r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9704
Expires: Tue, 27 Sep 2022 17:16:18 GMT
Date: Tue, 27 Sep 2022 14:34:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 14:15:30 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: A24qy363NVT5eem_JUJdot0SirQDpi2Z9PtIC5s9Duxu-VW492Kaeg==
Age: 1144
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IeW3V0geH7yIjrgo-IIQSK4bFUHZ_W1Wgw5myVgZ6N1YdHC2mfwJ1w==
age: 18621
X-Firefox-Spdy: h2
arabvu.org/
107.154.160.154302 Found 203 B IP 107.154.160.154:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash becb018ea33758ee7de74fb9a0130b48
b58594a43a3e65017b5f1338e5d5d9eda715a36c
5750d4551851eedd92a801aef5966c7293276f2c051db2d65affdc4907477031
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Tue, 27 Sep 2022 14:34:34 GMT
Server: Apache
Location: https://arabvu.org/
Content-Length: 203
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; expires=Tue, 26 Sep 2023 22:16:11 GMT; HttpOnly; path=/; Domain=.arabvu.org
incap_ses_282_2683007=JojBURNtpBSbWEEcTN7pA/kJM2MAAAAA0ZrDSbaKt466Nd6X+9dZdA==; path=/; Domain=.arabvu.org
___utmvmkYuLFpoZ=bxQAQZIVfVn; path=/; Max-Age=900
___utmvakYuLFpoZ=QwQtzNC; path=/; Max-Age=900
___utmvbkYuLFpoZ=eZB XRdOxall: mtL; path=/; Max-Age=900
X-CDN: Imperva
X-Iinfo: 4-97345714-97345726 NNNN CT(139 -1 0) RT(1664289273378 63) q(0 0 1 15) r(3 3) U11
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 14:34:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 14:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 15:06:02 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LAm2Fl5tG_PbGbcjFkyFlHtS6jmmMqy3i2JrxA7LsnZZBkh0YYuk4Q==
Age: 1428
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3859
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:34 GMT
Last-Modified: Tue, 27 Sep 2022 13:30:15 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.187.146.10101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.146.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AzIJuYJO8z075V8k11EY7A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5hpWQJCpJzvDJy7Gubs/L7BN/n0=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16030
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 14:34:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16030
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 14:34:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16030
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 14:34:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16030
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 14:34:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16030
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 14:34:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5274e770cb5a704916c8965659709f4a
1a26007f761e439db575fb80fb403031260aecf4
e36e8be75c92feb9b416a46c5918356d8f9694894a799b7c10de21034d33d5ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: 0887cd56-f324-46cf-a086-709e1c66f354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGBTdHmhoAMFvIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633248e2-42391706084f335228fe3994;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:50:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IWzfDNFlgYdqYnbQ9uWfOvqb5zl3I3mgTZrT5pU5P3EvetMRDN5P7w==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:06:47 GMT
age: 48469
etag: "1a26007f761e439db575fb80fb403031260aecf4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash deb8d1e3b6d7fbc8c8ba478269621676
84f5a4c8b38acde814bc790e5b514347718d5bb9
ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bs6HOUmHOoYKDuzBoVHhcr8d4HP4bBmwUF3EtOmwKXo7ozhfaIYEvw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:39:07 GMT
age: 60929
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
arabvu.org/components/com_sppagebuilder/assets/css/font-awesome-v4-shims.css?4c712525bbbcd041da9d1cec623f871f
107.154.160.154200 OK 4.1 kB URL HTTP/2 arabvu.org/components/com_sppagebuilder/assets/css/font-awesome-v4-shims.css?4c712525bbbcd041da9d1cec623f871f
IP 107.154.160.154:0
File type ASCII text, with very long lines (26516), with no line terminators
Hash 334e42b87df5594738b96b5492bd77cc
fc7edddcd8c2c9660fa938b1106fe80b484dd5bc
ae5d29e79df66ba0042e90eaefc67c57e56316836177e383d0959ec60c5e7580
Analyzer Verdict Alert fortinet Malware
GET /components/com_sppagebuilder/assets/css/font-awesome-v4-shims.css?4c712525bbbcd041da9d1cec623f871f HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Feb 2022 15:42:38 GMT
content-type: text/css
content-length: 4100
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:35 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290604 2VNN RT(1664289273839 722) q(0 0 0 -1) r(14 14)
X-Firefox-Spdy: h2
arabvu.org/components/com_sppagebuilder/assets/css/font-awesome-5.min.css?4c712525bbbcd041da9d1cec623f871f
107.154.160.154200 OK 13 kB URL HTTP/2 arabvu.org/components/com_sppagebuilder/assets/css/font-awesome-5.min.css?4c712525bbbcd041da9d1cec623f871f
IP 107.154.160.154:0
File type ASCII text, with very long lines (58041)
Hash 03e21f80d16be384f7acf0e0c314a241
f9a96f36acad081ad18850dd20fb1e961fe817ba
e5dfa80599e236978a95ca3f4a0660035fce8673bab1159d408e59ffa235185d
Analyzer Verdict Alert fortinet Malware
GET /components/com_sppagebuilder/assets/css/font-awesome-5.min.css?4c712525bbbcd041da9d1cec623f871f HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Feb 2022 15:42:38 GMT
content-type: text/css
content-length: 12679
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:35 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290871 2VNN RT(1664289273839 721) q(0 0 0 -1) r(14 14)
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 347dca206e13a3b13953f0ab398310b4
be60bbc96c832ae385cc9ae5828bd32703011b21
f6da888a54a0c6c73466f2c2a72dd875514a39d81b760a6b0116b4dd56ef31dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10211
x-amzn-requestid: 3ea4ac84-2465-4bd1-8ade-863de3c9576e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfSuGoQoAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145aa-7843b82728ead9a053c689d1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p1vYTqYjOmYHjVmJ8f6qyT_nLIsyXsr7ZI-DI7JBF9RJa0ZJNPiluA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:56:23 GMT
age: 59893
etag: "be60bbc96c832ae385cc9ae5828bd32703011b21"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bd5ecd8-fafe-452d-ae17-9df7d4cb5682.webp
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bd5ecd8-fafe-452d-ae17-9df7d4cb5682.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 720fc80bd0ff9b71f20c8e0c13e1084e
6ff5d7ce0608a8c1b1f4c731a94295e7a56dfe50
e84bcabd01425354050fe8ba5f4b29a97f05e6f5f15d26d0706c174136de30e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bd5ecd8-fafe-452d-ae17-9df7d4cb5682.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8931
x-amzn-requestid: 9255ee80-ae19-4b47-882b-01e663e857ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG-EmZoAMFyWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-70cc0bc87ed2480879ba081a;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Md06h9jRAN491M1gOjvAXN4Zp2msjqH-dYNVxyH6xJ2G8pf50tyHeQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 22:23:21 GMT
age: 58275
etag: "6ff5d7ce0608a8c1b1f4c731a94295e7a56dfe50"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kRSg9NTTAgeAJgIZ_C9_rRodCX4bzGduJEvNPNHUya0Moa2vsmWSoQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:38:57 GMT
age: 60939
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14218a43c5e5bbce546735a780c8ccce
61676358cdbb2373bc644e66f8a84fbc8cc5daf6
905b1c30a2273aef69904f2eb1451c756fc1fdba02e86ea5c957629dd056aeda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6390
x-amzn-requestid: b2681ff8-ab83-41e6-adef-3e6772c93c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGFJ6Gc_oAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324f0c-3dbf9f4e2047567b5abdbe74;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 01:17:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8JXEBo_L_xKuKdeoOXEJ6FO7ZVsZVQzUmQFe7fYcxaHRQNEq1HWp6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:37:50 GMT
age: 46606
etag: "61676358cdbb2373bc644e66f8a84fbc8cc5daf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
arabvu.org/components/com_sppagebuilder/assets/css/sppagebuilder.css?4c712525bbbcd041da9d1cec623f871f
107.154.160.154200 OK 41 kB URL HTTP/2 arabvu.org/components/com_sppagebuilder/assets/css/sppagebuilder.css?4c712525bbbcd041da9d1cec623f871f
IP 107.154.160.154:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash f53b07dcc178ef49af4102356a1d6a5a
499d58759d9b3c47fb90e7773237d95c843b12fb
6d968a413c3dca84e2960c62f29735d57d003997b0bc7e3128bbad2dcd5ef01c
GET /components/com_sppagebuilder/assets/css/sppagebuilder.css?4c712525bbbcd041da9d1cec623f871f HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Feb 2022 15:42:38 GMT
content-type: text/css
content-length: 40936
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:35 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290594 2VNN RT(1664289273839 724) q(0 0 0 -1) r(14 14)
X-Firefox-Spdy: h2
arabvu.org/components/com_sppagebuilder/assets/css/animate.min.css?4c712525bbbcd041da9d1cec623f871f
107.154.160.154200 OK 4.9 kB URL HTTP/2 arabvu.org/components/com_sppagebuilder/assets/css/animate.min.css?4c712525bbbcd041da9d1cec623f871f
IP 107.154.160.154:0
File type ASCII text, with very long lines (53270)
Hash 6004c891a8117448cce667d263864d0d
d51adb6ff40d371c609eddbd3f0fb532a10e41f9
499b85be554a4afb72ad7b6a8f667f7ca528691a21cc05459f2ceb2681ce9a17
