a77495696d0b9863064cc6fa1
cbf7ce96fae1eb33b7a1b37c666d6f0f126fb83c68e8fe4dc608fbfc703c9d5a
GET /brainconference2022/wp-content/uploads/elementor/css/post-5134.css?ver=1662104591 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Fri, 02 Sep 2022 07:43:11 GMT
accept-ranges: bytes
content-length: 8191
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/css/magnific-popup.css?ver=1662630725
198.72.99.38200 OK 9.0 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/css/magnific-popup.css?ver=1662630725
IP 198.72.99.38:0
File type ASCII text, with CRLF line terminators
Hash deaa08e178068198de57cf906449f96b
5e781e3ff1f6dec2197a5ea0db6c5050f4e9f703
8855064ff24429daf66ce084645b2311f163bd00617b24109e2b4885b7c27e70
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/themes/exhibz/assets/css/magnific-popup.css?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:18 GMT
accept-ranges: bytes
content-length: 8968
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/jquery.easing.js?ver=6.0.2
198.72.99.38200 OK 3.4 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/jquery.easing.js?ver=6.0.2
IP 198.72.99.38:0
File type ASCII text, with very long lines (3338), with CRLF line terminators
Hash 9437da3107cd8d386eb19d95d5c6d86d
3eaa5bea67d80c1ee6de13150de00f3c54105e66
207f7d08751bd1d0f2370defc462611248ec5b022e6b70d6b31b78a3ead943aa
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/jquery.easing.js?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 06 Jun 2022 20:55:56 GMT
accept-ranges: bytes
content-length: 3414
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/uploads/essential-addons-elementor/eael-5134.js?ver=1659421083
198.72.99.38200 OK 2.6 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/uploads/essential-addons-elementor/eael-5134.js?ver=1659421083
IP 198.72.99.38:0
File type ASCII text, with very long lines (2629), with no line terminators
Hash 2dff448db68c3c7643f5fda66d3f910c
cccc454a118716af2ddb0ce498d107558f3afbfc
9802697d6d35fb580d2c317d96f5739bb16d0b6562db5a4280efefa63b32b5a7
GET /brainconference2022/wp-content/uploads/essential-addons-elementor/eael-5134.js?ver=1659421083 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 29 Aug 2022 05:12:13 GMT
accept-ranges: bytes
content-length: 2629
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
198.72.99.38200 OK 11 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 198.72.99.38:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /brainconference2022/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Wed, 18 Nov 2020 18:06:06 GMT
accept-ranges: bytes
content-length: 11224
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.3
198.72.99.38200 OK 2.6 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.3
IP 198.72.99.38:0
File type ASCII text, with very long lines (2620), with no line terminators
Hash 020e87460ce58802842e34a3aac97d83
d2eed5f7573c0bd640fb9f125b6bfedf43ebf9b9
138154c0deed3326477b9b4909175101070a5a3a95342291b53d8cc9879a5f47
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.3 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:40 GMT
accept-ranges: bytes
content-length: 2620
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/js/script.js?ver=1662630725
198.72.99.38200 OK 4.7 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/js/script.js?ver=1662630725
IP 198.72.99.38:0
Hash 2facfc15fa34df7c219df76c8696f526
4903225eeeb2acbdddf57920e9dd2badb1074cdb
f452d7cddfe19f4287016654f52e94dbd06dad92c1ba8d506558e7101fb2a63e
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/themes/exhibz/assets/js/script.js?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:22 GMT
accept-ranges: bytes
content-length: 4684
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.3
198.72.99.38200 OK 5.0 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.3
IP 198.72.99.38:0
File type ASCII text, with very long lines (4918)
Hash b27a76090beaa0ce4cb90f8f270ad5d5
cbc74395474ea99f873197184118e9a721940435
4288316c8ad16d3d3ee2750a665ce893c35d9084bfd3530b6180003469e79ee9
GET /brainconference2022/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.3 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:30 GMT
accept-ranges: bytes
content-length: 4957
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/uploads/essential-addons-elementor/eael-5134.css?ver=1659421083
198.72.99.38200 OK 12 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/uploads/essential-addons-elementor/eael-5134.css?ver=1659421083
IP 198.72.99.38:0
File type Unicode text, UTF-8 text, with very long lines (8245)
Hash cf08a5b76bd6adaa07afa89d2e9d1ad6
8e2ab55ec89d8d4fe04344ebefa1fa3314cb16fa
e4afd8b23a5764d0b36963bbc154637a71d54c93e4cc21106339a5587d3ec7c5
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/uploads/essential-addons-elementor/eael-5134.css?ver=1659421083 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 29 Aug 2022 05:12:13 GMT
accept-ranges: bytes
content-length: 11685
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.3
198.72.99.38200 OK 15 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.3
IP 198.72.99.38:0
File type ASCII text, with very long lines (14869)
Hash 7a5dea0a705cc2f4cd87dbaaa6666bc6
678bc6f750f13adb29bbc158eb0d9cd813b736fa
97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.3 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:41 GMT
accept-ranges: bytes
content-length: 15055
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/attrparallax.js?ver=1662630725
198.72.99.38200 OK 15 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/attrparallax.js?ver=1662630725
IP 198.72.99.38:0
File type ASCII text, with very long lines (15289)
Hash b08a53d30d4132685d94f1726064e3da
cbb9ceda33944ec47aebb9dcc6ddb49d77c66538
8b77c1529a556431d42f583343a1fa5e6f182e833c56751e35c64f1728d9c69d
GET /brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/attrparallax.js?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:22 GMT
accept-ranges: bytes
content-length: 15443
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/js/elementor.js?ver=1662630725
198.72.99.38200 OK 4.0 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/js/elementor.js?ver=1662630725
IP 198.72.99.38:0
Hash 4e28f3dac09aeae689f604acf6cba15b
6e3ca42d0009de6660ba201bca2c6a37c7c1de53
6e8304e2aee2287c31c88361ce4caebe4e05208921d0d190c441d35fe287532f
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/themes/exhibz/assets/js/elementor.js?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:22 GMT
accept-ranges: bytes
content-length: 3986
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/textanimation.js?ver=6.0.2
198.72.99.38200 OK 5.6 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/textanimation.js?ver=6.0.2
IP 198.72.99.38:0
Hash 29ba664a650940aa6b03e97922cc69b4
13b14c94baa3b95da7e2fd4dded36fed67c64251
8904f9c6764966d224401b01d4ecd937c3bd30969d0b125c3929143a16e6d28a
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/textanimation.js?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 06 Jun 2022 20:55:56 GMT
