r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11380
Expires: Mon, 28 Nov 2022 01:31:52 GMT
Date: Sun, 27 Nov 2022 22:22:12 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4013
Cache-Control: max-age=134154
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:22:12 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 11:38:06 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10190
Expires: Mon, 28 Nov 2022 01:12:02 GMT
Date: Sun, 27 Nov 2022 22:22:12 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sTwgVhSdCSMccsN4ZY0JpmkcUuH7v4FykX1fKPzQQxs6Ji7H01Y50tTc+4V0wlJH3YyBQxMaZPk=
x-amz-request-id: BR61ZHX47Q5V27TB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 21:44:47 GMT
age: 2245
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 22:19:26 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 166
alt-svc: clear
X-Firefox-Spdy: h2
alwadi-oman.com/
145.239.140.147301 Moved Permanently 0 B IP 145.239.140.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 27 Nov 2022 22:22:12 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
X-Redirect-By: WordPress
Location: http://alwadi-oman.com/en/
X-Powered-By: PHP/7.2.34, PleskLin
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:22:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 22:08:54 GMT
cache-control: public,max-age=3600
age: 799
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
alwadi-oman.com/en/
145.239.140.147200 OK 68 kB IP 145.239.140.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (35482), with CRLF, CR, LF line terminators
Hash 739b9b3e84670d901a597aa846b06edc
34f520ca8606da565647b69b2e8e6046f80e8197
182d1070ff916d2a687ff932b4cf82a69debcf6fdf31c5a3e9a4ed44ae103cde
Analyzer Verdict Alert fortinet Malware
GET /en/ HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Link: <http://alwadi-oman.com/en/wp-json/>; rel="https://api.w.org/", <http://alwadi-oman.com/en/>; rel=shortlink
X-Powered-By: PHP/7.2.34, PleskLin
alwadi-oman.com/wp-includes/css/dist/block-library/style.min.css?ver=5.1.15
145.239.140.147200 OK 25 kB URL HTTP/1.1 alwadi-oman.com/wp-includes/css/dist/block-library/style.min.css?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with very long lines (25245), with no line terminators
Hash d0b8525a9eff4173fd149a06f341e531
35013c4712d463aa5020f33d3234c4e90f700515
94f80c87390a84a3761860b1ce0764da77bb81d6f11cb3d059339148589aaf5c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: text/css
Content-Length: 25245
Last-Modified: Thu, 15 Apr 2021 03:51:45 GMT
Connection: keep-alive
ETag: "6077b851-629d"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1
145.239.140.147200 OK 1.7 kB URL HTTP/1.1 alwadi-oman.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1
IP 145.239.140.147:0
Hash 5ad1cfa3f5175f627385651790ed0bbd
7a06ac744a748ce4c315c798614d6d0068596cc4
3ad2fcb328295f1199d593adaba909f3eea790f695554ac3c1da7aa009fc0e0d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: text/css
Content-Length: 1685
Last-Modified: Sun, 31 Mar 2019 16:03:42 GMT
Connection: keep-alive
ETag: "5ca0e4de-695"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/plugins/translatepress-multilingual/assets/css/trp-language-switcher.css?ver=1.4.5
145.239.140.147200 OK 2.6 kB URL HTTP/1.1 alwadi-oman.com/wp-content/plugins/translatepress-multilingual/assets/css/trp-language-switcher.css?ver=1.4.5
IP 145.239.140.147:0
File type ASCII text, with CRLF line terminators
Hash 926a2380bd5d788f52bc777649d73e7c
1ddc182fee59edae9c86e9b4402993277686046e
77ee86b74c4488faf861d0a7dc3e3d184252955277c5b0e4ea0a2fb13af13729
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/translatepress-multilingual/assets/css/trp-language-switcher.css?ver=1.4.5 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: text/css
Content-Length: 2632
Last-Modified: Sun, 28 Apr 2019 08:57:50 GMT
Connection: keep-alive
ETag: "5cc56b0e-a48"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/viewport-buggyfill.css?ver=5.1.15
145.239.140.147200 OK 183 B URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/viewport-buggyfill.css?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with CRLF line terminators
Hash 92c157bb419383d137cdae608b8c0d47
3ec6bd19358147efc5b86943a77a4395ebb3ec07
adaa61f3dfeace77f5752fa2b7fa2347889f26381e52b43d3543f53415b3b359
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/viewport-buggyfill.css?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: text/css
Content-Length: 183
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
ETag: "b7-58565dff25dc0"
Accept-Ranges: bytes
X-Powered-By: PleskLin
alwadi-oman.com/wp-includes/js/wp-emoji-release.min.js?ver=5.1.15
145.239.140.147200 OK 12 kB URL HTTP/1.1 alwadi-oman.com/wp-includes/js/wp-emoji-release.min.js?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with very long lines (9071)
Hash 33479c6b333bb34fd771bf50df1fefc3
4869e92709eee1d1a42a697a80879e303aea7572
d9160bf5ee2c9435a62c8b1d991b7f419417cab5d5a37eefcee79767a292b4b7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 11951
Last-Modified: Thu, 15 Apr 2021 03:51:45 GMT
Connection: keep-alive
ETag: "6077b851-2eaf"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/magnific-popup.css?ver=5.1.15
145.239.140.147200 OK 7.9 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/magnific-popup.css?ver=5.1.15
IP 145.239.140.147:0
Hash 2e6f8916ce7006edfb27d2edcb9ad961
09d50575889a30c27906602a4cc2bfb66e2a58f3
c5aeeea13225abef66a61667cc1f7e742cf3f0e9d84990e922284716857d0c4f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/magnific-popup.css?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: text/css