Analyzer Verdict Alert fortinet Malware
GET /components/com_sppagebuilder/assets/css/animate.min.css?4c712525bbbcd041da9d1cec623f871f HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Feb 2022 15:42:38 GMT
content-type: text/css
content-length: 4855
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:35 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119276435 2VNN RT(1664289273839 723) q(0 0 0 -1) r(14 14)
X-Firefox-Spdy: h2
arabvu.org/components/com_sppagebuilder/assets/css/js_slider.css
107.154.160.154200 OK 1.7 kB URL HTTP/2 arabvu.org/components/com_sppagebuilder/assets/css/js_slider.css
IP 107.154.160.154:0
File type ASCII text, with very long lines (6031), with no line terminators
Hash 6802305249ad884851e2e3d328ccebfe
c77a1e2c9f7b0e8dbf93df255f588af9df37d293
bb475fa548bf8c1fad70397dd891feb26f9cef931b01db297a7292b79cbd2772
GET /components/com_sppagebuilder/assets/css/js_slider.css HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:35 GMT
server: Apache
last-modified: Sun, 20 Feb 2022 15:42:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1653
content-type: text/css
x-cdn: Imperva
x-iinfo: 5-119309831-119290603 2NNN RT(1664289273839 725) q(0 0 0 -1) r(14 14) U18
X-Firefox-Spdy: h2
arabvu.org/modules/mod_jaimagehotspot/assets/css/style.css?v=1
107.154.160.154200 OK 3.1 kB URL HTTP/2 arabvu.org/modules/mod_jaimagehotspot/assets/css/style.css?v=1
IP 107.154.160.154:0
Hash c14b1c25aea75784fcb0fa855313a23f
658ed89e34ed5cfc9bac7fe50b7b2db641445139
aa23563e88b67caf652cca2da43b4c03d08bcdf065c032285ac8fca2caece706
Analyzer Verdict Alert fortinet Malware
GET /modules/mod_jaimagehotspot/assets/css/style.css?v=1 HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:35 GMT
server: Apache
last-modified: Sun, 20 Feb 2022 15:15:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3059
content-type: text/css
x-cdn: Imperva
x-iinfo: 5-119309831-119279338 2NNN RT(1664289273839 726) q(0 2 2 -1) r(14 14) U18
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.24.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:36 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1095653
expires: Sun, 17 Sep 2023 14:34:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UqFE7QfmNH1aVtQHw59ZEGImy6NFE7dnTjEIfIxWc11syGPIhkMLWJqAgfrjqC7lPpSu%2FRo4nRMC3mIFAjWpnfXU5qfI6PnVz0kya8tFDYM7dx%2FI7Yh%2BPxzlMnqdbx70v%2BXUK%2BqT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7514f60aea9d0b02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
arabvu.org/components/com_sppagebuilder/assets/css/magnific-popup.css
107.154.160.154200 OK 1.7 kB URL HTTP/2 arabvu.org/components/com_sppagebuilder/assets/css/magnific-popup.css
IP 107.154.160.154:0
File type ASCII text, with very long lines (5936), with no line terminators
Hash a00fb81e403b95f44dd5c3c2ee2d322f
b97cd04367e3f23d86fb364407d28796f8d038ab
1a40f1fe7eb4bd6f9ff89690d25463a2d8c9bc2c99d5b8b7f8ed047d28b4f2de
GET /components/com_sppagebuilder/assets/css/magnific-popup.css HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "46801786"
last-modified: Sun, 20 Feb 2022 15:42:38 GMT
content-type: text/css
content-length: 1713
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119276435 2VNN RT(1664289273839 727) q(0 14 14 -1) r(16 16)
X-Firefox-Spdy: h2
arabvu.org/modules/mod_jaimagehotspot/assets/css/style.rtl.css
107.154.160.154200 OK 424 B URL HTTP/2 arabvu.org/modules/mod_jaimagehotspot/assets/css/style.rtl.css
IP 107.154.160.154:0
File type ASCII text, with CR line terminators
Hash 7676aba1cc0ecb52e165a7ac0d0589e9
78266a4d42d02684a10602c462dc0341dcc15ccc
9587d615f9c83ea7e0503dd51d67a6298345e85f2e281c72657db76864c2f0a2
GET /modules/mod_jaimagehotspot/assets/css/style.rtl.css HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:36 GMT
server: Apache
last-modified: Sun, 20 Feb 2022 15:15:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 424
content-type: text/css
x-cdn: Imperva
x-iinfo: 5-119309831-119290594 2NNN RT(1664289273839 726) q(0 14 14 -1) r(16 16) U18
X-Firefox-Spdy: h2
arabvu.org/modules/mod_jaimagehotspot/assets/elements/popover/jquery.webui-popover.css
107.154.160.154200 OK 1.9 kB URL HTTP/2 arabvu.org/modules/mod_jaimagehotspot/assets/elements/popover/jquery.webui-popover.css
IP 107.154.160.154:0
Hash fca9f4b7d38f5071462281517542d622
b720085b1e11000a258e6ec8b80fec0f0a8c63f5
c3304bd2caae8f34e97ff33045e7817618e15aaf941c9712d462132054df9bc3
GET /modules/mod_jaimagehotspot/assets/elements/popover/jquery.webui-popover.css HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:36 GMT
server: Apache
last-modified: Sun, 20 Feb 2022 15:15:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1942
content-type: text/css
x-cdn: Imperva
x-iinfo: 5-119309831-119290604 2NNN RT(1664289273839 727) q(0 14 14 -1) r(16 16) U18
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/css/bootstrap.min.css
107.154.160.154200 OK 31 kB URL HTTP/2 arabvu.org/templates/finatic/css/bootstrap.min.css
IP 107.154.160.154:0
File type ASCII text, with very long lines (65324)
Hash d4025831ab282afa80fb52b8611bdaf6
7d4a7561880ea7c9f2316d77b7098ff36bf2d4b2
9d24615b86e99167f9588cda0ffcbcb39a6a04fe34a14980ae178c77eef17d00
GET /templates/finatic/css/bootstrap.min.css HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "3e948fdc"
last-modified: Tue, 09 Nov 2021 13:15:57 GMT
content-type: text/css
content-length: 31270
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290603 2VNN RT(1664289273839 739) q(0 14 14 -1) r(16 16)
X-Firefox-Spdy: h2
arabvu.org/plugins/system/helixultimate/assets/css/system-j3.min.css
107.154.160.154200 OK 793 B URL HTTP/2 arabvu.org/plugins/system/helixultimate/assets/css/system-j3.min.css
IP 107.154.160.154:0
File type ASCII text, with very long lines (2180), with no line terminators
Hash f6318a2258588f9b93c54cf5d2b9752d
091bae4d9fc8bfd75cf7f647b2c00baac67cbd28
d5a58159c7322568c0a75b8891dca9790c566d5e34c3c6b5f7798884bb9b6886
GET /plugins/system/helixultimate/assets/css/system-j3.min.css HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "eaf72b30"
last-modified: Sun, 20 Feb 2022 15:16:01 GMT
content-type: text/css
content-length: 793
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290871 2VNN RT(1664289273839 740) q(0 15 15 -1) r(18 18)
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/css/font-awesome.min.css
107.154.160.154200 OK 12 kB URL HTTP/2 arabvu.org/templates/finatic/css/font-awesome.min.css
IP 107.154.160.154:0
File type ASCII text, with very long lines (55970)
Hash e2721b86fcb7490efa69eb104434e70d
f47ba38fb6cab9cc62b5dc20e5cef84c34ca052e
36cf8e8dbb3dc80e5d6a5675f7c80da46ae1c9903a9fb7137295dc33ad0f67a4
GET /templates/finatic/css/font-awesome.min.css HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "b5651b0e"
last-modified: Tue, 09 Nov 2021 13:15:57 GMT
content-type: text/css
content-length: 12215
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119279338 2VNN RT(1664289273839 741) q(0 16 16 -1) r(18 18)
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/css/finatic-font.css
107.154.160.154200 OK 862 B URL HTTP/2 arabvu.org/templates/finatic/css/finatic-font.css
IP 107.154.160.154:0
Hash 532515cac4dd065b46248409488c41ec
b49a08b75844c996b2cdc885325e4fde2437de5e
d29b0edbd2008a5f2f6c71fef6097bb30f2df0cb1d191ef154d94762bfa157b8
GET /templates/finatic/css/finatic-font.css HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "54eaf3b0"
last-modified: Tue, 09 Nov 2021 13:15:57 GMT
content-type: text/css
content-length: 862
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119276435 2VNN RT(1664289273839 741) q(0 16 16 -1) r(18 18)
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/css/fa-v4-shims.css
107.154.160.154200 OK 3.8 kB URL HTTP/2 arabvu.org/templates/finatic/css/fa-v4-shims.css
IP 107.154.160.154:0
File type ASCII text, with very long lines (17180), with no line terminators
Hash 097ba96dbed9c402992552b44f94f02e
4500b1e01811048de865eaef33a439c3d8921920
ce1c10e9b7d263344a0c91327013dedb264be66470c5372818b6c464bf6e171b
GET /templates/finatic/css/fa-v4-shims.css HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "17120778"
last-modified: Tue, 09 Nov 2021 13:15:57 GMT
content-type: text/css
content-length: 3767
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290603 2VNN RT(1664289273839 744) q(0 16 16 -1) r(18 18)
X-Firefox-Spdy: h2
arabvu.org/plugins/system/jce/css/content.css?badb4208be409b1335b815dde676300e
107.154.160.154200 OK 1.4 kB URL HTTP/2 arabvu.org/plugins/system/jce/css/content.css?badb4208be409b1335b815dde676300e
IP 107.154.160.154:0
File type ASCII text, with very long lines (8234), with no line terminators
Hash d32023b629d1406c005ce90df23d6bb3
5a15cfefaaf4b7fca1aa88be2776195191ee6adc
d055c045f0e9569a3e5aa746fbceaee53cfa4adf9130e54026449d63e159d00d
Analyzer Verdict Alert fortinet Malware
GET /plugins/system/jce/css/content.css?badb4208be409b1335b815dde676300e HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 05 Jun 2022 08:54:19 GMT
content-type: text/css
content-length: 1361
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119286431 2VNN RT(1664289273839 728) q(0 14 14 -1) r(19 19)
X-Firefox-Spdy: h2
arabvu.org/media/com_acym/css/module.min.css?v=783
107.154.160.154200 OK 2.7 kB URL HTTP/2 arabvu.org/media/com_acym/css/module.min.css?v=783
IP 107.154.160.154:0
File type ASCII text, with very long lines (10218), with no line terminators
Hash fbedd9e9c2612007de4d757405fb182e
0038224dec30c76e3fc4bfc74acc9db689909cdf
6fbd09debdb70cf08539d357a3fb38294d8a1ba19494a55524a299db55391729