accept-ranges: bytes
content-length: 5568
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.3
198.72.99.38200 OK 18 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.3
IP 198.72.99.38:0
File type ASCII text, with very long lines (10019)
Hash 4601ba55044413706c2022cb6c1c3d05
5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.3 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:40 GMT
accept-ranges: bytes
content-length: 18468
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-includes/js/imagesloaded.min.js?ver=4.1.4
198.72.99.38200 OK 5.6 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 198.72.99.38:0
File type ASCII text, with very long lines (5477)
Hash 3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
GET /brainconference2022/wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sun, 14 Jun 2020 02:53:28 GMT
accept-ranges: bytes
content-length: 5629
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
198.72.99.38200 OK 19 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 198.72.99.38:0
File type ASCII text, with very long lines (19233)
Hash d183c598fd582fe997f6782afed84f9b
7799820e0e849e8484543c3360a8d8cc62baa32f
83059e4c1a5c210e5585d96779fe655170817193d43e247c78dffaae7b7ba3a9
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:46 GMT
accept-ranges: bytes
content-length: 19279
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/css/icofont.css?ver=1662630725
198.72.99.38200 OK 18 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/css/icofont.css?ver=1662630725
IP 198.72.99.38:0
Hash 216a0819d54d43366b0d8b4bd5845c55
0cab5616ec43e8d5df0bbb4479202fdadf8e58ff
8bcb646d6c0ac542951128f3b39a0f5aa8f9b2afd7fc277c78176de1f07a2b4a
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/themes/exhibz/assets/css/icofont.css?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:18 GMT
accept-ranges: bytes
content-length: 18317
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
198.72.99.38200 OK 6.5 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 198.72.99.38:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 61449413a42d2daaa79dbe7298b40e21
d86c474164c603084397bdc50fb0e469d28b5772
f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 11 Apr 2022 20:04:30 GMT
accept-ranges: bytes
content-length: 6475
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.0
198.72.99.38200 OK 30 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.0
IP 198.72.99.38:0
File type ASCII text, with very long lines (30283), with no line terminators
Hash d942a12c644c208f99aeaa5fc0914d92
3f9e011aec544347fbf476cc9f944679de65d35e
73b2fdcf25aa909c7b0f072cf791066350ab834ca1d0d01ef096bb5583318213
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 29 Aug 2022 04:46:27 GMT
accept-ranges: bytes
content-length: 30283
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/vendor/js/vanilla-tilt.min.js
198.72.99.38200 OK 8.9 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/vendor/js/vanilla-tilt.min.js
IP 198.72.99.38:0
File type ASCII text, with very long lines (8876), with no line terminators
Hash 49db2c023212fd74efd5c665c9ab9318
e7eaae09b11ec40c26f1bdb66e84149cf0a0c1b1
680f4fd62bd67044715d2e785536f3766c143637ac0825c35edbd41cb39cf673
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/vendor/js/vanilla-tilt.min.js HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:01:34 GMT
accept-ranges: bytes
content-length: 8876
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.2.4
198.72.99.38200 OK 8.0 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.2.4
IP 198.72.99.38:0
File type ASCII text, with very long lines (8016), with no line terminators
Hash a889ab4fcd44175db4bf271c83c50d37
dd57bf2e29b28491b610fcb758d8ab53f3c6649d
d2f2fe7e10c8a8cf933afea3f0fb4a89cf74262405024cd908e7d59f5f03c16c
GET /brainconference2022/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.2.4 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:01:48 GMT
accept-ranges: bytes
content-length: 8016
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
198.72.99.38200 OK 31 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 198.72.99.38:0
File type ASCII text, with very long lines (30837)
Hash 008e0bb5ebfa7bc298a042f95944df25
93897ebc560b38a1d2bff43c22dd6a3b7ee90c0c
c4047043368afb4baf1aed25d358a5c2a333842a3b436b58491ab36aeee65b9d
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:41 GMT
accept-ranges: bytes
content-length: 30999
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.3
198.72.99.38200 OK 27 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.3
IP 198.72.99.38:0
File type ASCII text, with very long lines (26516)
Hash c55205bce667f5d812354fd1353e7389
f22de0af271eba636a022c873c94fbcd81b4c89a
c55902832fb84522d02ea1a60a30747403a140d8651fa748f13ba398b0c0df3a
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.3 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:41 GMT
accept-ranges: bytes
content-length: 26702
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
198.72.99.38200 OK 19 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 198.72.99.38:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 12 Apr 2022 13:56:24 GMT
accept-ranges: bytes
content-length: 18617
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/css/ep-helper.css?ver=4.5.0
198.72.99.38200 OK 34 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/css/ep-helper.css?ver=4.5.0
IP 198.72.99.38:0
File type ASCII text, with very long lines (33597), with no line terminators
Hash 859b0b63a5abda0744b9e657cdfec48c
f0f92f3718a361b85c9348c16561f913d517d734
3eb9a4d9ba10e5fa3066838a6adfd84881a9791bfcc3504c83a173eb499ac803
GET /brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/css/ep-helper.css?ver=4.5.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:01:31 GMT
accept-ranges: bytes
content-length: 33597
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/stratum/vendors/tippy/popper.min.js?ver=2.4.0
198.72.99.38200 OK 17 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/stratum/vendors/tippy/popper.min.js?ver=2.4.0
IP 198.72.99.38:0
File type ASCII text, with very long lines (17269), with CRLF line terminators
Hash 73f73de32e8193a24597f153f56ce9f2
ec97575d5a7768c00d861559869a6af16d572949
42c1701272df70d41b1a1681bc439256df66e2256feff103014dc939c25e1490
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/stratum/vendors/tippy/popper.min.js?ver=2.4.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Fri, 25 Mar 2022 16:25:12 GMT
accept-ranges: bytes
content-length: 17323
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/anime.min.js?ver=6.0.2
198.72.99.38200 OK 11 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/anime.min.js?ver=6.0.2
IP 198.72.99.38:0
File type ASCII text, with very long lines (532)
Hash 9b4bbe6deb700e1c3606eab732f5eea5
3c46c9597c721644a515c1c54ab13f46406657f7
7813f21ffc8ab5a9c4808a33cae9e6234b4ab3b14245a8900bdd62879642077c
GET /brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/anime.min.js?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 06 Jun 2022 20:55:56 GMT