Content-Length: 7899
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-1edb"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/framework/css/style.css?ver=5.1.15
145.239.140.147200 OK 226 B URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/framework/css/style.css?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with CRLF line terminators
Hash 613a5cc4f935a09e880c3b9516203771
17642b2f2d54d1b5fc549c4aab8cd9972540622a
179ab114da6ef05feb82efbc27657d4998a416a5d53d1a484d6e85ff67449bab
GET /wp-content/themes/industrial/framework/css/style.css?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: text/css
Content-Length: 226
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
ETag: "e2-58565dfedfca8"
Accept-Ranges: bytes
X-Powered-By: PleskLin
alwadi-oman.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
145.239.140.147200 OK 10 kB URL HTTP/1.1 alwadi-oman.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 145.239.140.147:0
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 10056
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
Connection: keep-alive
ETag: "573eaa90-2748"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
145.239.140.147200 OK 97 kB URL HTTP/1.1 alwadi-oman.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 145.239.140.147:0
File type ASCII text, with very long lines (31997)
Hash 49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 96873
Last-Modified: Thu, 05 Sep 2019 04:21:05 GMT
Connection: keep-alive
ETag: "5d708d31-17a69"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/plugins/bold-page-builder/script_fe.js?ver=1
145.239.140.147200 OK 1.5 kB URL HTTP/1.1 alwadi-oman.com/wp-content/plugins/bold-page-builder/script_fe.js?ver=1
IP 145.239.140.147:0
File type ASCII text, with CRLF line terminators
Hash 64e162bfa1349e3af675c362d13a434d
cf8f729189bf60aa78a4343156af15b17ca95376
e9a06715f6f1880744b7f342c069c20b7e1f4748353661fe258a90e36cf6b03e
GET /wp-content/plugins/bold-page-builder/script_fe.js?ver=1 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 1515
Last-Modified: Tue, 23 Apr 2019 10:25:32 GMT
Connection: keep-alive
ETag: "5cbee81c-5eb"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/plugins/industrial/bt_elements.js?ver=5.1.15
145.239.140.147200 OK 9.1 kB URL HTTP/1.1 alwadi-oman.com/wp-content/plugins/industrial/bt_elements.js?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with CRLF line terminators
Hash efca988b6b60d2d447ccd75a2daaea31
22c54f769d9492b190e8a524df3612ccf9a65dbb
f1f937bbb91682f1852d0f434c822583bd12f4f98519ca5e111b99a1cd551b07
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/industrial/bt_elements.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 9105
Last-Modified: Sun, 31 Mar 2019 16:03:42 GMT
Connection: keep-alive
ETag: "5ca0e4de-2391"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/plugins/bt_cost_calculator/jquery.dd.js?ver=5.1.15
145.239.140.147200 OK 52 kB URL HTTP/1.1 alwadi-oman.com/wp-content/plugins/bt_cost_calculator/jquery.dd.js?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with very long lines (440), with CRLF line terminators
Hash 62251c88707c7ccf8fb682db0ba31383
dedbb07e3a5780204f9d7a159536aa27ade70b32
9f4d8aaa0a92c754808d27ba2c57565c7a1161c5b6873f5693619030c865ade1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/bt_cost_calculator/jquery.dd.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 51627
Last-Modified: Sun, 31 Mar 2019 16:03:42 GMT
Connection: keep-alive
ETag: "5ca0e4de-c9ab"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/framework/js/modernizr.custom.js?ver=5.1.15
145.239.140.147200 OK 15 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/framework/js/modernizr.custom.js?ver=5.1.15
IP 145.239.140.147:0
File type HTML document, ASCII text, with very long lines (14590), with no line terminators
Hash c8a2e5e1ae1e27d222669fd035b2c0c1
d5724a29964e65637f955599234a5af58aa02765
a3e6fe556c9ff8c11c03bf9ed11305dc96b9d094696dd7de4f864ae5f9e664ca
GET /wp-content/themes/industrial/framework/js/modernizr.custom.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 14590
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-38fe"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/plugins/translatepress-multilingual/assets/js/trp-frontend-compatibility.js?ver=1.4.5
145.239.140.147200 OK 793 B URL HTTP/1.1 alwadi-oman.com/wp-content/plugins/translatepress-multilingual/assets/js/trp-frontend-compatibility.js?ver=1.4.5
IP 145.239.140.147:0
File type ASCII text, with CRLF line terminators
Hash 0f90fae5aea0a01fed49fca88dabd502
be68fb110b63811898273ce727584bb77e6bdb0e
bdc9488829099e550e57a8d8c6953967198a412f222b395ed149dda17198a9d7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/translatepress-multilingual/assets/js/trp-frontend-compatibility.js?ver=1.4.5 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 793
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sun, 28 Apr 2019 08:57:50 GMT
ETag: "319-587935cd13820"
Accept-Ranges: bytes
X-Powered-By: PleskLin
alwadi-oman.com/wp-includes/js/comment-reply.min.js?ver=5.1.15
145.239.140.147200 OK 2.2 kB URL HTTP/1.1 alwadi-oman.com/wp-includes/js/comment-reply.min.js?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with very long lines (2160), with no line terminators
Hash 9a4179bd53e9fbc78f27855cfcc1c29c
2fcfd1cb9da823e8a4f260a42c616473580f1c1c
aeb40c559d97e7bbb79841388a3b9a371c1d23ad07f69499ffd0f4625c35ec61