GET /media/com_acym/css/module.min.css?v=783 HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 05 Jun 2022 08:52:17 GMT
content-type: text/css
content-length: 2705
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119279338 2VNN RT(1664289273839 760) q(0 18 18 -1) r(20 20)
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/css/presets/default.css
107.154.160.154200 OK 706 B URL HTTP/2 arabvu.org/templates/finatic/css/presets/default.css
IP 107.154.160.154:0
File type ASCII text, with very long lines (3101), with no line terminators
Hash b4e6dac6f0631079241524f55ef8fbcd
e88510a061d211274cf0759f6b371088a3f10bcf
435bb7af225362cfa6148cd6d572123fae0176395cc011f617cf5004c5b24b0d
GET /templates/finatic/css/presets/default.css HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "e12bb81e"
last-modified: Sun, 20 Feb 2022 15:44:49 GMT
content-type: text/css
content-length: 706
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119276435 2VNN RT(1664289273839 756) q(0 18 18 -1) r(20 20)
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/css/rtl.css
107.154.160.154200 OK 2.9 kB URL HTTP/2 arabvu.org/templates/finatic/css/rtl.css
IP 107.154.160.154:0
File type Unicode text, UTF-8 text, with very long lines (10901)
Hash fc1a3f9ed8f4bf8bd1a7cdfaff1aaedf
5557c25148b2bc15fa4f351e4bdd694a927ec719
1f4187dd36485d242378faa48cfd3fdbb221bf046c73b1af00885fafe72c694e
GET /templates/finatic/css/rtl.css HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "c41c5953"
last-modified: Sun, 20 Feb 2022 15:44:49 GMT
content-type: text/css
content-length: 2861
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290594 2VNN RT(1664289273839 752) q(0 18 18 -1) r(20 20)
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/css/template.css
107.154.160.154200 OK 26 kB URL HTTP/2 arabvu.org/templates/finatic/css/template.css
IP 107.154.160.154:0
File type Unicode text, UTF-8 text, with very long lines (65488)
Hash fa9d040992297a5010e9ba6e84282429
c62e3f1d3d4eaff79bb0876a981e74df54d19ef5
8bfa52815945cf37778a1058a6ef6a31deaf03f186a314c8bd259d99e4659570
GET /templates/finatic/css/template.css HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "9848ace5"
last-modified: Sun, 20 Feb 2022 15:44:49 GMT
content-type: text/css
content-length: 26196
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290603 2VNN RT(1664289273839 748) q(0 18 18 -1) r(20 20)
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/css/custom.css
107.154.160.154200 OK 2.2 kB URL HTTP/2 arabvu.org/templates/finatic/css/custom.css
IP 107.154.160.154:0
Hash dcb32ae180b2ed4d3bc35b795de61f92
02a61ea7aedf60dd356febfb0c78f02e16f79d2c
7a72ba735ee763d41d8d8c5415649f281675b30f3e6c848c8af06d333c87aa93
GET /templates/finatic/css/custom.css HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "99f64c17"
last-modified: Tue, 09 Nov 2021 13:15:57 GMT
content-type: text/css
content-length: 2188
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119300805 2VNN RT(1664289273839 742) q(0 16 16 -1) r(20 20)
X-Firefox-Spdy: h2
arabvu.org/media/jui/js/jquery.min.js?7d256abb4f3eba48cc31f9cf74a9a1e2
107.154.160.154200 OK 34 kB URL HTTP/2 arabvu.org/media/jui/js/jquery.min.js?7d256abb4f3eba48cc31f9cf74a9a1e2
IP 107.154.160.154:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3c6bb8c13bf1b4a92dcf08588bcfd19f
6d0fcd6fb376013bbf8b174ee819d2c75d8927e6
b79486ba47614c3ec00d0705f60dd7de82af908b782ad3c0b39e630659c24a48
Analyzer Verdict Alert fortinet Malware
GET /media/jui/js/jquery.min.js?7d256abb4f3eba48cc31f9cf74a9a1e2 HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 09 Nov 2021 13:16:02 GMT
content-type: application/javascript
content-length: 34090
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290871 2VNN RT(1664289273839 767) q(0 18 18 -1) r(20 20)
X-Firefox-Spdy: h2
arabvu.org/components/com_sppagebuilder/assets/js/jquery.parallax.js?4c712525bbbcd041da9d1cec623f871f
107.154.160.154200 OK 428 B URL HTTP/2 arabvu.org/components/com_sppagebuilder/assets/js/jquery.parallax.js?4c712525bbbcd041da9d1cec623f871f
IP 107.154.160.154:0
File type ASCII text, with very long lines (898), with no line terminators
Hash 14468ffe8a53ec0f682d30970c08804f
9787d3559a760a23f29569bc7260dc1ca121968b
a3f789d0a3ee08e319f8ffcdb1b81da34e021b2568b6bb0264ac8d81aba52fd6
GET /components/com_sppagebuilder/assets/js/jquery.parallax.js?4c712525bbbcd041da9d1cec623f871f HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Feb 2022 15:42:38 GMT
content-type: application/javascript
content-length: 428
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119276435 2VNN RT(1664289273839 774) q(0 19 19 -1) r(20 20)
X-Firefox-Spdy: h2
arabvu.org/components/com_sppagebuilder/assets/js/sppagebuilder.js?4c712525bbbcd041da9d1cec623f871f
107.154.160.154200 OK 19 kB URL HTTP/2 arabvu.org/components/com_sppagebuilder/assets/js/sppagebuilder.js?4c712525bbbcd041da9d1cec623f871f
IP 107.154.160.154:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 05f19478ba4e0a9723ffb67d509e6199
1ec911ee604b87808b6e73257fca15c10f24e19b
06b37ecadcc654a8019d66e2f36fa1a12e4e8f53651fb8a61d806b023af2cb28
Analyzer Verdict Alert fortinet Malware
GET /components/com_sppagebuilder/assets/js/sppagebuilder.js?4c712525bbbcd041da9d1cec623f871f HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Feb 2022 15:42:38 GMT
content-type: application/javascript
content-length: 19331
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290603 2VNN RT(1664289273839 776) q(0 19 19 -1) r(20 20)
X-Firefox-Spdy: h2
arabvu.org/media/jui/js/jquery-noconflict.js?7d256abb4f3eba48cc31f9cf74a9a1e2
107.154.160.154200 OK 41 B URL HTTP/2 arabvu.org/media/jui/js/jquery-noconflict.js?7d256abb4f3eba48cc31f9cf74a9a1e2
IP 107.154.160.154:0
Hash 06c7ff373ea871f723a41d1c852b4c09
1adbae39f66fbc6289e4ebde3ebf25647d5e8f58
1cd856234705d5119206f90886bf9873ac8d56dc63a1c4b7d9da144d65380ae7
GET /media/jui/js/jquery-noconflict.js?7d256abb4f3eba48cc31f9cf74a9a1e2 HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 09 Nov 2021 13:16:02 GMT
content-type: application/javascript
content-length: 41
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:36 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119279338 2VNN RT(1664289273839 769) q(0 19 19 -1) r(20 20)
X-Firefox-Spdy: h2
arabvu.org/modules/mod_jaimagehotspot/assets/js/bootstrap-popover.js?v=1
107.154.160.154200 OK 1.3 kB URL HTTP/2 arabvu.org/modules/mod_jaimagehotspot/assets/js/bootstrap-popover.js?v=1
IP 107.154.160.154:0
Hash 4c3e0ca029d6da17b64064f6095d9bcc
9a4051240b2f25c9f997891e80f1635b9b3f4f23
fda12bd12c2c272e480e13f3013a5e6314419e8c3530530009c28931c18ea73e
GET /modules/mod_jaimagehotspot/assets/js/bootstrap-popover.js?v=1 HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:37 GMT
server: Apache
last-modified: Sun, 20 Feb 2022 15:15:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1293
content-type: application/javascript
x-cdn: Imperva
x-iinfo: 5-119309831-119279338 2NNN RT(1664289273839 784) q(0 20 20 -1) r(22 22) U18
X-Firefox-Spdy: h2
arabvu.org/modules/mod_jaimagehotspot/assets/js/bootstrap-tooltip.js?v=1
107.154.160.154200 OK 3.3 kB URL HTTP/2 arabvu.org/modules/mod_jaimagehotspot/assets/js/bootstrap-tooltip.js?v=1
IP 107.154.160.154:0
Hash a25039796302e62c15b34b0fe2d73f56
a30b4f5dc2f68123c36ad1e998866c0d10bab1b2
f1670e6f090ff2d086ea57364c9ea7d7e6fd26df2c33905b4c87468aee283457
GET /modules/mod_jaimagehotspot/assets/js/bootstrap-tooltip.js?v=1 HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:37 GMT
server: Apache
last-modified: Sun, 20 Feb 2022 15:15:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3262
content-type: application/javascript
x-cdn: Imperva
x-iinfo: 5-119309831-119290603 2NNN RT(1664289273839 782) q(0 20 20 -1) r(22 22) U18
X-Firefox-Spdy: h2
arabvu.org/components/com_sppagebuilder/assets/js/js_slider.js
107.154.160.154200 OK 16 kB URL HTTP/2 arabvu.org/components/com_sppagebuilder/assets/js/js_slider.js
IP 107.154.160.154:0
File type ASCII text, with very long lines (51217)
Hash d67067000861bfe72510a7eb3de68329
e779443b6f1b84e0f10c24eda7395ae8083deea2
282cba5a151eec1fed9d2b8ccc774c069eb2c2e47b30b00cee60ce60f57482cb
Analyzer Verdict Alert fortinet Malware
GET /components/com_sppagebuilder/assets/js/js_slider.js HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:37 GMT
server: Apache
last-modified: Sun, 20 Feb 2022 15:42:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15918
content-type: application/javascript
x-cdn: Imperva
x-iinfo: 5-119309831-119300805 2NNN RT(1664289273839 778) q(0 19 19 -1) r(20 20) U18
X-Firefox-Spdy: h2
arabvu.org/media/jui/js/jquery-migrate.min.js?7d256abb4f3eba48cc31f9cf74a9a1e2
107.154.160.154200 OK 4.0 kB URL HTTP/2 arabvu.org/media/jui/js/jquery-migrate.min.js?7d256abb4f3eba48cc31f9cf74a9a1e2
IP 107.154.160.154:0
File type ASCII text, with very long lines (9959), with no line terminators
Hash 0cb1b6653cda506e14c93a83003e3671
641d621515d21ded19a2f3336422899b02a3ffff
c5b4d066c79d8d8add3ebc18181a5ba170e8fca50b30c1349e2e9b112ac43a68
Analyzer Verdict Alert fortinet Malware
GET /media/jui/js/jquery-migrate.min.js?7d256abb4f3eba48cc31f9cf74a9a1e2 HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 09 Nov 2021 13:16:03 GMT
content-type: application/javascript
content-length: 3957
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:37 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290875 2VNN RT(1664289273839 773) q(0 19 19 -1) r(24 24)
X-Firefox-Spdy: h2
arabvu.org/modules/mod_jaimagehotspot/assets/js/jquery.dropdown.rtl.js
107.154.160.154200 OK 2.5 kB URL HTTP/2 arabvu.org/modules/mod_jaimagehotspot/assets/js/jquery.dropdown.rtl.js