accept-ranges: bytes
content-length: 11233
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
198.72.99.38200 OK 19 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 198.72.99.38:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 57459b58fd7665a5e20b2345463df9c9
71c3b177ad1412d5e0b56d99f18bc345148df88b
6fecb89a29ee2bd397bb1bf58ecaa530a76f0654db71fadefd3cc70b0bc302bf
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 11 Apr 2022 20:04:30 GMT
accept-ranges: bytes
content-length: 19142
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/js/jquery.magnific-popup.min.js?ver=1662630725
198.72.99.38200 OK 20 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/js/jquery.magnific-popup.min.js?ver=1662630725
IP 198.72.99.38:0
File type ASCII text, with very long lines (20087), with CRLF line terminators
Hash b37d7edf99565d3858eaa1ad80df3cff
786a4343711e9af5e5dfcc493e7d2331b48875bb
b0a45cd5aed66e27bd8ee861d0e3b782c8e79849bde32f90f078b9f2451a36f2
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/themes/exhibz/assets/js/jquery.magnific-popup.min.js?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:22 GMT
accept-ranges: bytes
content-length: 20219
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.popt.in/pixel.js?id=4ae62d48ce163
172.67.213.134200 OK 60 kB URL HTTP/2 cdn.popt.in/pixel.js?id=4ae62d48ce163
IP 172.67.213.134:0
File type Unicode text, UTF-8 text, with very long lines (65501), with no line terminators
Hash e60ed64742b46fa8dada4457a7fc24a1
f0c7eb914d8c17343e99b20c59b55bc9865c55a8
8b1a0ef8d7997b2eea2c5443333fae8eeafa1244730200665f78747c5bd3ec50
GET /pixel.js?id=4ae62d48ce163 HTTP/1.1
Host: cdn.popt.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uaeneurology.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 09:52:05 GMT
content-type: text/javascript
last-modified: Wed, 07 Sep 2022 07:12:32 GMT
etag: W/"5f87910ceacb943e1d56d2aaa7e93bc3"
x-amz-version-id: 4B9nqp2K2FSHSJvFrlntkcd2hQjOTlRr
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tvWFoLmY6Fx4VuxhzuigJx7ekb3PYn3kZlEttIgEo6HmcLl3K43dGA==
cache-control: max-age=1800
cf-cache-status: HIT
age: 2344
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TMSHk4PCXgWQgERDpHQWiaMet3kL%2BX875h0fif4TErQG1NY2jtPF5DW8Lkg4vUGRuN8JJcmsT3S4fsNokEP%2B%2FH%2Fp2yBOcpB%2BClVKV49XzFC0zvA1OdhyUAg%2BSeN3KA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7476ca13db13b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
142.250.74.10200 OK 22 kB URL HTTP/2 fonts.googleapis.com/css?family=Raleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
IP 142.250.74.10:0
Hash 5805863e21fd96109e7ee5b8b737358f
de32bbfeb614c3ff2db7eda0ac88b840e81a762e
cbb94e352025a2000f81b497002da3e05d32f48f15462600c12551ecacf00727
GET /css?family=Raleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uaeneurology.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Sep 2022 09:52:05 GMT
date: Thu, 08 Sep 2022 09:52:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/magician.js?ver=1662630725
198.72.99.38200 OK 9.2 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/magician.js?ver=1662630725
IP 198.72.99.38:0
Hash 7dcee04e17a7a10e974621555bbc51ac
2f7f0093148216ee7a6aaa8dc27dcb077f3534c6
a1094453dd36a9357bca29bad1c8e115ba5848ea3a6ed7f205fe7871eb50bbf0
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/magician.js?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:22 GMT
accept-ranges: bytes
content-length: 9229
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/css/gutenberg-custom.css?ver=1662630725
198.72.99.38200 OK 29 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/css/gutenberg-custom.css?ver=1662630725
IP 198.72.99.38:0
File type ASCII text, with very long lines (432), with CRLF line terminators
Hash e238d0c61f1ca9b4acb9cb9586a8c8c8
9ae301fbaa0291d916c83f47d6dcab992523d7cd
69b821d0c0a4357b4cba89a1fe85b2c3cba7e7af8df3e949aee4967898f41f64
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/themes/exhibz/assets/css/gutenberg-custom.css?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:18 GMT
accept-ranges: bytes
content-length: 28654
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/anime.js?ver=1662630725
198.72.99.38200 OK 17 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/anime.js?ver=1662630725
IP 198.72.99.38:0
File type ASCII text, with very long lines (17076)
Hash 1b92510085f795bdc746e6aa1d4cf579
e1683dcfed4d67b6f266d2b9221cf3ea216c987c
8e3dfdd11b37bc2f98ccb09f75c70beae6747bf5add0bc67a78c9449afb256cd
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/anime.js?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:22 GMT
accept-ranges: bytes
content-length: 17180
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
198.72.99.38200 OK 12 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 198.72.99.38:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash 3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:40 GMT
accept-ranges: bytes
content-length: 12198
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
198.72.99.38200 OK 11 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 198.72.99.38:0
File type ASCII text, with very long lines (10544)
Hash 4eee50ac6f4f364ba3a284d0753ddae3
a8e7e824e6824ae0b370ff36e2c07ca07276fae0
b936db5880aa9b6b2f26a8d32fc2b689fb75f69d971b94194f16dba801221ffe
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:47 GMT
accept-ranges: bytes
content-length: 10682
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2
198.72.99.38200 OK 22 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2
IP 198.72.99.38:0
File type ASCII text, with very long lines (21905), with no line terminators
Hash ae0f40d4f21faa4c3ae5e3ec85853384
c94eb67feaf4d226d3e08ccd7e2d236d1a013c5d
32dd00604df8db3415240d450341558b6827b1e02dc0f211d8a6d9a4287c522e
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 29 Aug 2022 04:44:21 GMT
accept-ranges: bytes
content-length: 21905
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/main.js?ver=1662630725
198.72.99.38200 OK 9.0 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/main.js?ver=1662630725
IP 198.72.99.38:0
Hash 3ed0c2901a78d868d7841f1b8a048b2f
a6838866526195b0b60e7be39a2afa1d6f1a1a58
ee21743de823e96d5310a8957ddb7ed410712aa15fbd5bf9c84128bea67307a1
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/main.js?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:22 GMT
accept-ranges: bytes
content-length: 9040
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.0
198.72.99.38200 OK 18 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.0
IP 198.72.99.38:0
File type ASCII text, with very long lines (17602), with no line terminators
Hash fe07f28cbe4173efe9df51a21b10a378
1ad75bb6e698e4d621a8821d7f99be5324eb6653
18c82d06b5714cd5f89acf9fcd425e81577253bc08c0166a6994fc82796e4244
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.7.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 29 Aug 2022 04:46:26 GMT
accept-ranges: bytes
content-length: 17602
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.30
