firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 15:10:26 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lGgZ14cqlCzqrPNnXU6tXb3BXz-u5wrMmlOAI3Qx2ZEHRbuxoA6IOg==
Age: 3475
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5555
Expires: Thu, 15 Sep 2022 17:40:57 GMT
Date: Thu, 15 Sep 2022 16:08:22 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: V5FYeYLZcWbmvG1LN1e3yKndpwuqZQ22q9RJIOetXDcnME3xhKPpZw==
age: 41587
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 16:08:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
108.167.164.179301 Moved Permanently 0 B URL HTTP/1.1 menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 15 Sep 2022 16:08:22 GMT
Server: Apache
Expires: Thu, 15 Sep 2022 17:08:23 GMT
Cache-Control: max-age=3600
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade
Location: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
X-Accel-Expires: 10800
Content-Length: 0
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 15 Sep 2022 16:03:22 GMT
Expires: Thu, 15 Sep 2022 16:03:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3CxMYzUCfeFosT51lCBbAXfbkGdp_Wx12dNjJz3dqGITNTfHxvBVjg==
Age: 300
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d597af1ab2f21a983bf0f0d105b94209
9d5dd938777abde094c89066b539141a02106b88
a614eb7f969544c8040642be7c852625341e2441e757d063d2af1ff465c8c3f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 81
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:22 GMT
Last-Modified: Thu, 15 Sep 2022 16:07:01 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6b9bdc04baf0105022788acd8d786bb7
6992e05ec969a2ed432250d2368b6bae4675dad7
2da90fe2c8baf6e282260026487bd80a069f4f3cd4582e8d5b75903c6b6af5fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2DA90FE2C8BAF6E282260026487BD80A069F4F3CD4582E8D5B75903C6B6AF5FA"
Last-Modified: Wed, 14 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21597
Expires: Thu, 15 Sep 2022 22:08:19 GMT
Date: Thu, 15 Sep 2022 16:08:22 GMT
Connection: keep-alive
push.services.mozilla.com/
35.163.196.193101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.196.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: O+BITinAkzy+HjqSfcrvVQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tM1JWMCVTsjbHZPl7vpta87LVH0=
menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
108.167.164.179404 Not Found 17 kB URL HTTP/2 menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8047), with CRLF, LF line terminators
Hash b98c6cbcae8153955dd0934069a6bbe1
2db77c137adf50f4e6f7f890b9009b4388d71545
5ee9f7781b90f459ea8a21121620897a011fda0f81ca6a1b1080814ea67b9206
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://menaentrepreneur.org/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 16551
content-type: text/html; charset=UTF-8
date: Thu, 15 Sep 2022 16:08:23 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 56b4a90e8be043082aa30d490fe93e47
6c94d4b9610ec757d7e7851ac2e478edff1309f8
c59724a0ece262f497d3f09f4e90ae49a11a3a150134183cc10ef2c47f5fe9b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7975b33417f675d21a178b997288d616
1d2e957c46d45d6cb2f44389f3dcc66c880b6065
daffff63daade8bb0c2fd63570229df8502c563dd079b4da4103f6ee89fa67e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/block/dist/style-wpzoom-social-icons.css?ver=4.2.6
108.167.164.179200 OK 1.4 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/block/dist/style-wpzoom-social-icons.css?ver=4.2.6
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8857)
Hash 6b13f55c6e60e245265e7e09d05193ee
1b296c86352c5dc036c4fcf1b40968b6c8d831da
6397d0b006b1c71617b76be352990efb49a2ebc5ce10f88a5f7c1203e0315699
GET /wp-content/plugins/social-icons-widget-by-wpzoom/block/dist/style-wpzoom-social-icons.css?ver=4.2.6 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 May 2022 22:20:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 1437
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
108.167.164.179200 OK 3.2 kB URL HTTP/2 menaentrepreneur.org/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11256), with no line terminators
Hash 1054d0d53548e8bae51665b11acc6413
2eea6a05fe18db61fff58c431d34a86b3e0b7ade
cb8b0f0f3f871d9776da32ee6d9e1af9277a211be61e97a831c7f8c98fbebfae
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 12 Dec 2020 09:22:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 3239
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
108.167.164.179200 OK 1.3 kB URL HTTP/2 menaentrepreneur.org/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4186), with no line terminators
Hash 91bab39b98d7e5c1632717b9ebe349e4
e639a447d06fc7827be5b5b35d603ff16b5f7bb1
47ff151faeb23a5654f6ec58b404e51193f6714849a69de241c2ee79662f74c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 16 Nov 2019 10:20:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 1298
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-57227409-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-57227409-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 0eee4853bc46c2d763e36bf368ac2908
a3d6696109ec44a1bd176063bb321c41dec95c01
eca57ec4f2e8a4aa381765919954408cf2b8687b09b7e6dbb099f1c130523102
GET /gtag/js?id=UA-57227409-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 15 Sep 2022 16:08:23 GMT
expires: Thu, 15 Sep 2022 16:08:23 GMT
cache-control: private, max-age=900
last-modified: Thu, 15 Sep 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42431
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/themes/domino/functions/wpzoom/assets/css/theme-utils.css?ver=6.0.2
108.167.164.179200 OK 171 B URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/functions/wpzoom/assets/css/theme-utils.css?ver=6.0.2
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 6b9d0b07dc4de294b95c0fb9351273cc
81d3bb6faddc5e7c511ca00e90c2050251e9cfad
d8864a1fa05834a85cd40afa8d75943c9d29b833a42b06bc60adf5a47153e92b
GET /wp-content/themes/domino/functions/wpzoom/assets/css/theme-utils.css?ver=6.0.2 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 11 Aug 2022 12:01:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 171
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
108.167.164.179200 OK 17 kB URL HTTP/2 menaentrepreneur.org/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43771)
Hash 2a67a4888baa44de739f3fe56203ce07
da175eae57f26b655747d79f055477e3fee1abb9
3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Jul 2022 20:53:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 16594
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/themes/domino/styles/default.css?ver=2.0.20