IP 107.154.160.154:0
Hash bb7de37541c20ace00832d057538cd2b
ca3a34eacc1d0b019b391d44d865491520d43fce
6892a10c4545db0dbea8597e3fe0910f1876bd1ce3c36bf74a8550f45be01691
Analyzer Verdict Alert fortinet Malware
GET /modules/mod_jaimagehotspot/assets/js/jquery.dropdown.rtl.js HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:37 GMT
server: Apache
last-modified: Sun, 20 Feb 2022 15:15:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2473
content-type: application/javascript
x-cdn: Imperva
x-iinfo: 5-119309831-119279338 2NNN RT(1664289273839 786) q(0 22 22 -1) r(24 24) U18
X-Firefox-Spdy: h2
arabvu.org/modules/mod_jaimagehotspot/assets/js/modernizr.custom.63321.js
107.154.160.154200 OK 4.4 kB URL HTTP/2 arabvu.org/modules/mod_jaimagehotspot/assets/js/modernizr.custom.63321.js
IP 107.154.160.154:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (8852)
Hash 4364f33ba3faaeb2e5b69a2a059ca2f9
4d69fec4422b2bb0d6059dc4a94b87e3c1117148
31e1e5218fcf9aca0fd620b1ab2749099d60b94c72bead93f333cbcf85edca73
Analyzer Verdict Alert fortinet Malware
GET /modules/mod_jaimagehotspot/assets/js/modernizr.custom.63321.js HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:37 GMT
server: Apache
last-modified: Sun, 20 Feb 2022 15:15:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4398
content-type: application/javascript
x-cdn: Imperva
x-iinfo: 5-119309831-119290604 2NNN RT(1664289273839 784) q(0 22 22 -1) r(24 24) U18
X-Firefox-Spdy: h2
arabvu.org/media/system/js/core.js?7d256abb4f3eba48cc31f9cf74a9a1e2
107.154.160.154200 OK 3.4 kB URL HTTP/2 arabvu.org/media/system/js/core.js?7d256abb4f3eba48cc31f9cf74a9a1e2
IP 107.154.160.154:0
File type Unicode text, UTF-8 text, with very long lines (8729), with no line terminators
Hash 92fa07cabcca406079b09fa152dba9f1
3499182c9a54f72ca33c77ff663357f53f028951
755f1291548c61fe45a5168c76d23e01d65874a1ce26ead5febc4de3f1116974
Analyzer Verdict Alert fortinet Malware
GET /media/system/js/core.js?7d256abb4f3eba48cc31f9cf74a9a1e2 HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 09 Nov 2021 13:16:07 GMT
content-type: application/javascript
content-length: 3360
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:37 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290877 2VNN RT(1664289273839 780) q(0 20 20 -1) r(24 24)
X-Firefox-Spdy: h2
arabvu.org/modules/mod_jaimagehotspot/assets/elements/popover/jquery.webui-popover.js
107.154.160.154200 OK 11 kB URL HTTP/2 arabvu.org/modules/mod_jaimagehotspot/assets/elements/popover/jquery.webui-popover.js
IP 107.154.160.154:0
File type HTML document, Unicode text, UTF-8 text
Hash 369275a740dafcc3673d5023e6392153
638496ae58c914dba41f41d4b05b696be7c7a139
b02479e800ea30a29e63aa817db5f043115ffd0b942e65dc3dbe184b875b149d
Analyzer Verdict Alert fortinet Malware
GET /modules/mod_jaimagehotspot/assets/elements/popover/jquery.webui-popover.js HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:37 GMT
server: Apache
last-modified: Sun, 20 Feb 2022 15:15:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11419
content-type: application/javascript
x-cdn: Imperva
x-iinfo: 5-119309831-119290594 2NNN RT(1664289273839 787) q(0 22 22 -1) r(24 24) U18
X-Firefox-Spdy: h2
arabvu.org/modules/mod_jaimagehotspot/assets/js/hammer.min.js
107.154.160.154200 OK 8.4 kB URL HTTP/2 arabvu.org/modules/mod_jaimagehotspot/assets/js/hammer.min.js
IP 107.154.160.154:0
File type ASCII text, with very long lines (20581)
Hash e53aa23a19f67aeb179d0209d592ede6
fed756477239e9b36f2ca6a5e0bf22d07647dae9
104c269568a97b461d06e2be9d15dfe9a48f101121cc32f6902384ac029f7c29
Analyzer Verdict Alert fortinet Malware
GET /modules/mod_jaimagehotspot/assets/js/hammer.min.js HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:37 GMT
server: Apache
last-modified: Sun, 20 Feb 2022 15:15:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8405
content-type: application/javascript
x-cdn: Imperva
x-iinfo: 5-119309831-119300805 2NNN RT(1664289273839 788) q(0 24 24 -1) r(25 25) U18
X-Firefox-Spdy: h2
arabvu.org/modules/mod_jaimagehotspot/assets/js/jquery.hammer.js
107.154.160.154200 OK 414 B URL HTTP/2 arabvu.org/modules/mod_jaimagehotspot/assets/js/jquery.hammer.js
IP 107.154.160.154:0
Hash 0b04579373244df9dd125217970d723b
a031bcd3ef200120eee596510feb8ed21cfe0580
533698d1f1cdb7d3882dea44033f4206115e2890bc70cab22a35ba530330c404
Analyzer Verdict Alert fortinet Malware
GET /modules/mod_jaimagehotspot/assets/js/jquery.hammer.js HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:37 GMT
server: Apache
last-modified: Sun, 20 Feb 2022 15:15:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 414
content-type: application/javascript
x-cdn: Imperva
x-iinfo: 5-119309831-119290603 2NNN RT(1664289273839 788) q(0 24 24 -1) r(26 26) U18
X-Firefox-Spdy: h2
arabvu.org/modules/mod_jaimagehotspot/assets/js/script.js
107.154.160.154200 OK 4.8 kB URL HTTP/2 arabvu.org/modules/mod_jaimagehotspot/assets/js/script.js
IP 107.154.160.154:0
File type ASCII text, with CRLF line terminators
Hash c8982379f1ecbb7d05bde158140bc758
e6874e7ae2cb1d6d79d1c6561c5be0c82e91dc02
adc36f749af9f19f62389d537b63266ec158717daed5566b72742f87027ed7e2
Analyzer Verdict Alert fortinet Malware
GET /modules/mod_jaimagehotspot/assets/js/script.js HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:37 GMT
server: Apache
last-modified: Sun, 20 Feb 2022 15:15:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4804
content-type: application/javascript
x-cdn: Imperva
x-iinfo: 5-119309831-119290604 2NNN RT(1664289273839 789) q(0 24 24 -1) r(26 26) U18
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/js/popper.min.js
107.154.160.154200 OK 6.8 kB URL HTTP/2 arabvu.org/templates/finatic/js/popper.min.js
IP 107.154.160.154:0
File type ASCII text, with very long lines (19059), with no line terminators
Hash e44ecfa6c854e5d7f5be82e7962278a4
3a9b2044a99cbf045e157ba8f2572105ee9e6af2
681d882c6e23f61beac4e343cfa8c5d8ef749aff9c64f03cc3e7260c3b5f394e
Analyzer Verdict Alert fortinet Malware
GET /templates/finatic/js/popper.min.js HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "78953c20"
last-modified: Tue, 09 Nov 2021 13:15:58 GMT
content-type: application/javascript
content-length: 6810
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:37 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290594 2VNN RT(1664289273839 791) q(0 24 24 -1) r(26 26)
X-Firefox-Spdy: h2
arabvu.org/components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js
107.154.160.154200 OK 7.2 kB URL HTTP/2 arabvu.org/components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js
IP 107.154.160.154:0
File type ASCII text, with very long lines (20090), with no line terminators
Hash aa52697b697d8287491454156da5d8ce
0712a4132026902a01f403db4c6b8378025573f9
8145b9f535ac8891f195ea18cdb221a29e0152fcc7f35f8702fd62ea95bc9414
Analyzer Verdict Alert fortinet Malware
GET /components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "745acecb"
last-modified: Sun, 20 Feb 2022 15:42:38 GMT
content-type: application/javascript
content-length: 7223
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:37 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290877 2VNN RT(1664289273839 790) q(0 24 24 -1) r(26 26)
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/js/bootstrap.min.js
107.154.160.154200 OK 14 kB URL HTTP/2 arabvu.org/templates/finatic/js/bootstrap.min.js
IP 107.154.160.154:0
File type ASCII text, with very long lines (50395), with no line terminators
Hash bbdfdcd06eea7837abaf4a8fb0d31ed7
04f6a53097fdff9de6267dac998f35b55b3dabf6
e3c336ad7f5606e78824c2d0659da2b2b48f5f8bac1f109c97d515268be0a1b4
Analyzer Verdict Alert fortinet Malware
GET /templates/finatic/js/bootstrap.min.js HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "1778f87b"
last-modified: Tue, 09 Nov 2021 13:15:58 GMT
content-type: application/javascript
content-length: 13884
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:37 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119286431 2VNN RT(1664289273839 791) q(0 26 26 -1) r(28 28)
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/js/main.js
107.154.160.154200 OK 2.6 kB URL HTTP/2 arabvu.org/templates/finatic/js/main.js
IP 107.154.160.154:0
Hash 6d2c069ce27ac0aa84350d4156677074
b4c7f421e01ab9fd0d001044a280dd4d8a116bbd
a9e4823ff7fd6c7f6a4ae6e27b1c0df1a5eda2afd8db3fee96bf8013f8837c4b
Analyzer Verdict Alert fortinet Malware
GET /templates/finatic/js/main.js HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "515c163e"
last-modified: Tue, 09 Nov 2021 13:15:58 GMT
content-type: application/javascript
content-length: 2644
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:37 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119300805 2VNN RT(1664289273839 792) q(0 26 26 -1) r(28 28)
X-Firefox-Spdy: h2
arabvu.org/media/com_acym/js/module.min.js?v=783
107.154.160.154200 OK 3.0 kB URL HTTP/2 arabvu.org/media/com_acym/js/module.min.js?v=783
IP 107.154.160.154:0
File type ASCII text, with very long lines (9982), with no line terminators
Hash 685dd78947ebd34f16c2a44ecfd63652
e9617edab301e2fa1b980271f5813cdbb63464bb
d3f2822ecf7d9d0b0699faf660e4cf94eb2146bc20128992c8e414dadae0ebc1
Analyzer Verdict Alert fortinet Malware
GET /media/com_acym/js/module.min.js?v=783 HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 05 Jun 2022 08:52:18 GMT
content-type: application/javascript
content-length: 3040
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:37 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119310238 2VNN RT(1664289273839 794) q(0 26 26 -1) r(28 28)
X-Firefox-Spdy: h2