198.72.99.38200 OK 59 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.30
IP 198.72.99.38:0
File type ASCII text, with very long lines (59158)
Hash 74bab4578692993514e7f882cc15c218
b6293bcfd851f963edbe859498570c4c0c7eaae4
d87ddf917b7a1449ab45e2b8e3c98354629bdd65b6659c37e6023bbea1ce1386
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.30 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:41 GMT
accept-ranges: bytes
content-length: 59344
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=6.0.2
198.72.99.38200 OK 59 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=6.0.2
IP 198.72.99.38:0
File type ASCII text, with very long lines (59158)
Hash 74bab4578692993514e7f882cc15c218
b6293bcfd851f963edbe859498570c4c0c7eaae4
d87ddf917b7a1449ab45e2b8e3c98354629bdd65b6659c37e6023bbea1ce1386
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:41 GMT
accept-ranges: bytes
content-length: 59344
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.31
198.72.99.38200 OK 60 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.31
IP 198.72.99.38:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 369b37c5802c5e2c3590ec8f1640cbb9
89c70e8955b8ee69cd29f715cff65ed4087c3ae7
03e062c8df89efc8bb5788f310d45c12f7f1dbb2329bba5cc127292a14689429
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.31 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Fri, 12 Aug 2022 17:52:16 GMT
accept-ranges: bytes
content-length: 59581
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/css/iziModal.css?ver=6.0.2
198.72.99.38200 OK 86 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/css/iziModal.css?ver=6.0.2
IP 198.72.99.38:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7bf758d3523551fe558809edb093c4c6
bdd5662dae47f7a687454ffbeea6455c8811a587
7dee8ad33e9f6cafc9a334d8f7240265e2539a1746e376969d523470826a4cb1
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/css/iziModal.css?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 06 Jun 2022 20:55:56 GMT
accept-ranges: bytes
content-length: 86093
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:05 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
198.72.99.38200 OK 89 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 198.72.99.38:0
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sun, 17 Jul 2022 04:46:12 GMT
accept-ranges: bytes
content-length: 88932
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:05 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/js/jquery.jCounter.js?ver=1662630725
198.72.99.38200 OK 13 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/js/jquery.jCounter.js?ver=1662630725
IP 198.72.99.38:0
Hash 0238744ddb587bcdb0aa770f52de8614
74f6e3f41be65aa3db53817fb4c5c8ed325d8ea7
faacd0952f1c6b3876d2ba7f347dab2a54de63b9a92f435ccd4554fa8f44b26a
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/themes/exhibz/assets/js/jquery.jCounter.js?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:22 GMT
accept-ranges: bytes
content-length: 12863
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.3
198.72.99.38200 OK 33 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.3
IP 198.72.99.38:0
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash 446a6f172216f132012de118e78a5949
8b7816fb7853c46e539da2727c9688cc3d3cc6cb
08b63f27f6d970e11434ea5fc5415c8ee01b9188e8ef423674dff8130f887f9d
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.3 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:30 GMT
accept-ranges: bytes
content-length: 32929
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/css/master.css?ver=1662630725
198.72.99.38200 OK 104 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/css/master.css?ver=1662630725
IP 198.72.99.38:0
Size 104 kB (103907 bytes)
Hash 7692d4a17dec75816f7519abfbe3a171
487a2bd5a5b13f848a79b9688848fc5670911107
25415b395eb976fb68fbc8a13ae6f5d985aad6347e8279b460e7434c067ea46f
GET /brainconference2022/wp-content/themes/exhibz/assets/css/master.css?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sun, 12 Dec 2021 14:45:02 GMT
accept-ranges: bytes
content-length: 103907
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/css/bdt-uikit.css?ver=3.13.1
198.72.99.38200 OK 92 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/css/bdt-uikit.css?ver=3.13.1
IP 198.72.99.38:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 7ac75d938b961bb507875da8b1fb8821
08fcb3db43de9372a411036524b5c6315072fb04
3718cdf7b0fb7badc2320562913a188264252016b3d6af5fbdb6103aac40b920
GET /brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/css/bdt-uikit.css?ver=3.13.1 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:01:32 GMT
accept-ranges: bytes
content-length: 92247
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/js/iziModal.js?ver=6.0.2
198.72.99.38200 OK 26 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/js/iziModal.js?ver=6.0.2
IP 198.72.99.38:0
File type HTML document, ASCII text, with very long lines (25741), with no line terminators
Hash d6c8423d4b153125553962c82de0eb1c
b869c2732c96d7fa7151d668e46e68842cb795be
0992cd4ddac17a890b82e0145a969d6daeadfa68e43b6c93dd3478a6c8ab572a
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/js/iziModal.js?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 06 Jun 2022 20:55:56 GMT
accept-ranges: bytes
content-length: 25741
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=6.0.2
198.72.99.38200 OK 139 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=6.0.2
IP 198.72.99.38:0
File type ASCII text, with very long lines (65280)
Size 139 kB (139153 bytes)
Hash 15bb2b8491fc7e84137d65f610e1685a
cd76b70a5426893e9c022b9a75c50a7c1348e2d0
b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:40 GMT
accept-ranges: bytes
content-length: 139153
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/countdown-timer-for-elementor/assets/js/jquery.countdownTimer.js?ver=1.0.0
198.72.99.38200 OK 36 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/countdown-timer-for-elementor/assets/js/jquery.countdownTimer.js?ver=1.0.0
IP 198.72.99.38:0
Hash c2c202e4d7c7767d139ce01973fed464
16d689a4345eeaf06447e20e5e2afec61908d2ac
7b3e00d4c961c54e47b243ca39496145af99ce7e14403cf31f230e67cf1a1afe
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/countdown-timer-for-elementor/assets/js/jquery.countdownTimer.js?ver=1.0.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 06 Jun 2022 20:54:40 GMT
accept-ranges: bytes
content-length: 36226
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/stratum/assets/css/style.min.css?ver=1.3.13
198.72.99.38200 OK 142 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/stratum/assets/css/style.min.css?ver=1.3.13
IP 198.72.99.38:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 142 kB (142525 bytes)
Hash c40916248a44711b1d0b7b47203330ec
b2baaa21213b7fb0a16429e8aded1b49e10df07c
ac9267f6dcdbdd099bc4a6bc9ce5a17985485f6636fb8553445ebc6addadbbc2
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/stratum/assets/css/style.min.css?ver=1.3.13 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Fri, 25 Mar 2022 16:25:12 GMT