108.167.164.179200 OK 0 B URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/styles/default.css?ver=2.0.20
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/domino/styles/default.css?ver=2.0.20 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 22:00:54 GMT
accept-ranges: bytes
content-length: 0
x-accel-expires: 10800
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/themes/domino/css/media-queries.css?ver=2.0.20
108.167.164.179200 OK 3.0 kB URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/css/media-queries.css?ver=2.0.20
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 8f0d03a89867b588579f5ae5fcc15e56
d69b32b7f871fbf37adfd4ceffedded278048ded
ed8a974949d422c15fb795e339255a0e2daad985ac6e870356ae4ee41227a45b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/domino/css/media-queries.css?ver=2.0.20 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 22:00:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 3031
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 56b4a90e8be043082aa30d490fe93e47
6c94d4b9610ec757d7e7851ac2e478edff1309f8
c59724a0ece262f497d3f09f4e90ae49a11a3a150134183cc10ef2c47f5fe9b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
menaentrepreneur.org/wp-content/plugins/wpzoom-shortcodes/assets/css/shortcodes.css?ver=6.0.2
108.167.164.179200 OK 2.6 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/wpzoom-shortcodes/assets/css/shortcodes.css?ver=6.0.2
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 859b68ac9bd63466322b27d46dfbaae7
28acf0d3b1a9dfff561756acdbfa8646f7de2dc7
cf47cccd1a8c6d801757d54d2d5007d61041074b359340d7065e74f6ff0f313e
GET /wp-content/plugins/wpzoom-shortcodes/assets/css/shortcodes.css?ver=6.0.2 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 Sep 2019 21:20:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 2577
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-social-icons-styles.css?ver=1653344409
108.167.164.179200 OK 975 B URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-social-icons-styles.css?ver=1653344409
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 06ba7f32ca3f4cbf88b2dd56bb004406
0dd2b4fa6d213beacd9056d262386c4aa0c2bf90
fcb81d5d803f9cfdbfa02181e560a9f22fbf890183a87e5636ea925c53b98dd9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-social-icons-styles.css?ver=1653344409 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 May 2022 22:20:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 975
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/themes/domino/js/init.js?ver=6.0.2
108.167.164.179200 OK 3.7 kB URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/js/init.js?ver=6.0.2
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (7558)
Hash 8dcb0719e2ea9aba4f79f3b9cc476c00
b64cdc65d4bff5046d9c734660ec93d0ab6236e7
91566f5fff8d5f36dcf749432cfec8a09d1493ff2df0026c04a5ecfcbacc3589
GET /wp-content/themes/domino/js/init.js?ver=6.0.2 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 22:00:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 3714
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/Genericons.woff
108.167.164.179200 OK 14 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/Genericons.woff
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 13988, version 0.0\012- data
Hash f3f73b280148eeed102d4a6874ac7886
973bfcd63513292f1bb220c241f6dde6509f1168
970a3fa15876d16dcc0fd70eb7c9ab44d733108b3ddca1a449edd0356c1b79a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/Genericons.woff HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 May 2022 22:20:09 GMT
accept-ranges: bytes
content-length: 13988
x-accel-expires: 10800
content-type: font/woff
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/theme-my-login/assets/scripts/theme-my-login.min.js?ver=7.1.5
108.167.164.179200 OK 796 B URL HTTP/2 menaentrepreneur.org/wp-content/plugins/theme-my-login/assets/scripts/theme-my-login.min.js?ver=7.1.5
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1769), with no line terminators
Hash 951b6d38294325e8c6f471883317fc54
fc0118f069bb3552ab8eb4fd243fb6c5b8bca66e
61db265083cffa4713b851e531dd49a3b316c05fc86b20de7c0cc60109c70aa0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/theme-my-login/assets/scripts/theme-my-login.min.js?ver=7.1.5 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 13 Jun 2022 21:20:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 796
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/academicons.min.css?ver=1653344409
108.167.164.179200 OK 1.2 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/academicons.min.css?ver=1653344409
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 6bce61cc64c1f703125fd1e1bf584a25
fc6db6cd1bd078c83300ea5400f7f8894f83b179
3b04eb06269717462018ad519f47edc1bed71318fc59fed57bdaa64fc94b59a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/academicons.min.css?ver=1653344409 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 May 2022 22:20:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 1245
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/genericons.css?ver=1653344409
108.167.164.179200 OK 2.0 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/genericons.css?ver=1653344409
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d6a67b29fa2018d779f173849f1b082a
ec24b7305f519424f2bf7e79c7c57a34b830a01e
1499a2ec88ba077b1551324ca86a51a369ecd5aca2ccebea7f4a665b244ec0bf
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/genericons.css?ver=1653344409 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 May 2022 22:20:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 2005
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.8.2
108.167.164.179200 OK 3.9 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.8.2
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1577)
Hash 0de3f234bf5adf709c64d6a81701e107
ec76e30709d2ac94c86121529768c54b84943872
c67075988b28f06061348cebb275f465c608e141f9a00b50c5e4824f57ed10f3
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.8.2 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 10:20:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 3861
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/wp-review/public/js/js.cookie.min.js?ver=2.1.4
108.167.164.179200 OK 878 B URL HTTP/2 menaentrepreneur.org/wp-content/plugins/wp-review/public/js/js.cookie.min.js?ver=2.1.4
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1694)
Hash 6ce2e9c8f7a6ec887e574ef095a8110e
35d7fb905d1e8b174447f1be18b9ccc0b1dfc9cc
c8147d624c89b8a556843459289b9a7ad36dcab8783d74a7b27acd5172011594