arabvu.org/images/banners/wlogo21.png
107.154.160.154200 OK 22 kB URL HTTP/2 arabvu.org/images/banners/wlogo21.png
IP 107.154.160.154:0
File type PNG image data, 333 x 77, 8-bit/color RGBA, non-interlaced\012- data
Hash bcbadce0ae71f6f990f3ee40d52956c2
ff3ae1d196860a1954ceaa2667c0bf208329b926
f546d186cbcaa7398b273c20deb616cdb3f32dbb3462e255f7ece2bf42e79a57
GET /images/banners/wlogo21.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "68f26f1e"
last-modified: Tue, 09 Nov 2021 20:27:01 GMT
content-type: image/png
content-length: 22424
date: Tue, 27 Sep 2022 14:34:37 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290597 2VNN RT(1664289273839 795) q(0 26 26 -1) r(28 28)
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/27/favicon.png
107.154.160.154200 OK 51 kB URL HTTP/2 arabvu.org/images/2020/12/27/favicon.png
IP 107.154.160.154:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 53e4d27cb239578ac171795b7f440d0c
fe57d9b304cd2b4515cc8fab072e621401743158
de86ec5f88f2ecec856410126d327e7b1d797e8ff0257b15853f0d98ad4d7cbe
GET /images/2020/12/27/favicon.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "35bc7b39"
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
content-type: image/png
content-length: 50644
date: Tue, 27 Sep 2022 14:34:37 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290594 2VNN RT(1664289273839 800) q(0 28 28 -1) r(29 29)
X-Firefox-Spdy: h2
arabvu.org/fonts/myr.ttf
107.154.160.154404 Not Found 462 B IP 107.154.160.154:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3b58a4197a90ce28f053f853e9f5201a
1764aa95ccf139706beb229625b9d6d6f154bd5d
e63cc6fceab87ebcfc2e83b5d9354ef92bd45c582ac8202ff6d141f39ec17648
Analyzer Verdict Alert fortinet Malware
GET /fonts/myr.ttf HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Thu, 23 Jun 2022 16:51:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 462
content-type: text/html
x-cdn: Imperva
x-iinfo: 5-119309831-119309839 PNNN RT(1664289273839 3563) q(0 0 0 -1) r(1 1) U11
X-Firefox-Spdy: h2
arabvu.org/fonts/myb.ttf
107.154.160.154404 Not Found 462 B IP 107.154.160.154:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3b58a4197a90ce28f053f853e9f5201a
1764aa95ccf139706beb229625b9d6d6f154bd5d
e63cc6fceab87ebcfc2e83b5d9354ef92bd45c582ac8202ff6d141f39ec17648
Analyzer Verdict Alert fortinet Malware
GET /fonts/myb.ttf HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Thu, 23 Jun 2022 16:51:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 462
content-type: text/html
x-cdn: Imperva
x-iinfo: 5-119309831-119309839 PNNN RT(1664289273839 3703) q(0 0 0 -1) r(1 1) U11
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/fonts/finatic.ttf?ifxcr3
107.154.160.154200 OK 52 kB URL HTTP/2 arabvu.org/templates/finatic/fonts/finatic.ttf?ifxcr3
IP 107.154.160.154:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, finatic \012- data
Hash 1c78a3a2bd836f03f8dd21b67e619996
f541c9655c38c1cdef4785bee43b1f3b52d6a8f4
862a1d660ff265caa60bac589d44050dc76704c273c27e34277750a40ae6f27f
Analyzer Verdict Alert fortinet Malware
GET /templates/finatic/fonts/finatic.ttf?ifxcr3 HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/templates/finatic/css/finatic-font.css
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Tue, 09 Nov 2021 13:15:57 GMT
accept-ranges: bytes
content-length: 51628
content-type: font/ttf
x-cdn: Imperva
x-iinfo: 5-119309831-119309839 PNNN RT(1664289273839 3714) q(0 1 1 -1) r(3 3) U12
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/28/s1.png
107.154.160.154200 OK 279 kB URL HTTP/2 arabvu.org/images/2020/12/28/s1.png
IP 107.154.160.154:0
File type PNG image data, 740 x 555, 8-bit/color RGBA, non-interlaced\012- data
Size 279 kB (278731 bytes)
Hash 250db330ea792e7858d51a4a1ffbc65c
de6864c0d182d799044d230a3870d91e22787094
e94b1b9ba76988dec12017c31c714fc424f94194deebfdc83c7e6a716ad36a97
GET /images/2020/12/28/s1.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:37 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 278731
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119290877 2NNN RT(1664289273839 799) q(0 26 26 -1) r(28 28) U18
X-Firefox-Spdy: h2
arabvu.org/images/2022/07/17/ara.jpg
107.154.160.154200 OK 181 kB URL HTTP/2 arabvu.org/images/2022/07/17/ara.jpg
IP 107.154.160.154:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2200x1080, components 3\012- data
Size 181 kB (180677 bytes)
Hash bfea4506af9271ce38dbb8908a548561
8eb8cb2d4ab858891e7c73742354cf55cddcf5b4
b44fbe29f95ba84a2f51e3a8f74ff2d49d5af115459f48a4d2df7133db3ccbc9
GET /images/2022/07/17/ara.jpg HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Sun, 17 Jul 2022 14:15:18 GMT
accept-ranges: bytes
content-length: 180677
content-type: image/jpeg
x-cdn: Imperva
x-iinfo: 5-119309831-119290597 2NNN RT(1664289273839 3667) q(0 0 0 -1) r(1 1) U18
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/fonts/fa-solid-900.woff
107.154.160.154200 OK 98 kB URL HTTP/2 arabvu.org/templates/finatic/fonts/fa-solid-900.woff
IP 107.154.160.154:0
File type Web Open Font Format, TrueType, length 98384, version 330.32636\012- data
Hash 333bae208dc363746961b234ff6c2500
43dae5c2482bfb5d04d896529600eb621181103a
7dd5fcdf6f4b330bf82965887ef6b9196b8d27855eddee99ac04fb63de0e351e
Analyzer Verdict Alert fortinet Malware
GET /templates/finatic/fonts/fa-solid-900.woff HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://arabvu.org/templates/finatic/css/font-awesome.min.css
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Tue, 09 Nov 2021 13:15:57 GMT
accept-ranges: bytes
content-length: 98384
content-type: font/woff
x-cdn: Imperva
x-iinfo: 5-119309831-119290594 2NNN RT(1664289273839 3704) q(0 0 0 -1) r(1 1) U12
X-Firefox-Spdy: h2
arabvu.org/images/banners/mmap.png
107.154.160.154200 OK 315 kB URL HTTP/2 arabvu.org/images/banners/mmap.png
IP 107.154.160.154:0
File type PNG image data, 3725 x 1837, 8-bit/color RGBA, non-interlaced\012- data
Size 315 kB (314749 bytes)
Hash d63f0c5f9b06d3577efe7dfe9d308206
5c1e89bff4d1ae191b3a97d2496e1107dfae7386
97850fe1861589cc9a1444407759076f8edd877191a6d497a6e90d6d19bc6c4a
GET /images/banners/mmap.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:37 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 314749
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119279338 2NNN RT(1664289273839 798) q(0 26 26 -1) r(28 28) U18
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/fonts/myr.ttf
107.154.160.154200 OK 80 kB URL HTTP/2 arabvu.org/templates/finatic/fonts/myr.ttf
IP 107.154.160.154:0
File type TrueType Font data, 17 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2010 Google Inc. All Rights Reserved.Noto Kufi ArabicRegularMonotype Imaging - Noto Ku\012- data
Hash 34e035cbfd685df1467e10037b33ec43
4064f825186ce179f996b4bcf6afece2d553c5d0
ca5f20ef696cd4571a86dd3541af7819b02b71923902cc496628348a3a085359
Analyzer Verdict Alert fortinet Malware
GET /templates/finatic/fonts/myr.ttf HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/templates/finatic/css/custom.css
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Tue, 09 Nov 2021 13:15:57 GMT
accept-ranges: bytes
content-length: 80048
content-type: font/ttf
x-cdn: Imperva
x-iinfo: 5-119309831-119309839 PNNN RT(1664289273839 3968) q(0 1 1 -1) r(2 2) U12
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/26/s7.jpg
107.154.160.154200 OK 42 kB URL HTTP/2 arabvu.org/images/2020/12/26/s7.jpg
IP 107.154.160.154:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2200x1080, components 3\012- data
Hash 1ebbdddefe4e8f529ba9436abacd1819
0b16076eb65f1b9f6f355d7bc61ad4548f046aa7
a586b0a8c7dad60e120e3f7e40b9d092995af7a8348e2b8dee100665e105cf66
GET /images/2020/12/26/s7.jpg HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 42319
content-type: image/jpeg
x-cdn: Imperva
x-iinfo: 5-119309831-119290597 2NNN RT(1664289273839 3681) q(0 4 4 -1) r(6 6) U18
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/26/s4.jpg
107.154.160.154200 OK 43 kB URL HTTP/2 arabvu.org/images/2020/12/26/s4.jpg
IP 107.154.160.154:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2200x1080, components 3\012- data
Hash 6f62796798cd8fc9ee3b5d657fd95854
3b2f5ec541b27cff8deb5f23a44e5e6a97ff1cfb
487282f3cd9e9aca850dd280adb3d417690dff95e7a39b24f3f03ac4b6731bf8
GET /images/2020/12/26/s4.jpg HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 42556
content-type: image/jpeg
x-cdn: Imperva
x-iinfo: 5-119309831-119279338 2NNN RT(1664289273839 3693) q(0 5 5 -1) r(7 7) U18
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/28/b.png
107.154.160.154200 OK 460 kB URL HTTP/2 arabvu.org/images/2020/12/28/b.png
IP 107.154.160.154:0
File type PNG image data, 740 x 555, 8-bit/color RGBA, non-interlaced\012- data
Size 460 kB (459844 bytes)
Hash 4f6fcc0d1b3541835b77a832bdff5b76
31890675b22522bceff3aa7858255d4715004f63
1fb168abf6f3b1b646e0e01eff21a957d621e0de2a31a71d85a5bba56fc4aee6
GET /images/2020/12/28/b.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 459844
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119286431 2NNN RT(1664289273839 799) q(0 28 28 -1) r(29 29) U18
X-Firefox-Spdy: h2
arabvu.org/images/2022/09/12/s1_medium.jpeg
107.154.160.154200 OK 299 kB URL HTTP/2 arabvu.org/images/2022/09/12/s1_medium.jpeg
IP 107.154.160.154:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 900x560, components 3\012- data
Size 299 kB (299352 bytes)
Hash 22e956de07ebc5352b4bf9beb31a5ff9
4717c2dc89cb87a40639b23c1b2dbe2dbdd36302
f913df08f13ed260731c842a53aa5f2eca2bcd6b7c87b8f21411f56929e475ee
Analyzer Verdict Alert fortinet Malware