accept-ranges: bytes
content-length: 142525
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.3
198.72.99.38200 OK 166 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.3
IP 198.72.99.38:0
File type ASCII text, with very long lines (65497)
Size 166 kB (165666 bytes)
Hash 8ca6a7def1c4e73a54e461f0aa643383
bd49db3c0a34c9a10e5e7b779a6b6eb81ed8fa56
a7750efdebe664f2432066eea4d043afe524fce59447c97e61e2ca5ffdec6eb6
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.3 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:39 GMT
accept-ranges: bytes
content-length: 165666
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/js/bootstrap.min.js?ver=1662630725
198.72.99.38200 OK 49 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/js/bootstrap.min.js?ver=1662630725
IP 198.72.99.38:0
File type ASCII text, with very long lines (48664)
Hash 14d449eb8876fa55e1ef3c2cc52b0c17
a9545831803b1359cfeed47e3b4d6bae68e40e99
e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/themes/exhibz/assets/js/bootstrap.min.js?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:22 GMT
accept-ranges: bytes
content-length: 48944
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/owl.carousel.min.js?ver=6.0.2
198.72.99.38200 OK 43 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/owl.carousel.min.js?ver=6.0.2
IP 198.72.99.38:0
File type ASCII text, with very long lines (42563), with no line terminators
Hash b158aaac4c1ecda8b3ee205c21982fd7
6d250a745ef2601ef868cce70fd34e39a311ec95
fc1a2586c16dc4fc66d5c68310bfac2f5eedc8f3f01945816a3103a5b2c5cd1e
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/owl.carousel.min.js?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 06 Jun 2022 20:55:56 GMT
accept-ranges: bytes
content-length: 42563
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.3
198.72.99.38200 OK 40 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.3
IP 198.72.99.38:0
File type ASCII text, with very long lines (40474)
Hash abe5f8a07c743c34b23a02a53c6dfae0
3dc07402374504ff30608af828430ab2d8ff7b27
7ff0ab5b8659ded61d10d8444986efc47b0bf5d1b07f3923dcf7d37046b8ff5e
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.3 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:30 GMT
accept-ranges: bytes
content-length: 40513
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/tf-main.js?ver=6.0.2
198.72.99.38200 OK 51 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/tf-main.js?ver=6.0.2
IP 198.72.99.38:0
File type ASCII text, with CRLF line terminators
Hash 7ac6baa3dff6268647b548745bbf1bb7
67c262493fb0fcf50c224a1c733bff736852d8ca
46569c4f85c999d2a735afdf63a4c8fbc395d1dcb83652a81a670b3a7e1b6c13
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/js/tf-main.js?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 06 Jun 2022 20:55:56 GMT
accept-ranges: bytes
content-length: 50674
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.3
198.72.99.38200 OK 43 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.3
IP 198.72.99.38:0
File type ASCII text, with very long lines (43101)
Hash cbd86fdaf7871b77a2d14fd110e5efbb
51553d44c0fd39ab2f36ee2c967a6ee3ab3a0e52
4ebb1e3c6c24df912d83154428a4176d19bd25db9625c6d7dae639b9a92337b9
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.3 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:32 GMT
accept-ranges: bytes
content-length: 43140
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/stratum/assets/js/frontend.min.js?ver=1.3.13
198.72.99.38200 OK 55 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/stratum/assets/js/frontend.min.js?ver=1.3.13
IP 198.72.99.38:0
File type Unicode text, UTF-8 text, with very long lines (55016), with no line terminators
Hash d212e9e032f3ea7572708c5c1903b9b7
d8628ea1b7498445bb8e37240db622b918f5b6a0
08f002722ce870a7070dfa5b13ee7ec2576e75890f5a3f446f6b15ff1045f6bf
GET /brainconference2022/wp-content/plugins/stratum/assets/js/frontend.min.js?ver=1.3.13 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Fri, 25 Mar 2022 16:25:12 GMT
accept-ranges: bytes
content-length: 55036
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.0
198.72.99.38200 OK 446 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.0
IP 198.72.99.38:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size 446 kB (445657 bytes)
Hash b2d1f74caff9dd0eaeda9bff094def44
397f283cdc7dae2c24f3df45203eaee5cb0a64bf
ae163e3b8f41032b6d0abe0994e2776affda8f455a54c03fd1a1536ecc97423c
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 29 Aug 2022 04:46:27 GMT
accept-ranges: bytes
content-length: 445657
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/uploads/2022/03/lofo-fffff.png
198.72.99.38200 OK 37 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/uploads/2022/03/lofo-fffff.png
IP 198.72.99.38:0
File type PNG image data, 140 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 2f1232efb7a8d782d04a64f8529420d8
d60e31db18148708e2e4c2fc3c2965cf3c8cd129
a5ac6ab70a4102ad903aee898562115464f2250e570372f44c6ed1bca313d461
GET /brainconference2022/wp-content/uploads/2022/03/lofo-fffff.png HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Thu, 31 Mar 2022 21:36:40 GMT
accept-ranges: bytes
content-length: 37181
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: image/png
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/js/jquery.mb.YTPlayer.js?ver=6.0.2
198.72.99.38200 OK 120 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/js/jquery.mb.YTPlayer.js?ver=6.0.2
IP 198.72.99.38:0
File type Unicode text, UTF-8 text, with very long lines (305)
Size 120 kB (120094 bytes)
Hash 4050caab7a3bd5299546047a7cf12418
9c40298deb38ef4aa4d84e2b636a6390b6c9cd11
7a3124225e7aacd19f10f1863fdf7739f6f6dd7163fd6f9639acc5cd905e8e95
GET /brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/post-format/assets/js/jquery.mb.YTPlayer.js?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 06 Jun 2022 20:55:56 GMT
accept-ranges: bytes
content-length: 120094
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.0
198.72.99.38200 OK 138 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.0
IP 198.72.99.38:0
File type ASCII text, with very long lines (45047)
Size 138 kB (137535 bytes)
Hash 27405af5f1692473fafa26151a67c55d
e6d515a2fce4ac444d5ac9d6b8a80b9ad667ee28
cdaa4c91b5bc3dd4ce8e1345b453844dd414602022a182ce2853d87bd4b9a9d3
GET /brainconference2022/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 29 Aug 2022 04:46:26 GMT
accept-ranges: bytes
content-length: 137535
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
198.72.99.38200 OK 129 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
IP 198.72.99.38:0
File type ASCII text, with very long lines (45108), with CRLF line terminators
Size 129 kB (128805 bytes)
Hash 0ce245fda586eafae053aa341ccdd2c7
3f0e5d08540860f4e1c4ba0db2bd3decf481ea44
5c9203860ae657336596c738730f9d362e00bb9948a0f581fb074270c328e26b
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Fri, 12 Aug 2022 17:52:16 GMT
accept-ranges: bytes
content-length: 128805