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-review/public/js/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 09 Apr 2021 10:20:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 878
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-socicon.css?ver=1653344409
108.167.164.179200 OK 4.0 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-socicon.css?ver=1653344409
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 506dba510298137c7994629065381f65
8b9dfc186d8fd4dd5a15534b6296cba6a845c9d5
1c4adcca86734060091e8cfdd837e4f599355f3b6518ba7cf3aac3d121bd5095
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-socicon.css?ver=1653344409 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 May 2022 22:20:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 3965
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
108.167.164.179200 OK 4.6 kB URL HTTP/2 menaentrepreneur.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 12 Dec 2020 09:22:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 4618
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-includes/js/wp-util.min.js?ver=6.0.2
108.167.164.179200 OK 709 B URL HTTP/2 menaentrepreneur.org/wp-includes/js/wp-util.min.js?ver=6.0.2
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1305)
Hash e9edb7bac979409cf7dbc48d7ab8aca7
ed3f941a8fe41e3994a3ca5e620219328628f532
2a0742cad9937c742b2f51c1ea2ae48359ce8d88d8b56f6d8910c0a267d631b5
GET /wp-includes/js/wp-util.min.js?ver=6.0.2 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 23 Jul 2021 21:22:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 709
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/wpzoom-shortcodes/assets/css/font-awesome.min.css?ver=6.0.2
108.167.164.179200 OK 6.2 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/wpzoom-shortcodes/assets/css/font-awesome.min.css?ver=6.0.2
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (27303)
Hash e255876649ef8c46c79a56a9d8fadc35
d58b4148de23bef6f72be115657ee8638081e6b4
af34205e2885ffad2b538682f56786b4026c9daf459c66ea29b906834047b050
GET /wp-content/plugins/wpzoom-shortcodes/assets/css/font-awesome.min.css?ver=6.0.2 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 Sep 2019 21:20:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 6248
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/themes/domino/js/functions.js?ver=2.0.20
108.167.164.179200 OK 1.1 kB URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/js/functions.js?ver=2.0.20
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 549b3092f79863f5d6fdd9ffa52a2a3e
7a07cab24badcf59a47c73c18554f22e5ab306dc
ddbc57eebdf16979106cbbdfab0a9cda651266b3b7d3e307defb97f44ebbeb86
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/domino/js/functions.js?ver=2.0.20 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 22:00:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 1075
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/font-awesome-3.min.css?ver=1653344409
108.167.164.179200 OK 7.1 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/font-awesome-3.min.css?ver=1653344409
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30852)
Hash 2bd552d26e41db23c48f2f115780a6d7
e34c01b65a3de3a4284b87dd2de1ce11de3093ff
27b366ff576d652f994f1c8cc25276ee177213c4449097d210b310548224be1f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/font-awesome-3.min.css?ver=1653344409 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 May 2022 22:20:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 7119
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/js/social-icons-widget-frontend.js?ver=1653344409
108.167.164.179200 OK 290 B URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/js/social-icons-widget-frontend.js?ver=1653344409
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 3108ac869e6160526e766f7888a3e652
f850c304852ab61cc105ac3566d6784c47e11bd0
cdc8252512fe47bcbd9dd1b200d94482d532455d4afd0d6c412026b078f57509
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/js/social-icons-widget-frontend.js?ver=1653344409 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 May 2022 22:20:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 290
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/wp-review/public/js/main.js?ver=5.3.5
108.167.164.179200 OK 1.2 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/wp-review/public/js/main.js?ver=5.3.5
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d7181739a08649e879878af25476d2ab
fe51fe1985844f0d37040b35fff83ae782009222
d7a0c0538c58a776ff57810028b6e5eb098dc3ef973e17d18aa9e572a2f03a9f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-review/public/js/main.js?ver=5.3.5 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 09 Apr 2021 10:20:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 1170
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/themes/domino/js/theia-sticky-sidebar.js?ver=2.0.20
108.167.164.179200 OK 2.1 kB URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/js/theia-sticky-sidebar.js?ver=2.0.20
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (5324)
Hash 8b316a8ba67418484c6a658a44ea0ef6
44277fd58e7808b5c0fb06405877e98e32b03d84
e063bc4af0490ca7029936b4cd28998f2b85a84204cf23f946fd411f4d4ceac6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/domino/js/theia-sticky-sidebar.js?ver=2.0.20 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 22:00:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 2148
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/themes/domino/js/superfish.min.js?ver=2.0.20
108.167.164.179200 OK 2.0 kB URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/js/superfish.min.js?ver=2.0.20
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4270)
Hash 931c4d198e64734f412f145a36ab310c
592294b9450849a26a3c07632caffa48c089beb4
5429af085d1ad9361ec4325212895645e71362e7c3a5046433e1fdf6718cc3bd
GET /wp-content/themes/domino/js/superfish.min.js?ver=2.0.20 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 22:00:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 2030
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/themes/domino/js/search_button.js?ver=2.0.20
108.167.164.179200 OK 1.3 kB URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/js/search_button.js?ver=2.0.20
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3234)
Hash b4a31807907d3ae11b4c5931e8fa8915
09f7ea19f3a2dc829e616c4fb8925e8d97ab5109
ba4f505d9121b95b9c1bca3900417c32d49f7ed9af22da0ae309c0d266e2d4c8
GET /wp-content/themes/domino/js/search_button.js?ver=2.0.20 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 22:00:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 1303