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/comment-reply.min.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 2160
Last-Modified: Thu, 15 Apr 2021 03:51:44 GMT
Connection: keep-alive
ETag: "6077b850-870"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.5.7
145.239.140.147200 OK 2.7 kB URL HTTP/1.1 alwadi-oman.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.5.7
IP 145.239.140.147:0
File type HTML document, ASCII text, with very long lines (2652), with no line terminators
Hash 836196ea33182b6c18884e9fca03f2ee
cc3aa5e6847d8c1e1aaa5eb6eb07ec4382caf4ec
2ab24792c49dc9eaec5d569d532211e24c93242074352e131d627d3169635ae6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.5.7 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 2652
Last-Modified: Mon, 01 Apr 2019 06:50:06 GMT
Connection: keep-alive
ETag: "5ca1b49e-a5c"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
145.239.140.147200 OK 9.6 kB URL HTTP/1.1 alwadi-oman.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 145.239.140.147:0
File type ASCII text, with very long lines (9172)
Hash 81b2be18696c4dfe620f7b6d0d75a566
0c3cd7bdf58a65b07e17be39cfe4e386571bb4bd
120aaf6681ca6d34a40c559779f0a0038582a79fce1b868ff901c94d27c89c72
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 9566
Last-Modified: Mon, 01 Apr 2019 06:50:06 GMT
Connection: keep-alive
ETag: "5ca1b49e-255e"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1
145.239.140.147200 OK 14 kB URL HTTP/1.1 alwadi-oman.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1
IP 145.239.140.147:0
Hash 1534f06aa2b1b721a45372f8238e2461
86f7e7b926e1a88209d171b56dadbccc2c96f578
b7e17926b30342edecee8b3a93029ac51462e2b479277d8e077ba57173eb1900
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 14440
Last-Modified: Sun, 31 Mar 2019 16:03:42 GMT
Connection: keep-alive
ETag: "5ca0e4de-3868"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
145.239.140.147200 OK 1.8 kB URL HTTP/1.1 alwadi-oman.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 145.239.140.147:0
File type ASCII text, with very long lines (1680)
Hash 943f6eb962c25bd965e0f0e5a284fcd0
b050a98ebaef01d7597bf8c1acb995c0ef3bcbd9
50de09b0bb8d0ac656aa9b3a1e4ef58a3f2d1abd734cad68b0e12191e9d215ea
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 1846
Last-Modified: Mon, 01 Apr 2019 06:50:06 GMT
Connection: keep-alive
ETag: "5ca1b49e-736"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.5.7
145.239.140.147200 OK 1.4 kB URL HTTP/1.1 alwadi-oman.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.5.7
IP 145.239.140.147:0
File type ASCII text, with very long lines (1402), with no line terminators
Hash a5a1bfcbe64e5d92a029110590b6cb5d
d6a7dc6fb84a16c5de4878b8d594ddbc924755f7
0a8a1c16ef3ef056a530105e55b0d8d9aec811d68e2b66bf76beba05d263e883
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.5.7 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 1402
Last-Modified: Mon, 01 Apr 2019 06:50:06 GMT
Connection: keep-alive
ETag: "5ca1b49e-57a"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.5.7
145.239.140.147200 OK 2.6 kB URL HTTP/1.1 alwadi-oman.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.5.7
IP 145.239.140.147:0
File type ASCII text, with very long lines (2568), with no line terminators
Hash 8939093b911fec2160314e95e5265f4e
b8fdc9e9662352c824c73013136534aec45ff54b
8fad4915319845c1ac13c15ccc2163a680d4c34c61c0f9b6a144718f77cd2b5d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.5.7 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 2568
Last-Modified: Mon, 01 Apr 2019 06:50:06 GMT
Connection: keep-alive
ETag: "5ca1b49e-a08"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/framework/js/viewport-units-buggyfill.js?ver=5.1.15
145.239.140.147200 OK 14 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/framework/js/viewport-units-buggyfill.js?ver=5.1.15
IP 145.239.140.147:0
Hash 8b27d20da76dac08845f16b26b432092
6a3e49258882cb81d56d55602edb72d0cbc37ebe
4a97a593f90539370c1d238e3bb9c3d667bbbf96b1a742b7308d97e4c825d77a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/framework/js/viewport-units-buggyfill.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 13466
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-349a"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/framework/js/jquery.magnific-popup.min.js?ver=5.1.15
145.239.140.147200 OK 21 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/framework/js/jquery.magnific-popup.min.js?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with very long lines (21014)
Hash be3333626c57af03599abcb59b325e09
3824067348f6485d6b07d3a43660804e3731b21a
ecbef0f33e8ccedd2c605816e052cfff778abcc0e30a80b874c097a5fddd24fc
GET /wp-content/themes/industrial/framework/js/jquery.magnific-popup.min.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 21143
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-5297"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/framework/js/slick.min.js?ver=5.1.15
145.239.140.147200 OK 40 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/framework/js/slick.min.js?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with very long lines (32012)
Hash d928bf2839f136b12210558c54bc1690
a9c81710a9b592cb99e8d6bf0d941572f2ff6713
4fc7a9c6dd1051ab261a550db0b16147da4236dedfb2efc6311ebff48a045350
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/framework/js/slick.min.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 40461
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-9e0d"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/framework/js/iscroll.js?ver=5.1.15