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.31
198.72.99.38200 OK 392 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.31
IP 198.72.99.38:0
File type ASCII text, with very long lines (64288)
Size 392 kB (391726 bytes)
Hash 57873e88ecc07a217b2b7149a169d6f7
9e61a16932f643d23582b07bb7f780059866b37f
d048af27682e7811ddf8a3be2684b8446f5c16c4fb39141567913ac8aac28fc0
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.31 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Fri, 12 Aug 2022 17:52:16 GMT
accept-ranges: bytes
content-length: 391726
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da05c4b51a3dabf88135becc19f1af52
2c8e928a750eff713ffba9cacff2ee241b22c236
3a718561532594be11fba74ace11458dc337786dacb48c588777120b6916984f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 09:52:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da05c4b51a3dabf88135becc19f1af52
2c8e928a750eff713ffba9cacff2ee241b22c236
3a718561532594be11fba74ace11458dc337786dacb48c588777120b6916984f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 09:52:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da05c4b51a3dabf88135becc19f1af52
2c8e928a750eff713ffba9cacff2ee241b22c236
3a718561532594be11fba74ace11458dc337786dacb48c588777120b6916984f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 09:52:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da05c4b51a3dabf88135becc19f1af52
2c8e928a750eff713ffba9cacff2ee241b22c236
3a718561532594be11fba74ace11458dc337786dacb48c588777120b6916984f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 09:52:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da05c4b51a3dabf88135becc19f1af52
2c8e928a750eff713ffba9cacff2ee241b22c236
3a718561532594be11fba74ace11458dc337786dacb48c588777120b6916984f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 09:52:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
142.250.74.163200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://uaeneurology.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 21:13:12 GMT
expires: Tue, 05 Sep 2023 21:13:12 GMT
cache-control: public, max-age=31536000
age: 218335
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://uaeneurology.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 51479
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://uaeneurology.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Sep 2022 02:02:22 GMT
expires: Sun, 03 Sep 2023 02:02:22 GMT
cache-control: public, max-age=31536000
age: 460185
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://uaeneurology.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 51479
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
198.72.99.38200 OK 77 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 198.72.99.38:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
Origin: http://uaeneurology.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:42 GMT
accept-ranges: bytes
content-length: 77160
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: font/woff2
date: Thu, 08 Sep 2022 09:52:07 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da05c4b51a3dabf88135becc19f1af52
2c8e928a750eff713ffba9cacff2ee241b22c236
3a718561532594be11fba74ace11458dc337786dacb48c588777120b6916984f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 09:52:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
uaeneurology.com/brainconference2022/wp-content/uploads/2022/03/WhatsApp-Image-2022-03-30-at-9.50.13-PM-1024x640.jpeg
198.72.99.38200 OK 107 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/uploads/2022/03/WhatsApp-Image-2022-03-30-at-9.50.13-PM-1024x640.jpeg
IP 198.72.99.38:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1024x640, components 3\012- data
Size 107 kB (106824 bytes)
Hash 51538869b792400539ad5297e777aa0c
b5eb7ee2a0a0316e6c6b4c9db6bfd04b46d0c7b9
a58293ca38c8d3ee3461c5814748bfaac0842f1b1d0ba66f975ce1f00c1f2a01
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/uploads/2022/03/WhatsApp-Image-2022-03-30-at-9.50.13-PM-1024x640.jpeg HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Wed, 30 Mar 2022 21:54:40 GMT
accept-ranges: bytes
content-length: 106824
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: image/jpeg
date: Thu, 08 Sep 2022 09:52:07 GMT
server: Apache
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/3.5.0/jquery.min.js
104.17.25.14200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.5.0/jquery.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (65451)
Hash 391678ecd81abb89d767676563d04a0d
ca95c965bf5453f22a77969f650d82cc0495aedc
0688a8577842e3019d1880c5e32bf44ab58a93592218886291e05eb8a1907c7b
GET /ajax/libs/jquery/3.5.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uaeneurology.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 09:52:07 GMT
content-type: application/javascript; charset=utf-8
content-length: 27964
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15d95"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 5674752
expires: Tue, 29 Aug 2023 09:52:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cspUiCEDT7Zx8Q7DJWLdX5wwXKDj82l3Cd6Mdjn08ExaI5pcSuPD7MKP3ahEwKRoAAPVT8eMZDA%2FsMJmG%2FO%2Fuctg7Z4TNVf4TzB5Z0v4XtVHeyz6HvDfyEMq9Fx9tDDaou2KenPq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7476ca1eaed9b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/uploads/2022/03/cropped-android-chrome-192x192-2-192x192.png
198.72.99.38200 OK 50 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/uploads/2022/03/cropped-android-chrome-192x192-2-192x192.png
IP 198.72.99.38:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 9722d39928421bd805a6cab06119cf35
6d902af1ae4eca60c8a843079d15173fd8e6ab04
5e4fc8aec85a6dfa5f55145bd86d471d88bd13c8eab18516e8e2fc40fb875c88
GET /brainconference2022/wp-content/uploads/2022/03/cropped-android-chrome-192x192-2-192x192.png HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 29 Mar 2022 19:02:44 GMT
accept-ranges: bytes
content-length: 49746
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: image/png
date: Thu, 08 Sep 2022 09:52:07 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/uploads/2022/03/cropped-android-chrome-192x192-2-32x32.png
198.72.99.38200 OK 2.2 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/uploads/2022/03/cropped-android-chrome-192x192-2-32x32.png
IP 198.72.99.38:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 1122da04b29dc1036afd7e4eca74efcc
514a2b64ba9c2a727b06ffbad866a6c9bc15bbd2
d306a93e52d4969b89819b17e0cb98744ade98a9beb412c6e183af36854913b6
GET /brainconference2022/wp-content/uploads/2022/03/cropped-android-chrome-192x192-2-32x32.png HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 29 Mar 2022 19:02:44 GMT
accept-ranges: bytes
content-length: 2205
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: image/png
date: Thu, 08 Sep 2022 09:52:07 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff?v=4.7.0
198.72.99.38200 OK 98 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff?v=4.7.0
IP 198.72.99.38:0
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