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/themes/domino/js/jquery.fitvids.js?ver=2.0.20
108.167.164.179200 OK 1.3 kB URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/js/jquery.fitvids.js?ver=2.0.20
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text
Hash f21ecef14238d3522963032b2686470f
115904bed33f369a4810d227636204c46335c655
4f583ee223e06001b4189c5f9a199e728550bf8adddf4fd3f973b6b9a763de59
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/domino/js/jquery.fitvids.js?ver=2.0.20 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 22:00:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 1342
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/themes/domino/js/tabs.js?ver=2.0.20
108.167.164.179200 OK 1.7 kB URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/js/tabs.js?ver=2.0.20
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (538)
Hash d6b04f7dbc59336f4084f4a80796fbb2
ed355f206a0fb84d39473268b70b5da25e288fee
2981094bb9f049e386617d61b23b15c6f92344ba7b8aeddf9467e09bb077c701
GET /wp-content/themes/domino/js/tabs.js?ver=2.0.20 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 22:00:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 1677
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20191001
108.167.164.179200 OK 369 B URL HTTP/2 menaentrepreneur.org/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20191001
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (685), with no line terminators
Hash accd80b294f42169b1e447e68bacfffe
40847092d82d78897a8219b270b22838fcc0bb95
35e8294d38f054cd6fbcdef72076443685888546d93b41a596e981a5e9a61552
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20191001 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 21:20:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 369
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/wp-review/public/css/wp-review.css?ver=5.3.5
108.167.164.179200 OK 9.3 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/wp-review/public/css/wp-review.css?ver=5.3.5
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (406)
Hash b428c66e6898716f837a1d0d2514a8a0
0a2012b8dcd35589060a2698f8f2cdaa9a73c584
74bd6ce2d9de28fb8befd3893e70c39addaa8f6546ccd969ab48328a538a4aa3
GET /wp-content/plugins/wp-review/public/css/wp-review.css?ver=5.3.5 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 09 Apr 2021 10:20:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 9345
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
108.167.164.179200 OK 5.3 kB URL HTTP/2 menaentrepreneur.org/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 May 2022 22:22:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 5321
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/themes/domino/js/jquery.mmenu.min.all.js?ver=2.0.20
108.167.164.179200 OK 13 kB URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/js/jquery.mmenu.min.all.js?ver=2.0.20
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8470)
Hash 296e01501b02d1ee256369a252384384
585b7b74616eff38845c5d628486ff9158af9d2b
9166d53350ba73589d6137e813fcd8accdbad0af0898e34e38a5fbc2d2e535bc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/domino/js/jquery.mmenu.min.all.js?ver=2.0.20 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 22:00:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 12884
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-includes/js/underscore.min.js?ver=1.13.3
108.167.164.179200 OK 8.3 kB URL HTTP/2 menaentrepreneur.org/wp-includes/js/underscore.min.js?ver=1.13.3
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18876)
Hash 61a4a3c276f704185a925bfa0f4d8b1b
0176eb701bb114d9cb170193f6208ec4fbb35f71
f0875cbb46e9eeb5e497dd52d8c33725509228193c2dbe9ab464f62a15c2f0e2
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 May 2022 22:22:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 8313
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4806
Expires: Thu, 15 Sep 2022 17:28:30 GMT
Date: Thu, 15 Sep 2022 16:08:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4806
Expires: Thu, 15 Sep 2022 17:28:30 GMT
Date: Thu, 15 Sep 2022 16:08:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a6939786c9343412c9af87efd3f44e0
14131148fda4e8d85b582fd20e76bcc814341bf1
8412c50f0fdc131d9c4422f2d7307fc1ee062c3580a1d754ef71cf84f9727d49
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8447
x-amzn-requestid: 3237c2fa-bc17-4b8d-8afd-bacfaa90ca71
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FypF7KIAMFd7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63145010-7052273b184685c83569c712;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:13:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wzi_WnjJW5XjIfj8kyVL4LcQEjcuw1_zwrDiJegEZ2r8GOZcQahPEw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:46:45 GMT
age: 66099
etag: "14131148fda4e8d85b582fd20e76bcc814341bf1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e5f57ba37fac4e6047a9a321a8ec084
f6b742549ea35a4b1345cffb937a8bbcceee08ef
f8c67c54806e47089b9ba297599e3e4cde1fd2e2e38b76acc9e8de0e99d7b77e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6770
x-amzn-requestid: b7c9513c-b8ba-41c7-9f9a-0a9d2266172d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FlpEVRIAMFygA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144fbd-7a4408363cdc46c9355a9f47;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fqj5PljprRruE1jwYAVwKoHkjys-RakUjzuV67_Ued6T4et99JPxPg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:45:05 GMT
age: 66199
etag: "f6b742549ea35a4b1345cffb937a8bbcceee08ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1266c973-1bdd-4969-82ca-1106689fe929.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1266c973-1bdd-4969-82ca-1106689fe929.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f50c34bc30a732593e8fe465055a44ff
af100925cba1be716fd2200715d6136bd7f0c5bc
703049736ccc8815945d69634059c4cd39533417e0969107d460c36a6787c761
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1266c973-1bdd-4969-82ca-1106689fe929.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5078
x-amzn-requestid: b6177371-a8ba-4541-a48d-21bd806e866e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0erUHT-IAMFWKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311ab15-157ed5b700e0aad5481f5c0f;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 07:04:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MYJf90B8rX8_nPUl4stpbZcQeQDaZ2Hgyu6GmsfdqUh-0Nx5OJJThw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:54 GMT
age: 71190
etag: "af100925cba1be716fd2200715d6136bd7f0c5bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ef9865421a37eae9a4df04083d27485