145.239.140.147200 OK 50 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/framework/js/iscroll.js?ver=5.1.15
IP 145.239.140.147:0
Hash ca9af4b78b0290f09594e9e4d02a7aaa
ce6209411b4c76c647b8fb87bc711ef0ad470bbc
f7140a276af75852364eef880f13473fd4791455ba2cd650b7446e6562742a9d
GET /wp-content/themes/industrial/framework/js/iscroll.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 50086
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-c3a6"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/framework/js/fancySelect.js?ver=5.1.15
145.239.140.147200 OK 6.8 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/framework/js/fancySelect.js?ver=5.1.15
IP 145.239.140.147:0
Hash 5ca5e3af123f52fce19884fe6dd28528
795a9a793df21525ca2d2d1b50ec0194816a8ebb
e42067ec1ba06de680c567c3cab0813ff2aed7bc838e7fcc3632e9771f47922d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/framework/js/fancySelect.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 6777
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-1a79"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/framework/js/header.misc.js?ver=5.1.15
145.239.140.147200 OK 14 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/framework/js/header.misc.js?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with very long lines (301), with CRLF line terminators
Hash 8f959e14ba38099dd5fc9e1b41bab0b4
f9bf545e55982e486260d923990282080a828228
05b54bd9da391d3cb42eaa52defae10115cc0698f59014523dab19c9fdeb3e17
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/framework/js/header.misc.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 13583
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-350f"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/framework/js/viewport-units-buggyfill.hacks.js?ver=5.1.15
145.239.140.147200 OK 3.4 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/framework/js/viewport-units-buggyfill.hacks.js?ver=5.1.15
IP 145.239.140.147:0
Hash 8730ae4041b09c4e68f4cd4e9ae7d9b4
4134e2615e341580fd6aa5fdb107540493a1f627
3a92c14ed4386b2f986da6a61c6aab74e1b52e2f31cc57897c7707438c03ca35
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/framework/js/viewport-units-buggyfill.hacks.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 3441
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-d71"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/framework/js/misc.js?ver=5.1.15
145.239.140.147200 OK 18 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/framework/js/misc.js?ver=5.1.15
IP 145.239.140.147:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 93d99bb7fe169ae7e0135e5dc0eef95e
f1ca3f1af9af8e79de79c8629436064706796beb
8486de9334d7c49f61fa815ddd32079572bda0c63f782fb9b1e635ff50a7936a
GET /wp-content/themes/industrial/framework/js/misc.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 18427
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-47fb"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6431
Cache-Control: max-age=131510
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:22:13 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:54:03 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:22:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alwadi-oman.com/wp-content/themes/industrial/framework/js/bt_parallax.js?ver=5.1.15
145.239.140.147200 OK 1.6 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/framework/js/bt_parallax.js?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with CRLF line terminators
Hash 3e9da580ce54cfeb7164fd94f16a8510
b3c27827072fa143123bb8b87abd4092cb8aed18
dea98215d465d05f5cfa7cd7c0e9eddfe80aba950f3ace0db9d5d06ee590dddf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/framework/js/bt_parallax.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 1630
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-65e"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/framework/js/sliders.js?ver=5.1.15
145.239.140.147200 OK 7.8 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/framework/js/sliders.js?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with CRLF line terminators
Hash 7fbf809f3c6bf9efaddfdeed9d5c2133
c3210805e0f4fa35937800b0179575f1d5a0a4a4
c9215bb05b8cbbd7259401e4ca1f8bd0cd7792d71310515295d983b8935f2ab6
GET /wp-content/themes/industrial/framework/js/sliders.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 7759
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-1e4f"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/framework/js/dir.hover.js?ver=5.1.15
145.239.140.147200 OK 6.3 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/framework/js/dir.hover.js?ver=5.1.15
IP 145.239.140.147:0
Hash 04f3d5547f7e7cec24b3040ac501ad77
c13e23a4dddd08a96c5769b6d8f1af154b65b030
93af0dcf9e60eba36e63c13bd91848c9c803ab3930408bd2721592414488973f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/framework/js/dir.hover.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 6311
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-18a7"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/plugins/industrial/bt_gmap.js?ver=5.1.15
145.239.140.147200 OK 1.6 kB URL HTTP/1.1 alwadi-oman.com/wp-content/plugins/industrial/bt_gmap.js?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with CRLF line terminators
Hash d207f8d73a0062c80637989ef524f72b
9bea4441e658d91b9abeaede5dc955427dd09655
af0fd8ad21bbbf84aefb6ae146a0252ade077ec8e534d52871ae8f63d6bd66fc
GET /wp-content/plugins/industrial/bt_gmap.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 1634
Last-Modified: Sun, 31 Mar 2019 16:03:42 GMT