GET /images/2022/09/12/s1_medium.jpeg HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 15:03:58 GMT
accept-ranges: bytes
content-length: 299352
content-type: image/jpeg
x-cdn: Imperva
x-iinfo: 5-119309831-119279338 2NNN RT(1664289273839 3696) q(0 7 7 -1) r(8 8) U18
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/fonts/fa-brands-400.woff
107.154.160.154200 OK 88 kB URL HTTP/2 arabvu.org/templates/finatic/fonts/fa-brands-400.woff
IP 107.154.160.154:0
File type Web Open Font Format, TrueType, length 88428, version 330.32636\012- data
Hash c5e0f14f88a828261ba01558ce2bf26f
6900998c1d878e73b2f9ac3a9a9746365d49a54f
23d9a4585904deec93bbe23b911d97f40fe25bcdf6131737f17b1f87c4b68367
Analyzer Verdict Alert fortinet Malware
GET /templates/finatic/fonts/fa-brands-400.woff HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://arabvu.org/templates/finatic/css/font-awesome.min.css
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Tue, 09 Nov 2021 13:15:57 GMT
accept-ranges: bytes
content-length: 88428
content-type: font/woff
x-cdn: Imperva
x-iinfo: 5-119309831-119310238 2NNN RT(1664289273839 3743) q(0 3 3 -1) r(4 4) U12
X-Firefox-Spdy: h2
arabvu.org/images/2022/09/25/a1_medium.jpeg
107.154.160.154200 OK 388 kB URL HTTP/2 arabvu.org/images/2022/09/25/a1_medium.jpeg
IP 107.154.160.154:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 900x560, components 3\012- data
Size 388 kB (388463 bytes)
Hash 8a6b27c3e17438504d27bc897f0016f5
edc303270cecc2b061d9eead938539ab52b15ab7
86817acd27730259bc8131b1ed1f39cada139ddf8cb7076a4dfc15c2ec87ff75
Analyzer Verdict Alert fortinet Malware
GET /images/2022/09/25/a1_medium.jpeg HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Sun, 25 Sep 2022 13:29:38 GMT
accept-ranges: bytes
content-length: 388463
content-type: image/jpeg
x-cdn: Imperva
x-iinfo: 5-119309831-119290597 2NNN RT(1664289273839 3695) q(0 6 6 -1) r(7 7) U18
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/26/s5.jpg
107.154.160.154200 OK 134 kB URL HTTP/2 arabvu.org/images/2020/12/26/s5.jpg
IP 107.154.160.154:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2200x1080, components 3\012- data
Size 134 kB (133965 bytes)
Hash dee1eec8b38aeb46f101860a2f9b59aa
11ccb1762042f4b2e23b74b34e28d2471aa7bbcb
547a25f95dd91fa3e8d3e6d97fefa5ad22a04c196c573164d9bf987f5e6ab7df
GET /images/2020/12/26/s5.jpg HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 133965
content-type: image/jpeg
x-cdn: Imperva
x-iinfo: 5-119309831-119300805 2NNN RT(1664289273839 3690) q(0 5 5 -1) r(7 7) U18
X-Firefox-Spdy: h2
arabvu.org/images/2022/05/31/a1_medium.jpeg
107.154.160.154200 OK 306 kB URL HTTP/2 arabvu.org/images/2022/05/31/a1_medium.jpeg
IP 107.154.160.154:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 900x560, components 3\012- data
Size 306 kB (306177 bytes)
Hash be772df7d70c62823e7097e94851fea3
c74336f4b138c0fb8516070ea95e47fd802ab856
a7c5e9daf21feb458ad5b294aceb94b93fd4f78a2120087eb8ab6d7535fdb53b
Analyzer Verdict Alert fortinet Malware
GET /images/2022/05/31/a1_medium.jpeg HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Tue, 31 May 2022 18:29:12 GMT
accept-ranges: bytes
content-length: 306177
content-type: image/jpeg
x-cdn: Imperva
x-iinfo: 5-119309831-119286431 2NNN RT(1664289273839 3700) q(0 8 8 -1) r(10 10) U18
X-Firefox-Spdy: h2
arabvu.org/templates/finatic/fonts/myb.ttf
107.154.160.154200 OK 80 kB URL HTTP/2 arabvu.org/templates/finatic/fonts/myb.ttf
IP 107.154.160.154:0
File type TrueType Font data, 17 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2010 Google Inc. All Rights Reserved.Noto Kufi ArabicBoldMonotype Imaging - Noto Kufi \012- data
Hash 86cbfd9163db4dd72e263ddb786ddc28
61f2371349ba12f17814f64f5a35b96ab125a0d1
80269b183c34e66fab8e7da924e70e8f40108719ce5e868cab79115b87ab911f
Analyzer Verdict Alert fortinet Malware
GET /templates/finatic/fonts/myb.ttf HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/templates/finatic/css/custom.css
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Tue, 09 Nov 2021 13:15:57 GMT
accept-ranges: bytes
content-length: 80080
content-type: font/ttf
x-cdn: Imperva
x-iinfo: 5-119309831-119310416 NNNN CT(140 152 0) RT(1664289273839 3970) q(0 1 4 -1) r(5 5) U12
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/30/vbg.png
107.154.160.154200 OK 25 kB URL HTTP/2 arabvu.org/images/2020/12/30/vbg.png
IP 107.154.160.154:0
File type PNG image data, 170 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 4a4be1bf0a5a4daa3dd70557a98240b5
cf9abd99fa3a7ed10adb61416b29ede92c227dce
72113a51b41d111948927dad455f430e083001bf953ddf1cca3b3a82dd1c7bf9
GET /images/2020/12/30/vbg.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 25328
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119290597 2NNN RT(1664289273839 3702) q(0 10 10 -1) r(12 12) U18
X-Firefox-Spdy: h2
arabvu.org/images/imgs/mapic.png
107.154.160.154200 OK 20 kB URL HTTP/2 arabvu.org/images/imgs/mapic.png
IP 107.154.160.154:0
File type PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data
Hash d8aae91c7ac811dd6ba8f4d8c366f8e8
1ff206ce0f82e6171d3de50de17592fed802753f
d26cbb69cf711624c74df992d3b1c9148313e0334b76508cd86f8d3d855dcde7
GET /images/imgs/mapic.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 19780
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119300805 2NNN RT(1664289273839 3701) q(0 10 10 -1) r(12 12) U18
X-Firefox-Spdy: h2
arabvu.org/images/2022/05/30/a1_medium.jpg
107.154.160.154200 OK 341 kB URL HTTP/2 arabvu.org/images/2022/05/30/a1_medium.jpg
IP 107.154.160.154:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 900x560, components 3\012- data
Size 341 kB (340759 bytes)
Hash 8fa9ce478a930ef35c9fe84831bc9a85
cfcef3601cbdb0d2b5acff6a35a9ec86bf4071ad
7e6b2c85e7de6eccaba38772c6017d801b45f897c4f3f98414ba7da7ace205b6
GET /images/2022/05/30/a1_medium.jpg HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Mon, 30 May 2022 14:46:27 GMT
accept-ranges: bytes
content-length: 340759
content-type: image/jpeg
x-cdn: Imperva
x-iinfo: 5-119309831-119310238 2NNN RT(1664289273839 3700) q(0 9 9 -1) r(10 10) U18
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/26/hae.png
107.154.160.154200 OK 11 kB URL HTTP/2 arabvu.org/images/2020/12/26/hae.png
IP 107.154.160.154:0
File type PNG image data, 190 x 190, 8-bit/color RGBA, non-interlaced\012- data
Hash 04e12feb64a3e4cc60775c1344c5bf96
c53b1ea3784875b396bb74c92e36748e8f4a4848
5d287873c514833c9736edbc77b7b105f7db1d09fccf6394dadd2a797c3b6fb8
GET /images/2020/12/26/hae.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 10617
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119286431 2NNN RT(1664289273839 3930) q(0 10 10 -1) r(11 11) U18
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/26/ed.png
107.154.160.154200 OK 6.7 kB URL HTTP/2 arabvu.org/images/2020/12/26/ed.png
IP 107.154.160.154:0
File type PNG image data, 190 x 190, 8-bit/color RGBA, non-interlaced\012- data
Hash 03c3e0a44398cbdaff14c063974d1326
6e322602aa9cab65f9845d928ee5f61fa439f8b8
1ce5cb366ac9cf487b287c4b81ab407de59def4597819886a94b093c8b5ce141
GET /images/2020/12/26/ed.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 6697
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119290594 2NNN RT(1664289273839 3939) q(0 10 10 -1) r(11 11) U18
X-Firefox-Spdy: h2
arabvu.org/images/2022/08/31/11_medium.jpg
107.154.160.154200 OK 372 kB URL HTTP/2 arabvu.org/images/2022/08/31/11_medium.jpg
IP 107.154.160.154:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 900x560, components 3\012- data
Size 372 kB (372199 bytes)
Hash e4dd90af29727b27208aad38750fa503
f619e31078e82a9ea809a039eb4e3545114d411d
cfbaee4f867cd85c5d0c7ab7866584ffac7e33d046249c724609376b3898f4ff
GET /images/2022/08/31/11_medium.jpg HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:38 GMT
server: Apache
last-modified: Wed, 31 Aug 2022 14:51:29 GMT
accept-ranges: bytes
content-length: 372199
content-type: image/jpeg
x-cdn: Imperva
x-iinfo: 5-119309831-119290871 2NNN RT(1664289273839 3698) q(0 7 7 -1) r(8 8) U18
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/26/wat.png
107.154.160.154200 OK 6.9 kB URL HTTP/2 arabvu.org/images/2020/12/26/wat.png
IP 107.154.160.154:0
File type PNG image data, 190 x 190, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e41877537f8cd54d34860ee0a3f1c01
14ea77ea82724498f27b1438cd202b57c64eee82
9941087cdeaab222ced690f17687d2c7cd9c2f63fa5e38709d0244ee80d6f5d8
GET /images/2020/12/26/wat.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 6913
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119310238 2NNN RT(1664289273839 3946) q(0 11 11 -1) r(12 12) U18
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/26/liv.png
107.154.160.154200 OK 11 kB URL HTTP/2 arabvu.org/images/2020/12/26/liv.png
IP 107.154.160.154:0
File type PNG image data, 190 x 190, 8-bit/color RGBA, non-interlaced\012- data
Hash 7f83037262b53930fd6cd34ff6a6c2f1
858d95587aaf152478429a8aefdaaa9b8afc3e4a
7af3433f9fb844c01cb4cdb4110a15814456f21beb3fb3130637782d50cde320
GET /images/2020/12/26/liv.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 11335
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119286431 2NNN RT(1664289273839 3951) q(0 11 11 -1) r(13 13) U18
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/26/prot.png
107.154.160.154200 OK 8.5 kB URL HTTP/2 arabvu.org/images/2020/12/26/prot.png
IP 107.154.160.154:0
File type PNG image data, 190 x 190, 8-bit/color RGBA, non-interlaced\012- data
Hash dbeeb6becc490f05da7c6b951f8f5891
54e7b27a4e90b7e8d30fe1557022c275bab759b4
5487477d7219f81704e0315141242db3ea651db6147dca8b285bbdbe4e72997e