c7cf1f6a259cece60a34261ec83ee00736e1d72b
723b65ba660f22281f85d6caceea23e9cd932ee9084dc905a08a585746c4c4cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9922
x-amzn-requestid: de1e3e45-74ff-41b2-986f-e78473cb6d98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YVc1SGM7IAMFw0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631edb54-2099524d6f2c338b41eea101;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 07:10:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MtgQUzYMa3mT0lxPhQ5ZCp9XVVyBH8T0dlx_0wSLMZlaFEiCikTXMw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:25:51 GMT
age: 63753
etag: "c7cf1f6a259cece60a34261ec83ee00736e1d72b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
108.167.164.179200 OK 48 kB URL HTTP/2 menaentrepreneur.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 4ce43a93b9b4a239698a22588c0ffb77
661f8b7947ce142138c3db61514e0f612d8ac57a
528fbc98bb144afb88060984bc10ba798acff4d1649be6bcedff60313f722464
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 23 Jul 2021 21:22:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4833535b1650b0ac875704023b650e66
96ab8cd8e14350f730d26731f3445710324e24e2
d2b5a51e39a4890ba56e819d4d5d1d57d4d3cfc50dde42efdf23b8e9be17d1c7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9400
x-amzn-requestid: 8cf35176-18a1-427b-870c-bdae465060c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYM18E-iIAMFcmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ff4f2-427bc0ff6593e71e25b91589;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 03:11:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZVnPAYUOBCRUYD3wEx79lIMjBJCKyVB9CmnTqMJIaFPbQGPoHwB73w==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:37 GMT
age: 71207
etag: "96ab8cd8e14350f730d26731f3445710324e24e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/academicons.woff?v=1.8.6
108.167.164.179200 OK 48 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/academicons.woff?v=1.8.6
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 47576, version 1.8\012- data
Hash 2552b354cabf01815628a244fde0636e
3c5e7d85d7e5030b8db8177daeb760abf97ed7dc
bbf62cb77adfebbdcf36ef1cf8d2587f4cfa9bf56e23118613749778f94d8e14
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/academicons.woff?v=1.8.6 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 May 2022 22:20:09 GMT
accept-ranges: bytes
content-length: 47576
x-accel-expires: 10800
content-type: font/woff
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.woff?v=4.2.6
108.167.164.179200 OK 73 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.woff?v=4.2.6
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 73224, version 1.0\012- data
Hash 189110d17f610a161237a35c557651a5
817dc527200f3b9cf98e649799ac93bf707e4625
5e034831dea7545881b92a646ec72619d045b2f5f56277b1221f7568b474f5ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.woff?v=4.2.6 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 May 2022 22:20:09 GMT
accept-ranges: bytes
content-length: 73224
x-accel-expires: 10800
content-type: font/woff
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.woff2?v=4.7.0
108.167.164.179200 OK 77 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.woff2?v=4.7.0
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 May 2022 22:20:09 GMT
accept-ranges: bytes
content-length: 77160
x-accel-expires: 10800
content-type: font/woff2
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6e669093dc2c285ce41d74ad82e5c3d2
1e65ded94e2b8c575979da362ce8dc2e304c5d5f
5a3c12851ee84e69a6ff8f0707d036d36827c77011af12aeabc187220e0fc79c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.woff?v=4.7.0
108.167.164.179200 OK 98 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.woff?v=4.7.0
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 May 2022 22:20:09 GMT
accept-ranges: bytes
content-length: 98024
x-accel-expires: 10800
content-type: font/woff
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6e669093dc2c285ce41d74ad82e5c3d2
1e65ded94e2b8c575979da362ce8dc2e304c5d5f
5a3c12851ee84e69a6ff8f0707d036d36827c77011af12aeabc187220e0fc79c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/academicons.ttf?v=1.8.6
108.167.164.179200 OK 48 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/academicons.ttf?v=1.8.6
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 11 tables, 1st "OS/2", 24 names, Macintosh, type 1 string, Academicons\012- data
Hash 1afcbd6a1c454e7b7f0bc58155558b9d
6946cb2f01c31c1e5dfdc6a7e4ad64dc2e4cdca8
107cca07d33ea31bbfe719513aa2b36e8cb8c8c8bcd521148746f652738c7101
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/academicons.ttf?v=1.8.6 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
content-type: font/ttf
content-length: 47500
last-modified: Mon, 23 May 2022 22:20:09 GMT
x-server-cache: true
x-proxy-cache: HIT
accept-ranges: bytes
x-accel-expires: 10800
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/Genericons.ttf
108.167.164.179200 OK 22 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/Genericons.ttf
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 13 tables, 1st "FFTM", 14 names, Macintosh\012- data
Hash 008827208ffc4eeab99bf3cc14fe1e56
e024a5229566e3864856d72b7796a56ca7127252
7cd8dcb9820d7558bcb35bde35d9923a77c8eb9d2a274366261ad55948dfed31
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/Genericons.ttf HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
content-type: font/ttf
content-length: 22188
last-modified: Mon, 23 May 2022 22:20:09 GMT
x-server-cache: true
x-proxy-cache: HIT
accept-ranges: bytes
x-accel-expires: 10800
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.ttf?v=4.2.6
108.167.164.179200 OK 73 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.ttf?v=4.2.6
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, socicon \012- data
Hash ae44de536514ae2658a363d498ada6f3
b7b7ef99f2bda4967cb5e46e17a25edf32b8060d
384deb5c7da1e5bfc336c467e16711308d9c19f5f9f54f8703d15c2eb7cd92e7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.ttf?v=4.2.6 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
content-type: font/ttf
content-length: 73148
last-modified: Mon, 23 May 2022 22:20:09 GMT
x-server-cache: true
x-proxy-cache: HIT
accept-ranges: bytes
x-accel-expires: 10800
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=ext&j=1%3A11.3.1&blog=103177499&post=0&tz=0&srv=menaentrepreneur.org&host=menaentrepreneur.org&ref=&fcp=2464&rand=0.6140023739318503
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&j=1%3A11.3.1&blog=103177499&post=0&tz=0&srv=menaentrepreneur.org&host=menaentrepreneur.org&ref=&fcp=2464&rand=0.6140023739318503