Connection: keep-alive
ETag: "5ca0e4de-662"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-includes/js/wp-embed.min.js?ver=5.1.15
145.239.140.147200 OK 1.4 kB URL HTTP/1.1 alwadi-oman.com/wp-includes/js/wp-embed.min.js?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with very long lines (1391), with no line terminators
Hash 570ae0f3c201604926ea599d3d1f6c04
2c29243a73660964d4712b969d2a15e27777bc14
5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: application/javascript
Content-Length: 1391
Last-Modified: Thu, 15 Apr 2021 03:51:45 GMT
Connection: keep-alive
ETag: "6077b851-56f"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/style.css?ver=5.1.15
145.239.140.147200 OK 554 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/style.css?ver=5.1.15
IP 145.239.140.147:0
File type ASCII text, with very long lines (1183)
Size 554 kB (553491 bytes)
Hash 0138e15387b1698a6cf576debb8feecf
30920a0070d67751929a9af536b6bc14003d2b1a
487dadeec212030a390d497d4c4bd48ff296fbba01f157a6857a8abe82b5c565
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/style.css?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: text/css
Content-Length: 553491
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-87213"
X-Powered-By: PleskLin
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35aa5f507000970adf3f6416b42f49a7
88b18eda96382535b33c747ed28a6d9a2e8f7f4f
2c0fcfe8c90a0d61fe3ea0be1fa9f0c6a7802be6eb12883f6f3918368bb85b62
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C0FCFE8C90A0D61FE3EA0BE1FA9F0C6A7802BE6EB12883F6F3918368BB85B62"
Last-Modified: Sun, 27 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 28 Nov 2022 04:22:13 GMT
Date: Sun, 27 Nov 2022 22:22:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4f3bcebb98a5362ea09a4e5aac56d842
a23b287156e2b90e3e98d94fb69775d04ac2cef6
59f540b42e89893cd41c1bc619ba13aa4f5d31fe1e8eb266e3b5a6a495beefed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59F540B42E89893CD41C1BC619BA13AA4F5D31FE1E8EB266E3B5A6A495BEEFED"
Last-Modified: Sat, 26 Nov 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 28 Nov 2022 04:22:13 GMT
Date: Sun, 27 Nov 2022 22:22:13 GMT
Connection: keep-alive
push.services.mozilla.com/
44.228.207.167101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.228.207.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Vi3SRlpZUa9IUoCQApbiAQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kxj5nn6E9tbudD2oc5byVjs35h4=
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:22:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?key=AIzaSyDIpD-VFIS3i5DIi_vc_hojyj5_eScTMw4&ver=5.1.15
142.250.74.170200 OK 53 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyDIpD-VFIS3i5DIi_vc_hojyj5_eScTMw4&ver=5.1.15
IP 142.250.74.170:0
File type ASCII text, with very long lines (2453)
Hash ec9afac553258010b4eb195fbd615829
7d53546a016535834c917354de53111d5f2a5695
121d812bbfb17ba8a2980a5db5881042f88d648aec844dd1bef4f136d73c392a
GET /maps/api/js?key=AIzaSyDIpD-VFIS3i5DIi_vc_hojyj5_eScTMw4&ver=5.1.15 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alwadi-oman.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 27 Nov 2022 22:22:13 GMT
expires: Sun, 27 Nov 2022 22:52:13 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53355
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=145
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
alwadi-oman.com/wp-content/uploads/2019/04/5.png
145.239.140.147200 OK 10 kB URL HTTP/2 alwadi-oman.com/wp-content/uploads/2019/04/5.png
IP 145.239.140.147:0
File type PNG image data, 500 x 380, 8-bit/color RGBA, non-interlaced\012- data
Hash 6759b623a330dcf054e627662d0d2645
8fb28c3da81656ebc188afb7b70e7c1934ec79e3
165e176e9cfad6b21c3bb176e8c2c9ad66cab2d31d26ea24a3d323addf5dcf72
GET /wp-content/uploads/2019/04/5.png HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alwadi-oman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:22:13 GMT
content-type: image/png
content-length: 10273
last-modified: Mon, 01 Apr 2019 08:53:22 GMT
etag: "5ca1d182-2821"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
alwadi-oman.com/wp-content/themes/industrial/print.css?ver=5.1.15
145.239.140.147200 OK 312 B URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/print.css?ver=5.1.15
IP 145.239.140.147:0
Hash af90ad686728e2c5ad716acaae319cd6
b8b12ad69667f78ac9bfdfcf180932678fd42331
c05950e2e1a9c1b641b2ea252c29548ec0ab1cead4965e195fe4ebbfeffe2905
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/print.css?ver=5.1.15 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:13 GMT
Content-Type: text/css
Content-Length: 312
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
ETag: "138-58565dff25dc0"
Accept-Ranges: bytes
X-Powered-By: PleskLin
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:22:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alwadi-oman.com/wp-content/uploads/2019/04/Earth-moving-trucks-Al-Wadi-Oman-960x640.jpg
145.239.140.147200 OK 114 kB URL HTTP/2 alwadi-oman.com/wp-content/uploads/2019/04/Earth-moving-trucks-Al-Wadi-Oman-960x640.jpg
IP 145.239.140.147:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 960x640, components 3\012- data
Size 114 kB (114310 bytes)
Hash ca27cf56a7cb4d921534eb0dfc9f6929
245f7e87d26fa62bbd6ff2d4ffe590bba1c61e92
7592a172fd53171b239c8bf051261f1221355e77cfe6957f9346d99afa5bd767
GET /wp-content/uploads/2019/04/Earth-moving-trucks-Al-Wadi-Oman-960x640.jpg HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alwadi-oman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:22:13 GMT