Origin: http://uaeneurology.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:42 GMT
accept-ranges: bytes
content-length: 98024
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: font/woff
date: Thu, 08 Sep 2022 09:52:07 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.ttf?v=4.7.0
198.72.99.38200 OK 166 kB URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.ttf?v=4.7.0
IP 198.72.99.38:0
File type TrueType Font data, 13 tables, 1st "FFTM", 24 names, Macintosh\012- data
Size 166 kB (165548 bytes)
Hash b06871f281fee6b241d60582ae9369b9
13b1eab65a983c7a73bc7997c479d66943f7c6cb
aa58f33f239a0fb02f5c7a6c45c043d7a9ac9a093335806694ecd6d4edc0d6a8
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
Origin: http://uaeneurology.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:41 GMT
accept-ranges: bytes
content-length: 165548
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: font/ttf
date: Thu, 08 Sep 2022 09:52:07 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10745
Expires: Thu, 08 Sep 2022 12:51:12 GMT
Date: Thu, 08 Sep 2022 09:52:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F703333f6-0141-4f21-97c4-c72f35090252.webp
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F703333f6-0141-4f21-97c4-c72f35090252.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c870cb13eb9cbc6e3cb66814dc06a157
b469f24dbfe01ee68650ef1b0abd6badb83e3325
d4dc98f6d2d86a94c85056797a4efd9ab938651fb06bf421c661b78a5c9d9319
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F703333f6-0141-4f21-97c4-c72f35090252.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4570
x-amzn-requestid: c8acc548-6455-4951-9ca0-245a1c3bdf8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9VYGwEoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f55-58f59c61714ed9761d39c8b4;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UiG7UKRQy_MGckOpAsfoV4PUZZ2o8ko7Q6hqeYlzo5XS0874Cf2gxQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:33:06 GMT
etag: "b469f24dbfe01ee68650ef1b0abd6badb83e3325"
content-type: image/jpeg
age: 40741
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0564fe6-5557-4644-ba02-30e6de571e27.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0564fe6-5557-4644-ba02-30e6de571e27.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 786824349d0ac6933b5beb4a10ce9cc7
63e6e7d760e736c45ca4778111ea8e61eb13edd6
4aea707f67116f423b68bd19e946b167b48c920693663f2b7b270c86947bffdb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0564fe6-5557-4644-ba02-30e6de571e27.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7923
x-amzn-requestid: 657663ba-b3e9-4a84-9186-3f13ad230765
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9VsGsQoAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f57-6fc934984bba83fe1b91056f;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: WSGEVR0aSN0fgOzZ7GRMqgQ7z8UqIJ72nRk4_T2-C7ViLZgDMIEcDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 79880188a81becf1687ba18c0e064230.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:28:23 GMT
age: 41024
etag: "63e6e7d760e736c45ca4778111ea8e61eb13edd6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6df26b-97aa-461c-9f22-c5c9496b5701.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6df26b-97aa-461c-9f22-c5c9496b5701.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24e43bc53a0b047911cff00ad4b72320
f6ef30b5df0e634c3a3f607d751e738e55a276c9
7e1406b2101c912e72f37f0257128574079e618c1af83e360acb3f29b4d44d89
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6df26b-97aa-461c-9f22-c5c9496b5701.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8705
x-amzn-requestid: ccc5b695-35b5-49fd-b938-296a88a78ab8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TgFOiIAMFaXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-12e809c767cdbba61492187c;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: iN3jcMCQ8paYD_O9gQLAswM-ITb0oY8CYmbnMDwpwS-7hPLis5TGSg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:03:47 GMT
age: 42500
etag: "f6ef30b5df0e634c3a3f607d751e738e55a276c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ca5b5d4ac26d97b5729a30ecdc688bc
3e633bc6c4ab9adfe84899e5209d73bef1d097eb
2c8275d1819d933f86df9685b76aea030842ba5a341c59ea88ffd2da99a5a3d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7885
x-amzn-requestid: 305dc6b7-eb3d-40ad-af89-8b60be935637
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9ThE3DIAMFRtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-7c0b58644e26de7f27c5b388;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ry2D03udnweYHan_7KhC9IDhT01g9_73G40Fa10BdIX21tgK0Cgjiw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:48:35 GMT
etag: "3e633bc6c4ab9adfe84899e5209d73bef1d097eb"
content-type: image/jpeg
age: 43412
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ee600c8-d25e-4cb3-93cb-f1970d300d9c.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ee600c8-d25e-4cb3-93cb-f1970d300d9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c316fd8a538a8c998ef49d399e9b0692
1fbcbd73de88723e5a42ec1ecb131b94deb1c88e
1a34abee1bf6b76733ba2ca97a5c053b67bd6cd48f6953fc53798c77385cd781
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ee600c8-d25e-4cb3-93cb-f1970d300d9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8643
x-amzn-requestid: 663e595c-db96-40aa-af51-7628b4c536fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDkkoFTvIAMFimw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317b483-7a2d96f41413f89f1fc3acb4;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 20:58:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CZ1qUdeqBSDB3XHDy6QYWptdZ1aFWLSBTYwWwOvec0H0-m921E5s_g==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:05:02 GMT
age: 42425
etag: "1fbcbd73de88723e5a42ec1ecb131b94deb1c88e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a07d553b6441514870ed7e9e989a29a7
98c145b9326d1e6036fa9089d87a25232dd45b0b
373a586b596016baeb8de98022207c25af24c099c06077edbdfd837cffc31a0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6mfdlMHJozdykr4faiijvUuJPXVrJGU_n0MxJgCrZ-uWWdejGYfiAQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:33:06 GMT
age: 40741
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway%3A400%2C500%2C600%2C700%2C800%2C900%7CRoboto%3A400%2C700&ver=1662630725
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway%3A400%2C500%2C600%2C700%2C800%2C900%7CRoboto%3A400%2C700&ver=1662630725
IP 142.250.74.10:0
GET /css?family=Raleway%3A400%2C500%2C600%2C700%2C800%2C900%7CRoboto%3A400%2C700&ver=1662630725 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uaeneurology.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Sep 2022 09:52:05 GMT
date: Thu, 08 Sep 2022 09:52:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/css/bootstrap.min.css?ver=1662630725
198.72.99.38200 OK 0 B URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/assets/css/bootstrap.min.css?ver=1662630725
IP 198.72.99.38:0
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/themes/exhibz/assets/css/bootstrap.min.css?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:18 GMT