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1%3A11.3.1&blog=103177499&post=0&tz=0&srv=menaentrepreneur.org&host=menaentrepreneur.org&ref=&fcp=2464&rand=0.6140023739318503 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 16:08:24 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/jetpack/css/jetpack.css?ver=11.3.1
108.167.164.179200 OK 39 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/jetpack/css/jetpack.css?ver=11.3.1
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 263f546038b800cc43923c1b04bd1301
e000ec12c6a0242b7dab8528a31b1416fd57a79c
5e0373776a2c5c61b0525c39d4b9fa5af387b3d2550d7b8303c1116ff144a61f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=11.3.1 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 21:20:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2
142.250.74.163200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 27268, version 1.0\012- data
Hash cd83836443d658985c464d7021aa3e83
83a2915021f30c4ed54752b02e0c999e3c56798c
0c5b68b3ae23054815d89c5a2230ad7edf2d4b68732b4463d6be74cacb974055
GET /s/librefranklin/v13/jizDREVItHgc8qDIbSTKq4XkRiUf2zc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://menaentrepreneur.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 20:02:24 GMT
expires: Tue, 12 Sep 2023 20:02:24 GMT
cache-control: public, max-age=31536000
age: 245160
last-modified: Mon, 11 Jul 2022 18:56:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i0.wp.com/menaentrepreneur.org/wp-content/uploads/2016/12/ME-Logo-Feb-24-1.png?w=270&ssl=1
192.0.77.2200 OK 2.6 kB URL HTTP/2 i0.wp.com/menaentrepreneur.org/wp-content/uploads/2016/12/ME-Logo-Feb-24-1.png?w=270&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 29eb5507f2770aba4aa091ff8ae889af
989ae731464e73c491d3bc0a732abda1ce25b2d2
4d7cf21bbf0b8cec8ed90564be8548b18849438813810572778db6c7e77a0972
GET /menaentrepreneur.org/wp-content/uploads/2016/12/ME-Logo-Feb-24-1.png?w=270&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 16:08:24 GMT
content-type: image/webp
content-length: 2572
last-modified: Sun, 12 Jun 2022 05:55:32 GMT
expires: Tue, 11 Jun 2024 17:55:32 GMT
cache-control: public, max-age=63115200
link: <https://menaentrepreneur.org/wp-content/uploads/2016/12/ME-Logo-Feb-24-1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "8123c48c1b013374"
vary: Accept
x-nc: HIT arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.ttf?v=4.7.0
108.167.164.179200 OK 166 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.ttf?v=4.7.0
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 13 tables, 1st "FFTM", 24 names, Macintosh\012- data
Size 166 kB (165548 bytes)
Hash b06871f281fee6b241d60582ae9369b9
13b1eab65a983c7a73bc7997c479d66943f7c6cb
aa58f33f239a0fb02f5c7a6c45c043d7a9ac9a093335806694ecd6d4edc0d6a8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
content-type: font/ttf
content-length: 165548
last-modified: Mon, 23 May 2022 22:20:09 GMT
x-server-cache: true
x-proxy-cache: HIT
accept-ranges: bytes
x-accel-expires: 10800
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
menaentrepreneur.org/wp-content/themes/domino/fonts/icomoon.ttf?a43nr5
108.167.164.179200 OK 1.7 kB URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/fonts/icomoon.ttf?a43nr5
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash 4586b27b31f1e18da99100735b8d934c
b9bac1fedd46f05ae13d1c76f94b750732d6c8cd
594fb64facded1e102468df15c9f96c2d87b06d3c288e81ed12bf7d26378c1df
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/domino/fonts/icomoon.ttf?a43nr5 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/themes/domino/style.css?ver=2.0.20
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 16:08:25 GMT
server: Apache
content-type: font/ttf
content-length: 1732
last-modified: Fri, 18 Mar 2022 22:00:54 GMT
x-server-cache: true
x-proxy-cache: HIT
accept-ranges: bytes
x-accel-expires: 10800
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.ttf?v=4.1.1
108.167.164.179200 OK 73 kB URL HTTP/2 menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.ttf?v=4.1.1
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, socicon \012- data
Hash ae44de536514ae2658a363d498ada6f3
b7b7ef99f2bda4967cb5e46e17a25edf32b8060d
384deb5c7da1e5bfc336c467e16711308d9c19f5f9f54f8703d15c2eb7cd92e7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.ttf?v=4.1.1 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-socicon.css?ver=1653344409
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 16:08:25 GMT
server: Apache
content-type: font/ttf
content-length: 73148
last-modified: Mon, 23 May 2022 22:20:09 GMT
x-server-cache: true
x-proxy-cache: HIT
accept-ranges: bytes
x-accel-expires: 10800
X-Firefox-Spdy: h2
i0.wp.com/menaentrepreneur.org/wp-content/uploads/2016/12/cropped-ME-Logo-New-3.png?fit=32%2C32&ssl=1
192.0.77.2200 OK 1.4 kB URL HTTP/2 i0.wp.com/menaentrepreneur.org/wp-content/uploads/2016/12/cropped-ME-Logo-New-3.png?fit=32%2C32&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a0baafdc45811b548706feb3ff37ce7f
c0dd30c947273e28c3fdff49d00b1bf0047fcba8
19bb4cd3e2ece66b47493390434a518444f2eaf8a360c35e27c053ea2f2422ca
GET /menaentrepreneur.org/wp-content/uploads/2016/12/cropped-ME-Logo-New-3.png?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 16:08:24 GMT
content-type: image/webp
content-length: 1356
last-modified: Sun, 31 Jul 2022 08:59:45 GMT
expires: Tue, 30 Jul 2024 20:59:45 GMT
cache-control: public, max-age=63115200
link: <https://menaentrepreneur.org/wp-content/uploads/2016/12/cropped-ME-Logo-New-3.png>; rel="canonical"
x-content-type-options: nosniff
etag: "7f23417743eb6585"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/menaentrepreneur.org/wp-content/uploads/2016/12/cropped-ME-Logo-New-3.png?fit=192%2C192&ssl=1
192.0.77.2200 OK 16 kB URL HTTP/2 i0.wp.com/menaentrepreneur.org/wp-content/uploads/2016/12/cropped-ME-Logo-New-3.png?fit=192%2C192&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0cc6f140cef02ebbe529ea4092111a22
2f952436384f7df2025fe604eb2fb0b5efd5ff97
80366d9a711a8e6ed3cbb0ef05b8173daa0cf73a8222056450ef95342a235e84
GET /menaentrepreneur.org/wp-content/uploads/2016/12/cropped-ME-Logo-New-3.png?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 16:08:24 GMT
content-type: image/webp
content-length: 16330
last-modified: Thu, 08 Sep 2022 17:04:11 GMT
expires: Sun, 08 Sep 2024 05:04:11 GMT
cache-control: public, max-age=63115200
link: <https://menaentrepreneur.org/wp-content/uploads/2016/12/cropped-ME-Logo-New-3.png>; rel="canonical"
x-content-type-options: nosniff