content-type: image/jpeg
content-length: 114310
last-modified: Tue, 23 Apr 2019 09:41:45 GMT
etag: "5cbeddd9-1be86"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
alwadi-oman.com/wp-content/uploads/2019/04/quarry-machinery-in-Oman-960x640.jpg
145.239.140.147200 OK 133 kB URL HTTP/2 alwadi-oman.com/wp-content/uploads/2019/04/quarry-machinery-in-Oman-960x640.jpg
IP 145.239.140.147:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 960x640, components 3\012- data
Size 133 kB (133171 bytes)
Hash 849051e32e0823d6e7d83285b9099f33
184b313817f0ebe89a2e860dce641308ebc7b330
4b289071070289499e0fe945c6c904f0ca547f749bb87bdaf0fb068ecb351a91
GET /wp-content/uploads/2019/04/quarry-machinery-in-Oman-960x640.jpg HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alwadi-oman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:22:13 GMT
content-type: image/jpeg
content-length: 133171
last-modified: Tue, 23 Apr 2019 09:52:24 GMT
etag: "5cbee058-20833"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://alwadi-oman.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 355686
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://alwadi-oman.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:18 GMT
expires: Fri, 24 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 279716
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:22:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alwadi-oman.com/wp-content/themes/industrial/fonts/fontawesome-webfont.woff2?v=4.3.0
145.239.140.147200 OK 77 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 145.239.140.147:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://alwadi-oman.com/wp-content/themes/industrial/style.css?ver=5.1.15
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:14 GMT
Content-Type: font/woff2
Content-Length: 77160
Last-Modified: Sun, 31 Mar 2019 15:51:20 GMT
Connection: keep-alive
ETag: "5ca0e1f8-12d68"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/fonts/Transportation.ttf?uo8kwk
145.239.140.147200 OK 33 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/fonts/Transportation.ttf?uo8kwk
IP 145.239.140.147:0
File type TrueType Font data, 13 tables, 1st "FFTM", 14 names, Macintosh\012- data
Hash 72afb7a7d32375821865a4909b9804e7
41203f31ab5db32cbc45107d5d8ea380f9f4f695
1d7011b6dd0ac3604aad20d035a3378545f176c11a5dd362b0e889eb15e8c722
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/fonts/Transportation.ttf?uo8kwk HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/wp-content/themes/industrial/style.css?ver=5.1.15
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:14 GMT
Content-Type: application/font-sfnt
Content-Length: 32648
Last-Modified: Sun, 31 Mar 2019 15:51:19 GMT
Connection: keep-alive
ETag: "5ca0e1f7-7f88"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/fonts/Construction.ttf?uo8kwk
145.239.140.147200 OK 125 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/fonts/Construction.ttf?uo8kwk
IP 145.239.140.147:0
File type TrueType Font data, 13 tables, 1st "FFTM", 14 names, Macintosh\012- data
Size 125 kB (124888 bytes)
Hash d47c90564a36010d01fe64e3d6d357eb
04945e771c341668b5336240a01a859dd4ef117e
4c7c6eb245c29c28086844cb81f594542a6a2608cda1810f0e6185140a65ade3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/fonts/Construction.ttf?uo8kwk HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/wp-content/themes/industrial/style.css?ver=5.1.15
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:14 GMT
Content-Type: application/font-sfnt
Content-Length: 124888
Last-Modified: Sun, 31 Mar 2019 15:51:20 GMT
Connection: keep-alive
ETag: "5ca0e1f8-1e7d8"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/fonts/Productivity.ttf?uo8kwk
145.239.140.147200 OK 18 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/fonts/Productivity.ttf?uo8kwk
IP 145.239.140.147:0
File type TrueType Font data, 13 tables, 1st "FFTM", 14 names, Macintosh\012- data
Hash 80e46cbc26ab9a3f771dab8ba2cee822
34604fbcaf784b941a05569d96401c9900fcc129
6619ea4a68576da32ec47db784a14b31f0d4b32118d79798dd185695c1f4d17e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/fonts/Productivity.ttf?uo8kwk HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/wp-content/themes/industrial/style.css?ver=5.1.15
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:14 GMT
Content-Type: application/font-sfnt
Content-Length: 18176
Last-Modified: Sun, 31 Mar 2019 15:51:19 GMT
Connection: keep-alive
ETag: "5ca0e1f7-4700"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/fonts/Science.ttf?uo8kwk
145.239.140.147200 OK 43 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/fonts/Science.ttf?uo8kwk
IP 145.239.140.147:0
File type TrueType Font data, 13 tables, 1st "FFTM", 14 names, Macintosh\012- data
Hash 6e98cf1344d2bca41962d2cb555a3ec6
eadfc8b1b0508348b8e83468462333c76106d40b
5b96745c2e6b040e367f77842a3c10d70cce662ebeb6a4af88087517ef50e4ce
GET /wp-content/themes/industrial/fonts/Science.ttf?uo8kwk HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/wp-content/themes/industrial/style.css?ver=5.1.15
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:14 GMT
Content-Type: application/font-sfnt
Content-Length: 43080
Last-Modified: Sun, 31 Mar 2019 15:51:20 GMT
Connection: keep-alive
ETag: "5ca0e1f8-a848"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/fonts/CraftEssential.ttf?uo8kwk
145.239.140.147200 OK 214 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/fonts/CraftEssential.ttf?uo8kwk
IP 145.239.140.147:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Craft-essential\012- data