GET /images/2020/12/26/prot.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 8450
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119290597 2NNN RT(1664289273839 3954) q(0 11 11 -1) r(13 13) U18
X-Firefox-Spdy: h2
arabvu.org/images/r-arrow.png
107.154.160.154404 Not Found 462 B URL HTTP/2 arabvu.org/images/r-arrow.png
IP 107.154.160.154:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3b58a4197a90ce28f053f853e9f5201a
1764aa95ccf139706beb229625b9d6d6f154bd5d
e63cc6fceab87ebcfc2e83b5d9354ef92bd45c582ac8202ff6d141f39ec17648
GET /images/r-arrow.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Thu, 23 Jun 2022 16:51:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 462
content-type: text/html
x-cdn: Imperva
x-iinfo: 5-119309831-119276435 2NNN RT(1664289273839 3702) q(0 11 11 -1) r(15 15) U11
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/26/rel.png
107.154.160.154200 OK 11 kB URL HTTP/2 arabvu.org/images/2020/12/26/rel.png
IP 107.154.160.154:0
File type PNG image data, 190 x 190, 8-bit/color RGBA, non-interlaced\012- data
Hash 075e806efb118a6e4bf5c7c0697300d9
f007a3d8271919470e97cc9931b1ff4201000a90
d34a0322ce71bbb3e0417500bc6dbf91fbfcc98e9b5b86fe668ddff5ea848c02
GET /images/2020/12/26/rel.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 11147
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119279338 2NNN RT(1664289273839 3959) q(0 12 12 -1) r(13 13) U18
X-Firefox-Spdy: h2
arabvu.org/images/2021/01/18/fnon.png
107.154.160.154200 OK 13 kB URL HTTP/2 arabvu.org/images/2021/01/18/fnon.png
IP 107.154.160.154:0
File type PNG image data, 190 x 190, 8-bit/color RGBA, interlaced\012- data
Hash 303affe76339c47fcb431829c60b4e1e
bf38b1278d63d0e7f1a6cf2ad37664b002d0b98d
5e1cfd05f0fd03f0f01a30d183f53747ca2f0f46327875e4796042ed9c739f15
GET /images/2021/01/18/fnon.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Mon, 18 Jan 2021 21:43:02 GMT
accept-ranges: bytes
content-length: 13401
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119290594 2NNN RT(1664289273839 3961) q(0 12 12 -1) r(14 14) U18
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/26/creat.png
107.154.160.154200 OK 8.2 kB URL HTTP/2 arabvu.org/images/2020/12/26/creat.png
IP 107.154.160.154:0
File type PNG image data, 190 x 190, 8-bit/color RGBA, non-interlaced\012- data
Hash 7649067f2fff97e67ba8f50fd5847466
b03e20ee8da699c8839bc09b51e6d9f269aed6c4
519a4ff26a0fe011540ead24ed50385a1db54b67c452796c490be10993e79030
GET /images/2020/12/26/creat.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 8247
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119310238 2NNN RT(1664289273839 3962) q(0 12 12 -1) r(13 13) U18
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/26/bi.png
107.154.160.154200 OK 6.8 kB URL HTTP/2 arabvu.org/images/2020/12/26/bi.png
IP 107.154.160.154:0
File type PNG image data, 190 x 190, 8-bit/color RGBA, non-interlaced\012- data
Hash 90c0e12639d0c9ec5c4496ae5d8c4c5d
9dd32d4a61bf0739e1462266463d18959fd4b372
ebc89c992ef070a9b28af1c2e78cad8021662889d53d78298ce01a8a4da278a9
GET /images/2020/12/26/bi.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 6761
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119290597 2NNN RT(1664289273839 3964) q(0 12 12 -1) r(14 14) U18
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/26/tu.png
107.154.160.154200 OK 6.7 kB URL HTTP/2 arabvu.org/images/2020/12/26/tu.png
IP 107.154.160.154:0
File type PNG image data, 190 x 190, 8-bit/color RGBA, non-interlaced\012- data
Hash 958b05dec49b4f6b2769dbfb81d150ae
52c913b1de155db3ea33d2ccc41396a237eed9e2
c165c5fd3aba1c8f5f497b60257f919b2ce8775ae28174936deb28034d0c01c0
GET /images/2020/12/26/tu.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 6664
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119279338 2NNN RT(1664289273839 3967) q(0 12 12 -1) r(15 15) U18
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/26/vo.png
107.154.160.154200 OK 11 kB URL HTTP/2 arabvu.org/images/2020/12/26/vo.png
IP 107.154.160.154:0
File type PNG image data, 190 x 190, 8-bit/color RGBA, non-interlaced\012- data
Hash 3753979b77c4870a9a8eea4d2a4fb7d9
e4affb3f6ca663a8df0971ceca279d772bd9fcc5
87321aae7971ee0322a0a7431e39d2ae38c6bbad8b29ca6b98d761552423fde1
GET /images/2020/12/26/vo.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 10796
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119276435 2NNN RT(1664289273839 3966) q(0 12 12 -1) r(15 15) U18
X-Firefox-Spdy: h2
arabvu.org/images/2020/12/26/cont.png
107.154.160.154200 OK 11 kB URL HTTP/2 arabvu.org/images/2020/12/26/cont.png
IP 107.154.160.154:0
File type PNG image data, 190 x 190, 8-bit/color RGBA, non-interlaced\012- data
Hash 64be72e925ab8400b200375e26077ada
db49935a918e49608be66b9c7a393e759c72b62e
3de4a496d9db960d044a208b29db4c5b33bcd55127f447eb2ba0d5da6ae9b8f9
GET /images/2020/12/26/cont.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
accept-ranges: bytes
content-length: 11228
content-type: image/png
x-cdn: Imperva
x-iinfo: 5-119309831-119290871 2NNN RT(1664289273839 3967) q(0 13 13 -1) r(15 15) U18
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4538701cf9bc34d908f50370beb922f4
df141b9c3ec626ecaba7c1899073a48b811c4113
61497b93eb237687a8fff5845a7a81aff2f2f53dc56f2d0818bfb98dd1256d6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4538701cf9bc34d908f50370beb922f4
df141b9c3ec626ecaba7c1899073a48b811c4113
61497b93eb237687a8fff5845a7a81aff2f2f53dc56f2d0818bfb98dd1256d6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4538701cf9bc34d908f50370beb922f4
df141b9c3ec626ecaba7c1899073a48b811c4113
61497b93eb237687a8fff5845a7a81aff2f2f53dc56f2d0818bfb98dd1256d6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/bd1343fa/www-player.css
216.58.207.206200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/bd1343fa/www-player.css
IP 216.58.207.206:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 52e6e075466c4c0a464e509e02a7f217
b2de10e75e792445216f149fe7c3602eb946601b
dca625ea026b319da42e276e76548b11263bb07ecd5f73a8f97463f33778309b
GET /s/player/bd1343fa/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/WPBvMjNicck
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49739
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 15:44:38 GMT
expires: Tue, 26 Sep 2023 15:44:38 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 00:16:54 GMT
content-type: text/css
age: 82202
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4538701cf9bc34d908f50370beb922f4
df141b9c3ec626ecaba7c1899073a48b811c4113
61497b93eb237687a8fff5845a7a81aff2f2f53dc56f2d0818bfb98dd1256d6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 12:31:58 GMT
expires: Sun, 24 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 266562
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 00:48:31 GMT
expires: Sat, 23 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 395169
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
arabvu.org/images/banners/favicon.png
107.154.160.154200 OK 51 kB URL HTTP/2 arabvu.org/images/banners/favicon.png
IP 107.154.160.154:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 53e4d27cb239578ac171795b7f440d0c
fe57d9b304cd2b4515cc8fab072e621401743158
de86ec5f88f2ecec856410126d327e7b1d797e8ff0257b15853f0d98ad4d7cbe
GET /images/banners/favicon.png HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "35bc7b39"
last-modified: Tue, 05 Jan 2021 05:58:16 GMT
content-type: image/png
content-length: 50644
date: Tue, 27 Sep 2022 14:34:39 GMT
x-cdn: Imperva
x-iinfo: 5-119309831-119290871 2VNN RT(1664289273839 5668) q(0 0 0 -1) r(2 2)
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
arabvu.org/images/2022/07/17/main_medium.jpg
107.154.160.154200 OK 215 kB URL HTTP/2 arabvu.org/images/2022/07/17/main_medium.jpg
IP 107.154.160.154:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 900x560, components 3\012- data
Size 215 kB (215237 bytes)
Hash 517ecdf3e48a23df113d01c161900b6e
8138c564c07e9e2b2d33e10f0b3ec853b3c26aae
779f53770036436ffa35618d9487a8e4284161f20ed5cd9be7a8ca0e1c919871
GET /images/2022/07/17/main_medium.jpg HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:39 GMT
server: Apache
last-modified: Sun, 17 Jul 2022 13:32:59 GMT
accept-ranges: bytes
content-length: 215237
content-type: image/jpeg
x-cdn: Imperva
x-iinfo: 5-119309831-119286556 2NNN RT(1664289273839 3699) q(0 8 8 -1) r(12 12) U18
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 002d49bafbcc428a44fe523322ad9e05
b39aad0d1e941121f28af8f9b6d76f19216800d5
59a10c7762be219b689cd518aea4d034aa725c6a632b7f866989dcf984b5e007
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ce9fa7c0f8c668afd33a2fa65bf285e5
0333c06c16ea38e346cee9aad19965aa9d2729b1
50b7e5b9d9833fbd2c737642a86c63217f3296fb4bce6c7a876e4cde3dcddbd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
216.58.207.230200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 216.58.207.230:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 14:33:02 GMT
expires: Tue, 27 Sep 2022 14:48:02 GMT
cache-control: public, max-age=900
age: 98
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.130302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Tue, 27 Sep 2022 14:34:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 27 Sep 2022 14:34:41 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ce9fa7c0f8c668afd33a2fa65bf285e5
0333c06c16ea38e346cee9aad19965aa9d2729b1
50b7e5b9d9833fbd2c737642a86c63217f3296fb4bce6c7a876e4cde3dcddbd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 002d49bafbcc428a44fe523322ad9e05
b39aad0d1e941121f28af8f9b6d76f19216800d5