etag: "7f761c1257b4769f"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0dfd060e0fb8dec42e8f52f8db247b61
d6f33b6390aa9a4b34375d58009977926bc1fff3
17e3d9698e2cd4caf0cbf66b71393b473300fb9a8a4b6f7b97f421e93d54ec44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cfd2db57907a02add07cc8f727a30ca6
f9a6f8af7868c0be0a22fee404e0b07cf737bbaa
d8bac3b77cb2732588815a8bcb3ad6a49e518f04f99bf20513d91ffb30eee947
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3f94c38b92316f91765ceed606f9f4ea
03442fbbe884ceac60c9585a8bbc0b87278523fd
70df317dbe22ae71bcc285fc0ea2185a11822856187a6c235c758df3f63eb75f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0dfd060e0fb8dec42e8f52f8db247b61
d6f33b6390aa9a4b34375d58009977926bc1fff3
17e3d9698e2cd4caf0cbf66b71393b473300fb9a8a4b6f7b97f421e93d54ec44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0dfd060e0fb8dec42e8f52f8db247b61
d6f33b6390aa9a4b34375d58009977926bc1fff3
17e3d9698e2cd4caf0cbf66b71393b473300fb9a8a4b6f7b97f421e93d54ec44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Thu, 15 Sep 2022 14:41:12 GMT
expires: Thu, 15 Sep 2022 16:41:12 GMT
cache-control: public, max-age=7200
age: 5232
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=j96&a=2055692253&t=pageview&_s=2&dl=https%3A%2F%2Fmenaentrepreneur.org%2Fwp-content%2Fuploads%2F2022%2F06%2Fds4_tool___activator__updated_2022.pdf&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20MENAEntrepreneur.org%20-%20Entrepreneur%20Blog%20-%20Business%20Directory&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=&gjid=&cid=148872377.1663258089&tid=UA-57227409-1&_gid=1429095975.1663258089>m=2ou9e0&did=dZGIzZG&gdid=dZGIzZG&z=1444016995
142.250.74.174200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j96&a=2055692253&t=pageview&_s=2&dl=https%3A%2F%2Fmenaentrepreneur.org%2Fwp-content%2Fuploads%2F2022%2F06%2Fds4_tool___activator__updated_2022.pdf&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20MENAEntrepreneur.org%20-%20Entrepreneur%20Blog%20-%20Business%20Directory&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=&gjid=&cid=148872377.1663258089&tid=UA-57227409-1&_gid=1429095975.1663258089>m=2ou9e0&did=dZGIzZG&gdid=dZGIzZG&z=1444016995
IP 142.250.74.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j96&a=2055692253&t=pageview&_s=2&dl=https%3A%2F%2Fmenaentrepreneur.org%2Fwp-content%2Fuploads%2F2022%2F06%2Fds4_tool___activator__updated_2022.pdf&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20MENAEntrepreneur.org%20-%20Entrepreneur%20Blog%20-%20Business%20Directory&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=&gjid=&cid=148872377.1663258089&tid=UA-57227409-1&_gid=1429095975.1663258089>m=2ou9e0&did=dZGIzZG&gdid=dZGIzZG&z=1444016995 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Thu, 15 Sep 2022 09:19:52 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 24512
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j96&a=2055692253&t=pageview&_s=1&dl=https%3A%2F%2Fmenaentrepreneur.org%2Fwp-content%2Fuploads%2F2022%2F06%2Fds4_tool___activator__updated_2022.pdf&dp=%2F404.html%3Fpage%3D%2Fwp-content%2Fuploads%2F2022%2F06%2Fds4_tool___activator__updated_2022.pdf%26from%3D&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20MENAEntrepreneur.org%20-%20Entrepreneur%20Blog%20-%20Business%20Directory&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=965238175&gjid=1336676325&cid=148872377.1663258089&tid=UA-57227409-1&_gid=1429095975.1663258089&_r=1>m=2ou9e0&did=dZGIzZG&gdid=dZGIzZG&z=464570722
142.250.74.174200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&a=2055692253&t=pageview&_s=1&dl=https%3A%2F%2Fmenaentrepreneur.org%2Fwp-content%2Fuploads%2F2022%2F06%2Fds4_tool___activator__updated_2022.pdf&dp=%2F404.html%3Fpage%3D%2Fwp-content%2Fuploads%2F2022%2F06%2Fds4_tool___activator__updated_2022.pdf%26from%3D&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20MENAEntrepreneur.org%20-%20Entrepreneur%20Blog%20-%20Business%20Directory&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=965238175&gjid=1336676325&cid=148872377.1663258089&tid=UA-57227409-1&_gid=1429095975.1663258089&_r=1>m=2ou9e0&did=dZGIzZG&gdid=dZGIzZG&z=464570722
IP 142.250.74.174:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j96&a=2055692253&t=pageview&_s=1&dl=https%3A%2F%2Fmenaentrepreneur.org%2Fwp-content%2Fuploads%2F2022%2F06%2Fds4_tool___activator__updated_2022.pdf&dp=%2F404.html%3Fpage%3D%2Fwp-content%2Fuploads%2F2022%2F06%2Fds4_tool___activator__updated_2022.pdf%26from%3D&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20MENAEntrepreneur.org%20-%20Entrepreneur%20Blog%20-%20Business%20Directory&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=965238175&gjid=1336676325&cid=148872377.1663258089&tid=UA-57227409-1&_gid=1429095975.1663258089&_r=1>m=2ou9e0&did=dZGIzZG&gdid=dZGIzZG&z=464570722 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://menaentrepreneur.org
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://menaentrepreneur.org
date: Thu, 15 Sep 2022 16:08:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cfd2db57907a02add07cc8f727a30ca6
f9a6f8af7868c0be0a22fee404e0b07cf737bbaa
d8bac3b77cb2732588815a8bcb3ad6a49e518f04f99bf20513d91ffb30eee947
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.34200 OK 58 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (2903)
Hash ba640aabcc761f259eec3ddba3a72fa4
213f5582a8be2eb404c5532453190680f2525019
7897f808c8cfec457a698ea44b2016a2db61374eb8da8de8de03033bd55d5b5e
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Thu, 15 Sep 2022 16:08:24 GMT
expires: Thu, 15 Sep 2022 16:08:24 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 13140459871265215813
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 58095
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0dfd060e0fb8dec42e8f52f8db247b61
d6f33b6390aa9a4b34375d58009977926bc1fff3
17e3d9698e2cd4caf0cbf66b71393b473300fb9a8a4b6f7b97f421e93d54ec44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 20620ba615dba1de34528390492c3f53
2ca43d3a828682e10eb7638972b79b7136395e2b
12cf30cf1de58b4bab8af4a5d159b42909c554ae7b34e6f7361d9a49f1e861b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 20620ba615dba1de34528390492c3f53
2ca43d3a828682e10eb7638972b79b7136395e2b
12cf30cf1de58b4bab8af4a5d159b42909c554ae7b34e6f7361d9a49f1e861b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5c5d3d907a3f1200abaf8498135f7196
7bcc003762243409d8d94a0afd8ba7712a08e4fa
96524e2083d0bd0052309077ec068010a30b490d7470bfe432af50765c30d051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a8b2bb270d78a6dddeb5b7fa01bd896c
eee28c4dd10c090f100c6ed383392b67d9fb9200