accept-ranges: bytes
content-length: 144883
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/css/tf-style.css?ver=6.0.2
198.72.99.38200 OK 0 B URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/css/tf-style.css?ver=6.0.2
IP 198.72.99.38:0
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/themesflat-addons-for-elementor/assets/css/tf-style.css?ver=6.0.2 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 06 Jun 2022 20:55:56 GMT
accept-ranges: bytes
content-length: 178815
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:05 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
198.72.99.38200 OK 0 B URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 198.72.99.38:0
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:02:40 GMT
accept-ranges: bytes
content-length: 139153
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.0
198.72.99.38200 OK 0 B URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.0
IP 198.72.99.38:0
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Mon, 29 Aug 2022 04:46:21 GMT
accept-ranges: bytes
content-length: 120946
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: text/css
date: Thu, 08 Sep 2022 09:52:05 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/TweenMax.min.js?ver=1662630725
198.72.99.38200 OK 0 B URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/TweenMax.min.js?ver=1662630725
IP 198.72.99.38:0
GET /brainconference2022/wp-content/themes/exhibz/core/parallax/assets/js/TweenMax.min.js?ver=1662630725 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Sat, 29 May 2021 20:41:22 GMT
accept-ranges: bytes
content-length: 114220
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
198.72.99.38200 OK 0 B URL HTTP/2 uaeneurology.com/brainconference2022/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 198.72.99.38:0
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Thu, 11 Mar 2021 00:07:24 GMT
accept-ranges: bytes
content-length: 89521
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
uaeneurology.com/brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/js/bdt-uikit.min.js?ver=3.13.1
198.72.99.38200 OK 0 B URL HTTP/2 uaeneurology.com/brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/js/bdt-uikit.min.js?ver=3.13.1
IP 198.72.99.38:0
Analyzer Verdict Alert fortinet Phishing
GET /brainconference2022/wp-content/plugins/bdthemes-element-pack-lite/assets/js/bdt-uikit.min.js?ver=3.13.1 HTTP/1.1
Host: uaeneurology.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://uaeneurology.com/brainconference2022/hotel-accommodation/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests
last-modified: Tue, 30 Aug 2022 09:01:29 GMT
accept-ranges: bytes
content-length: 135498
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-permitted-cross-domain-policies: none
feature-policy: camera 'none'; fullscreen 'self'; geolocation *; microphone 'self' https://www.example/*
content-type: application/javascript
date: Thu, 08 Sep 2022 09:52:06 GMT
server: Apache
X-Firefox-Spdy: h2
display.popt.in/APIRequest/4ae62d48ce163?domain=http%3A%2F%2Fuaeneurology.com%2Fbrainconference2022%2Fhotel-accommodation%2F&referrer=&previous_url=&cookies=%20poptin_old_user%3Dtrue%20poptin_user_id%3D0.gyd3bsz6vxv%20poptin_new_user%3Dtrue%20poptin_viewed_session%3Dfalse%20&triggers=&cc=false&if_mobile=false&page_title=Hotel%20Accommodation%20%E2%80%93%202nd%20Abu%20Dhabi%20Brain%20Conference%202022&origin_landing_page=http%3A%2F%2Fuaeneurology.com%2Fbrainconference2022%2Fhotel-accommodation%2F&if_page_refreshed=false&poptin_viewed_url=http%3A%2F%2Fuaeneurology.com%2Fbrainconference2022%2Fhotel-accommodation%2F&previous_visited_pages=&shopify_customer_id=0&cart_total_items=0&cart_total_price=0&cart_products_ids_list=
104.21.69.223200 OK 0 B URL HTTP/2 display.popt.in/APIRequest/4ae62d48ce163?domain=http%3A%2F%2Fuaeneurology.com%2Fbrainconference2022%2Fhotel-accommodation%2F&referrer=&previous_url=&cookies=%20poptin_old_user%3Dtrue%20poptin_user_id%3D0.gyd3bsz6vxv%20poptin_new_user%3Dtrue%20poptin_viewed_session%3Dfalse%20&triggers=&cc=false&if_mobile=false&page_title=Hotel%20Accommodation%20%E2%80%93%202nd%20Abu%20Dhabi%20Brain%20Conference%202022&origin_landing_page=http%3A%2F%2Fuaeneurology.com%2Fbrainconference2022%2Fhotel-accommodation%2F&if_page_refreshed=false&poptin_viewed_url=http%3A%2F%2Fuaeneurology.com%2Fbrainconference2022%2Fhotel-accommodation%2F&previous_visited_pages=&shopify_customer_id=0&cart_total_items=0&cart_total_price=0&cart_products_ids_list=
IP 104.21.69.223:0
GET /APIRequest/4ae62d48ce163?domain=http%3A%2F%2Fuaeneurology.com%2Fbrainconference2022%2Fhotel-accommodation%2F&referrer=&previous_url=&cookies=%20poptin_old_user%3Dtrue%20poptin_user_id%3D0.gyd3bsz6vxv%20poptin_new_user%3Dtrue%20poptin_viewed_session%3Dfalse%20&triggers=&cc=false&if_mobile=false&page_title=Hotel%20Accommodation%20%E2%80%93%202nd%20Abu%20Dhabi%20Brain%20Conference%202022&origin_landing_page=http%3A%2F%2Fuaeneurology.com%2Fbrainconference2022%2Fhotel-accommodation%2F&if_page_refreshed=false&poptin_viewed_url=http%3A%2F%2Fuaeneurology.com%2Fbrainconference2022%2Fhotel-accommodation%2F&previous_visited_pages=&shopify_customer_id=0&cart_total_items=0&cart_total_price=0&cart_products_ids_list= HTTP/1.1
Host: display.popt.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://uaeneurology.com
Connection: keep-alive
Referer: http://uaeneurology.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 09:52:07 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: Origin, Content-Type
content-security-policy: frame-ancestors https://bc.popt.in https://*.mybigcommerce.com https://*.jumpseller.com https://*.myshopline.com https://*.myshopify.com
cache-control: max-age=0, must-revalidate, no-store, nocache, private
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: XSRF-TOKEN=eyJpdiI6IjRiRXhJMHJUc2hHY3htR2lESEs4RUE9PSIsInZhbHVlIjoiWkxEOERPbTJ5Mk5mcXlrRWdFMlVYMGNFcHd6RWJRVkxWckpsdEhMbzg2c2hWTUhFckVJSDM2bzNZQTgzQk5EaiIsIm1hYyI6IjZkZTU5YTM2NDY2NGUxMzJlODI4ZTJlYTQ3M2JjODA2N2ZkYjRmOTI4MjgwNGYxOGM5YmQ5MDFiOGI3MzM1NWYifQ%3D%3D; expires=Thu, 08-Sep-2022 10:02:07 GMT; Max-Age=600; path=/
laravel_session=eyJpdiI6IlIrUWpud2RWZ2Z3RW5IMGhFdjdPdUE9PSIsInZhbHVlIjoiRkNQOWxORnBpemhmR3ZOaE5ZMjVYN2RJRitRTWJvT2Z5NFU0cEtkQ210bGw1b3d0SU0rdklhTGpySkhCMU9VRiIsIm1hYyI6IjdjOTBjZjE2MjRhODM0OGRkYzMxNjJhNzE0OTdhNTA5NjQyYTAwZjQ0YzU0NjYyY2E5YThiNzI1NzRiOTQ5MzUifQ%3D%3D; expires=Thu, 08-Sep-2022 10:02:07 GMT; Max-Age=600; path=/; httponly
bMjsluSIGUI7rdU54yZGYSM6N2synsMCl8GfvhoX=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%3D; expires=Thu, 08-Sep-2022 10:02:07 GMT; Max-Age=600; path=/; httponly
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RwdbiCO%2ByHe9dNZarpGN6kOUimiJC85fo1gUGiz7HUpX2QdY5bEwN2Qf2In%2FyrFUMmiJeEndxvTP8Vg5DgjDGcbXeiM9J4f8y4aSSGPowc%2BzewVtTLW4GcAbE2u22Q2PIM8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7476ca205a01b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2