59a10c7762be219b689cd518aea4d034aa725c6a632b7f866989dcf984b5e007
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash de91bad38badd74fa47efa4696617a6e
8c59c0c21fbce526d8ede6641ad246109debd780
9447fe98352635ecff09b72bfd3d3c06f51ae99e61d756e3de2d2c7122ba9905
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:41 GMT
server: ESF
cache-control: private
content-length: 30738
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5b7b66f5886a12421c3f3970bbf49d5a
13a31565fb5b2f1e75d67ba1ce09dae339f1c0e8
3ed8ffa99cefdf81381912b426c0ab9091fb5888836665d9012435965f99feba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/UNMeoPQ8rtRt9hrMkVLrjVSzaMRKLPVY2pV-dxR9xRk.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/UNMeoPQ8rtRt9hrMkVLrjVSzaMRKLPVY2pV-dxR9xRk.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36059)
Hash 653ca66c61b84cbd83869ee18f017d75
90a6545ff9e57c4b7aead2902a6b490020062f8d
9a2bb3e8ba9e5b19e7d5ceef273a3ef848af3472f0e779f6764037e78dfdccea
GET /js/th/UNMeoPQ8rtRt9hrMkVLrjVSzaMRKLPVY2pV-dxR9xRk.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14218
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 05:09:23 GMT
expires: Thu, 21 Sep 2023 05:09:23 GMT
cache-control: public, max-age=31536000
age: 552318
last-modified: Tue, 13 Sep 2022 11:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5d5efe73351159009522167b1d6c48d9
560c6649f35d008448d0f6b33a9b2d728942c09e
ca4f232596c6a032d5309b54757b0a6dfbd47a95d31b28a2308ae4559f0886c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/WPBvMjNicck/hqdefault.webp
142.250.74.86200 OK 20 kB URL HTTP/2 i.ytimg.com/vi_webp/WPBvMjNicck/hqdefault.webp
IP 142.250.74.86:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bd94c8e08400bed6f0873d4fbec8e6e1
4c2b20799b5e6fabb0cf99b095ae608056e08781
09c911d10e53d6df521367c6e0fce5ac857e48cbc814458b22a4b5469d50cd45
GET /vi_webp/WPBvMjNicck/hqdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 19972
date: Tue, 27 Sep 2022 14:34:41 GMT
expires: Tue, 27 Sep 2022 16:34:41 GMT
cache-control: public, max-age=7200
etag: "1583266789"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d82a474dbb7f66ba5b1f0021fd2a0d30
c6da00410a9fa18014a9c704eaa4720409c26896
d72fecb5c7d9f617743fa0a7d82dcd029612ddb5ad75742f52e88dc8e6e06e5b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5be6f8def8b013c735911758dc3f60f0
9ad67fc687b291e3a3b98dfda0c93390d031cd33
67a5ea09db0ff6ee0f9d9feaf41d72299ceced1f4a8c5d8f7bc5e182e32a0d9f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash c5494775da4c18bf94870e81239d405b
a50e45603d6fc425eaeaab9dad53aeefec0b4819
f076490583f8412763e91a9ea4df838d8e31973250e3645c13e357181e898e37
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:41 GMT
server: ESF
cache-control: private
content-length: 30877
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AMLnZu-sTie_Cuapg9SFr7q-KNz3ZUArBD55JfgRHc5RPw=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.2 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu-sTie_Cuapg9SFr7q-KNz3ZUArBD55JfgRHc5RPw=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash faac29a013c4191116788e3083153082
982aa42de99dd3842647f0a8b1b5d7024f156fbb
44d467c2640c08c5c944aa673fda6c28e513d44ea07a9ab267de5e33ab0e5ec3
GET /ytc/AMLnZu-sTie_Cuapg9SFr7q-KNz3ZUArBD55JfgRHc5RPw=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1e0"
expires: Wed, 28 Sep 2022 14:34:41 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 27 Sep 2022 14:34:41 GMT
server: fife
content-length: 3216
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 722d1a372002b1ea3568ead24fb69052
8f3ccb1fc404a2cccec896fa487b0eeea62f3e3f
04331a2e85f9a76bfb5c695562f947aa88e9f29c3deedb0a7371d7498d3898cc
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:41 GMT
server: ESF
cache-control: private
content-length: 30720
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b6908b750175e1c2e2af86c77945ed11
ea6bc6f581500a0974977bbef6bd3432c181bc0f
1dde4f6f372d8e056a96129e101a31d04a0f97448c66df7175251060c6a8d0cd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 14:34:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 27 Sep 2022 14:34:42 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 27 Sep 2022 14:34:42 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b9b22db92705df13b661bd4a49b44008
596fd4349b2c345e69bfbc91ac70da98df249c4a
9daee03fbd6cf4329f457520dd40283fc39b15bb6c5d6ebf823a591aed7da1ef
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1159
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:42 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23c446c48fb2e34899009753ef237957
07ccbeb4ca63679a476f7b38077829dabd8ff4a0
7897d2beccdf5b1d20bc05202d56f9f0fe67b9886a9088047ba18c1c96a2454a
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1168
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:42 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 572e5e2bd0f69d474f80a96b7c01e933
660c1968abfbdd16cd07019679051ac0e5ad8df6
bc6e3adb62dbc59585a4294532e6c1117a736696018a2921492894a97ea4856f
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1175
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 27 Sep 2022 14:34:42 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27d324b1fb661c318aced98468501b3c
5c4ee294c98e8fc9312a7d481b6ec165494cf852
937296b5da48df0495ebd0cb3509b7c00059725c00c5b97f475ba2382a0e5437
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7998
x-amzn-requestid: beedf4d8-29c0-43c6-92d0-40af6b9ee9f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTibE5LoAMFXLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cc75-1be97f2a525b9a5e3146d4be;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:47:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: i8BwIohBNqfEavPXBqSWshg7G-WF9UkBBScnDcyH4qEYV9TzreLXWA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 22:03:29 GMT
age: 59474
etag: "5c4ee294c98e8fc9312a7d481b6ec165494cf852"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
arabvu.org/media/system/js/mootools-core.js?7d256abb4f3eba48cc31f9cf74a9a1e2
107.154.160.154200 OK 0 B URL HTTP/2 arabvu.org/media/system/js/mootools-core.js?7d256abb4f3eba48cc31f9cf74a9a1e2
IP 107.154.160.154:0
Analyzer Verdict Alert fortinet Malware
GET /media/system/js/mootools-core.js?7d256abb4f3eba48cc31f9cf74a9a1e2 HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Cookie: visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:37 GMT
server: Apache
last-modified: Tue, 09 Nov 2021 13:16:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
x-cdn: Imperva
x-iinfo: 5-119309831-119290597 2NNN RT(1664289273839 780) q(0 20 20 -1) r(24 24) U18
X-Firefox-Spdy: h2
www.youtube.com/embed/QZIZTMeNGVM
216.58.207.206200 OK 0 B URL HTTP/2 www.youtube.com/embed/QZIZTMeNGVM
IP 216.58.207.206:0
GET /embed/QZIZTMeNGVM HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 27 Sep 2022 14:34:40 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=d7rC_fvZyhk; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=HSYPTBDGuS4; Domain=.youtube.com; Expires=Sun, 26-Mar-2023 14:34:40 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+529; expires=Thu, 26-Sep-2024 14:34:40 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
arabvu.org/
107.154.160.154200 OK 0 B IP 107.154.160.154:0
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: arabvu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 27 Sep 2022 14:34:34 GMT
server: Apache
permissions-policy: interest-cohort=()
expires: Wed, 17 Aug 2005 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Tue, 27 Sep 2022 14:34:34 GMT
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=utf-8
set-cookie: bad42cae3868dcb50c2dd97ecb891d2d=ee5e3f934c8a7d79d4eb658976c150e2; path=/; HttpOnly
visid_incap_2683007=Re0nkUW9Qau1EmJkRQPdJvkJM2MAAAAAQUIPAAAAAABIwqEYblr1zEp87xF2vYoZ; expires=Tue, 26 Sep 2023 22:16:10 GMT; HttpOnly; path=/; Domain=.arabvu.org
incap_ses_282_2683007=si1yR5GIoFGbWEEcTN7pA/oJM2MAAAAABaCUHo0ma/UADNi4MgFgBA==; path=/; Domain=.arabvu.org
x-cdn: Imperva
x-iinfo: 5-119309831-119309839 NNNN CT(135 142 0) RT(1664289273839 32) q(0 0 3 0) r(4 6) U12
X-Firefox-Spdy: h2
www.youtube.com/embed/3EXcZBu9j_c
216.58.207.206200 OK 0 B URL HTTP/2 www.youtube.com/embed/3EXcZBu9j_c
IP 216.58.207.206:0
GET /embed/3EXcZBu9j_c HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 27 Sep 2022 14:34:40 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=UzskPO4-yLk; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=A1s7-RIVrXg; Domain=.youtube.com; Expires=Sun, 26-Mar-2023 14:34:40 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+021; expires=Thu, 26-Sep-2024 14:34:40 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/WPBvMjNicck
216.58.207.206200 OK 0 B URL HTTP/2 www.youtube.com/embed/WPBvMjNicck
IP 216.58.207.206:0
GET /embed/WPBvMjNicck HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 27 Sep 2022 14:34:40 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=FqkfK6V84Gc; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=M55EO44trkQ; Domain=.youtube.com; Expires=Sun, 26-Mar-2023 14:34:40 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+303; expires=Thu, 26-Sep-2024 14:34:40 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Anton:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Anton:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic&display=swap
IP 142.250.74.10:0
GET /css?family=Anton:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabvu.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 14:34:35 GMT
date: Tue, 27 Sep 2022 14:34:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2