5c929c1a5e85ed508916eda62cccedb3ef1a5f407468596fa2726c476e2a9340
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6971ad04397ebe0a117d03ae5c1de8c5
5179eab2d14b4c8c52c00fd6bf2953fb98ad5b8f
97a64e5b9bf5e3e347b23e4bbf41aa0fe6ffd379d50b379770f5c7347e6bb248
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=menaentrepreneur.org&callback=_gfp_s_&client=ca-pub-3245870966374120
172.217.21.162200 OK 209 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=menaentrepreneur.org&callback=_gfp_s_&client=ca-pub-3245870966374120
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 9452ab1c8340650ad8e68190438c3670
f148dc23d14ed5910d7b90f21d10e4ba5b605a72
e45b3bc650828e6eba228ab9724a7f99e3ffb13ab65ec0baef90becd721b854a
GET /gampad/cookie.js?domain=menaentrepreneur.org&callback=_gfp_s_&client=ca-pub-3245870966374120 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 15 Sep 2022 16:08:24 GMT
server: cafe
cache-control: private
content-length: 209
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=menaentrepreneur.org
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=menaentrepreneur.org
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=menaentrepreneur.org HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 15 Sep 2022 16:08:25 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=menaentrepreneur.org
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=menaentrepreneur.org
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=menaentrepreneur.org HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 15 Sep 2022 16:08:25 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a8b2bb270d78a6dddeb5b7fa01bd896c
eee28c4dd10c090f100c6ed383392b67d9fb9200
5c929c1a5e85ed508916eda62cccedb3ef1a5f407468596fa2726c476e2a9340
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash edc3fd16211643f33475ab54eac21a38
2971ab3faf279849c6c89c2e557b361b09010a9b
eeea21b2ec81e44dc5caabf4c8be119c12c8566098253f5da2c45d45a517f0dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8ff1c0d8a380ce4a561609526d995bf5
135ecd7e71ea2823d39f8c1efcb2121618ed8167
f7228281af8d6de222aa47b3a78a627f85315244e65a8956fa2c0c7dff1bb7ad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 377139fa706b038c106d663d1c7c402a
7337cfac49077bc4fd74b2e4a405d4391176f585
9aa6fb206804f92cadb70ef6a3cf1b0d0b117be62166923c98b25c8a9c66bb3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Thu, 15 Sep 2022 16:08:25 GMT
expires: Thu, 15 Sep 2022 16:08:25 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 12:27:00 GMT
expires: Wed, 13 Sep 2023 12:27:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 186085
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ed97a4b82680caefc4ffdebf786e12fc
a638a68f346844709bac57a92bf3d2c28043165e
b81ed44963f5d8b54c62e7fe18db301d3c8eeaf8fbbfb099270562156e12fdc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 511 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 6bab17966d685bc06e55be31c6308bb0
721bca6bf7cb05d2f99ade78800690a8ce694dd8
975f359609dfd2576086ec1f073ae67b384355b4e5c595f90f5219d5f5262055
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Thu, 15 Sep 2022 16:08:25 GMT
date: Thu, 15 Sep 2022 16:08:25 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-bsW4xhimcd9lImCEbxTz6g' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 511
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 39aa25d8411997d98f9093c19b0ccbca
3cb31e92d707cd561897042ed1a09de5a79e7108
f1b7b71241b580ec34281f5addc49d716eac9ecc46a3217e646c76e6dc8d4578
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 16:08:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.wp.com/e-202237.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202237.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 16:08:23 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Sun, 03 Sep 2023 22:56:03 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Playfair+Display%3A400%2C700&display=swap&ver=6.0.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Playfair+Display%3A400%2C700&display=swap&ver=6.0.2
IP 142.250.74.10:0
GET /css?family=Playfair+Display%3A400%2C700&display=swap&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Sep 2022 16:08:23 GMT
date: Thu, 15 Sep 2022 16:08:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-includes/css/dashicons.min.css?ver=6.0.2
108.167.164.179200 OK 0 B URL HTTP/2 menaentrepreneur.org/wp-includes/css/dashicons.min.css?ver=6.0.2
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=6.0.2 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 11:21:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/themes/domino/js/flickity.pkgd.min.js?ver=2.0.20
108.167.164.179200 OK 0 B URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/js/flickity.pkgd.min.js?ver=2.0.20
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/domino/js/flickity.pkgd.min.js?ver=2.0.20 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 22:00:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/themes/domino/style.css?ver=2.0.20
108.167.164.179200 OK 0 B URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/style.css?ver=2.0.20
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/domino/style.css?ver=2.0.20 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 22:00:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-type: text/css
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Libre+Franklin%3Aregular%2C700%2C700i%2Citalic%7CRoboto+Condensed&display=swap&ver=6.0.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Libre+Franklin%3Aregular%2C700%2C700i%2Citalic%7CRoboto+Condensed&display=swap&ver=6.0.2
IP 142.250.74.10:0
GET /css?family=Libre+Franklin%3Aregular%2C700%2C700i%2Citalic%7CRoboto+Condensed&display=swap&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Sep 2022 16:08:23 GMT
date: Thu, 15 Sep 2022 16:08:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
menaentrepreneur.org/wp-content/themes/domino/js/jquery.carouFredSel-6.2.1-packed.js?ver=2.0.20
108.167.164.179200 OK 0 B URL HTTP/2 menaentrepreneur.org/wp-content/themes/domino/js/jquery.carouFredSel-6.2.1-packed.js?ver=2.0.20
IP 108.167.164.179:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/domino/js/jquery.carouFredSel-6.2.1-packed.js?ver=2.0.20 HTTP/1.1
Host: menaentrepreneur.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://menaentrepreneur.org/wp-content/uploads/2022/06/ds4_tool___activator__updated_2022.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 22:00:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-type: application/javascript
date: Thu, 15 Sep 2022 16:08:24 GMT
server: Apache
X-Firefox-Spdy: h2