Size 214 kB (213756 bytes)
Hash 8059acd17dc4d02593ab5bfeece7ab1a
dcd35ad2c42b642d795b58439de84afdf36e90bc
0a7062f9894c0d7bcd4e0358cc75f943313b05a403db5a3176f2a4bdf4308617
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/fonts/CraftEssential.ttf?uo8kwk HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/wp-content/themes/industrial/style.css?ver=5.1.15
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:14 GMT
Content-Type: application/font-sfnt
Content-Length: 213756
Last-Modified: Sun, 31 Mar 2019 15:51:20 GMT
Connection: keep-alive
ETag: "5ca0e1f8-342fc"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/themes/industrial/framework/js/enquire.min.js
145.239.140.147200 OK 2.3 kB URL HTTP/1.1 alwadi-oman.com/wp-content/themes/industrial/framework/js/enquire.min.js
IP 145.239.140.147:0
File type ASCII text, with very long lines (2045), with CRLF line terminators
Hash a87545e1e18467b6426bca034bcb1d5a
999922a909e66c3a0c7b82cef8c94cf19a76ace8
fab7196db7d099d99adabfff2182ffbd304cdcfb44f5dc5b8d29b1b32b675c48
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/industrial/framework/js/enquire.min.js HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:14 GMT
Content-Type: application/javascript
Content-Length: 2260
Last-Modified: Sun, 31 Mar 2019 15:51:18 GMT
Connection: keep-alive
ETag: "5ca0e1f6-8d4"
X-Powered-By: PleskLin
Accept-Ranges: bytes
alwadi-oman.com/wp-content/uploads/2019/05/Gabbro-mountain-quarry-plant-Oman.jpeg
145.239.140.147200 OK 1.7 MB URL HTTP/2 alwadi-oman.com/wp-content/uploads/2019/05/Gabbro-mountain-quarry-plant-Oman.jpeg
IP 145.239.140.147:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13], baseline, precision 8, 2394x2141, components 3\012- data
Size 1.7 MB (1671073 bytes)
Hash 636d7ca8db6356e009032c520a8af7da
822ac6e07d885635e73332374e8ca835bbca86a5
637a4c3a55686aadac144ab78a1863b5b351649df48e63d0ae07326a45bf695a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/05/Gabbro-mountain-quarry-plant-Oman.jpeg HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alwadi-oman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:22:14 GMT
content-type: image/jpeg
content-length: 1671073
last-modified: Wed, 22 May 2019 09:38:15 GMT
etag: "5ce51887-197fa1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
alwadi-oman.com/en/?wc-ajax=get_refreshed_fragments
145.239.140.147200 OK 1.0 kB URL HTTP/1.1 alwadi-oman.com/en/?wc-ajax=get_refreshed_fragments
IP 145.239.140.147:0
File type JSON data\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1014), with no line terminators
Hash eb2daca26b1b402004279f23263327fb
fa0e3791dadacc4d7fc08d6463a9eb4848eab01e
18b6563e01f93ddaebcba1e4970e8201a9d1242b1eb1d13d9ada338a9341a6da
Analyzer Verdict Alert fortinet Malware
POST /en/?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Origin: http://alwadi-oman.com
Connection: keep-alive
Referer: http://alwadi-oman.com/en/
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 22:22:14 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://alwadi-oman.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Powered-By: PHP/7.2.34, PleskLin
alwadi-oman.com/wp-content/uploads/2019/04/cropped-Al-Wadi-Site-Icon-32x32.png
145.239.140.147200 OK 1.3 kB URL HTTP/2 alwadi-oman.com/wp-content/uploads/2019/04/cropped-Al-Wadi-Site-Icon-32x32.png
IP 145.239.140.147:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash d0c68fb7967ac760adb4457ab79488c6
81bb4ef0613f71c95ca6231c611281dcbafbf6f6
e0a9cd006bf9728f4d36877e044ea521080f12e40697db6427d460093beb95b7
GET /wp-content/uploads/2019/04/cropped-Al-Wadi-Site-Icon-32x32.png HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alwadi-oman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:22:14 GMT
content-type: image/png
content-length: 1349
last-modified: Wed, 03 Apr 2019 09:31:45 GMT
etag: "5ca47d81-545"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
maps.gstatic.com/mapfiles/openhand_8_8.cur
142.250.74.163200 OK 326 B URL HTTP/2 maps.gstatic.com/mapfiles/openhand_8_8.cur
IP 142.250.74.163:0
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @8x8\012- data
Hash feff9159f56cb2069041d660b484eb07
0d0a08cf25a258511957f357b89d3908f3c5e6e3
7342f390b12f636d14e25f698fc5e38cf6240994dc0c07fefbbb4e78ec4d03c7
GET /mapfiles/openhand_8_8.cur HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alwadi-oman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/bmp
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 326
date: Sun, 27 Nov 2022 22:22:14 GMT
expires: Sun, 27 Nov 2022 22:22:14 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
alwadi-oman.com/wp-content/uploads/2019/04/cropped-Al-Wadi-Site-Icon-192x192.png
145.239.140.147200 OK 8.4 kB URL HTTP/2 alwadi-oman.com/wp-content/uploads/2019/04/cropped-Al-Wadi-Site-Icon-192x192.png
IP 145.239.140.147:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 67f2231b0ac6cfbd0cc11f87990403e4
953940e5f405146bd85cd19177c1d9f5799e364a
20d45dac10cc1ead116483beab90682fdf06d1dd5fc81821bceb974425bcffa4
GET /wp-content/uploads/2019/04/cropped-Al-Wadi-Site-Icon-192x192.png HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alwadi-oman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:22:14 GMT
content-type: image/png
content-length: 8410
last-modified: Wed, 03 Apr 2019 09:31:45 GMT
etag: "5ca47d81-20da"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
alwadi-oman.com/wp-content/uploads/2019/04/placeholder.png
145.239.140.147200 OK 858 B URL HTTP/2 alwadi-oman.com/wp-content/uploads/2019/04/placeholder.png
IP 145.239.140.147:0
File type PNG image data, 41 x 55, 8-bit/color RGBA, non-interlaced\012- data
Hash bd9f31774de5854a974709353a9ea460
608074912db42b55c407a444fbc15cf96210b7cc
369a2eb500533a90edc6eb3d137914bb0d9912900cc30303c6ac5aab9f4c23b8
GET /wp-content/uploads/2019/04/placeholder.png HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alwadi-oman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:22:14 GMT
content-type: image/png
content-length: 858
x-accel-version: 0.01
last-modified: Wed, 03 Apr 2019 13:06:33 GMT
etag: "35a-5859fec454a9f"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14287
Expires: Mon, 28 Nov 2022 02:20:22 GMT
Date: Sun, 27 Nov 2022 22:22:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14287
Expires: Mon, 28 Nov 2022 02:20:22 GMT
Date: Sun, 27 Nov 2022 22:22:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14287
Expires: Mon, 28 Nov 2022 02:20:22 GMT
Date: Sun, 27 Nov 2022 22:22:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14287
Expires: Mon, 28 Nov 2022 02:20:22 GMT
Date: Sun, 27 Nov 2022 22:22:15 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:16 GMT
age: 1259
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe1c9b5-b323-496c-a65c-09c1511f882f.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe1c9b5-b323-496c-a65c-09c1511f882f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f20d5c4b208740dd4c737b9d95c0e1d0
c843c5422499736a83a80c2b07475a8dbbb8860f
f8d048a2c911aaedfa53b7d6e134638e8c36db0700a874fe99e0d8f847970a1b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe1c9b5-b323-496c-a65c-09c1511f882f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12555
x-amzn-requestid: 2d9827ba-fc88-4deb-9844-f5b42764b2e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_MHPWIAMFQMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d861-42986aeb284115943c849306;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KcI_BV4rZkM-2CmcFI5qkJLT-OOwYQnRNEPXrQJvlNA9A3Da0EzgEA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:04 GMT
age: 1871
etag: "c843c5422499736a83a80c2b07475a8dbbb8860f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e33decf-55e5-425f-bb8d-5e1ca290e633.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e33decf-55e5-425f-bb8d-5e1ca290e633.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 300ba2bd11eefb4b5b9ba5b9d56c6cca
55c9d2899b16945f329d0dacc021161038629988
a866abff0b6b5c6ed6758f1208f106d8f00c7f16fa07f2a676301cce8301e964
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e33decf-55e5-425f-bb8d-5e1ca290e633.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4254
x-amzn-requestid: 9c63d2a1-e805-4114-8875-fc1dc022c047
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR8IwHopoAMFq0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383da37-395ca7b76b364c11172fbdd6;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:44:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tFKbj-Jui_NW_73l_-W1Ja9sHqNKCSA3P8O3IZR38idkSAACjsnIMw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:56:49 GMT
etag: "55c9d2899b16945f329d0dacc021161038629988"
content-type: image/jpeg
age: 1526
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fa848cb85e85df184b078fe7aa95ae52
21aa6418f3a0d2b64925b66d5fb9079b7e84a11c
37d299c166e3350dee6dee647e98a86f8bd916d186bae12c42764ed0a3177085
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5989
x-amzn-requestid: db10fcc5-80ab-4650-af49-d5afe36706f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78LHQqIAMF9_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-4cbd19e3227894844807742c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P0Nx-FcvcV-f5cRPwZr5sEMb8pH3AoYFr185q_D0X2bE7z40nDn91w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:04 GMT
age: 1871
etag: "21aa6418f3a0d2b64925b66d5fb9079b7e84a11c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78b1389f425425d0450c94d900404dc4
53b12a8702f7c5b7cc697e2a24da824d9434be65
0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6376
x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGeaoAMFb_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:26 GMT
age: 1249
etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 15bd53848c7082464273007e010c54e0
9a3ca698ca1aeae695923277ed2244465e01a1ea
36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U_gitOWWMPO7M5Dd0WktaigfRERa93d86MhziLjZ2qnuON_K5NauyQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:54:37 GMT
age: 1658
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CRoboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CRoboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0
IP 142.250.74.10:0
GET /css?family=Roboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CRoboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alwadi-oman.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 22:22:13 GMT
date: Sun, 27 Nov 2022 22:22:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
alwadi-oman.com/wp-content/uploads/2019/04/Weighbridge-e1561454127724.jpg
145.239.140.147200 OK 0 B URL HTTP/2 alwadi-oman.com/wp-content/uploads/2019/04/Weighbridge-e1561454127724.jpg
IP 145.239.140.147:0
GET /wp-content/uploads/2019/04/Weighbridge-e1561454127724.jpg HTTP/1.1
Host: alwadi-oman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alwadi-oman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:22:13 GMT
content-type: image/jpeg
content-length: 107447
last-modified: Tue, 25 Jun 2019 09:15:27 GMT
etag: "5d11e62f-1a3b7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2