r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6634
Expires: Thu, 01 Dec 2022 12:51:33 GMT
Date: Thu, 01 Dec 2022 11:00:59 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4745
Cache-Control: max-age=89365
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:00:59 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:50:24 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 10:18:08 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2571
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9611
Expires: Thu, 01 Dec 2022 13:41:10 GMT
Date: Thu, 01 Dec 2022 11:00:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: iIut6mQGamBbDCZOuhDsO1lHJSn+qjfW5dgKrPzrYChiQMBQMEQZy7G3Pt1MOUGH7Wjd7/KdVxA=
x-amz-request-id: 36RH4CKGNH7VVK1P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 10:45:38 GMT
age: 921
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:00:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 10:08:56 GMT
cache-control: public,max-age=3600
age: 3124
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4789
Cache-Control: max-age=170738
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:00 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:26:38 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.43.58.150101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.58.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hIfWH0jybBh0OoU+zKiWLQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FjY+DPMmDS/F8S7KUtBbuRMvyMM=
bacompany.com.sa/
162.144.176.157301 Moved Permanently 0 B IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 01 Dec 2022 11:00:59 GMT
Server: nginx/1.23.2
Content-Type: text/html; charset=UTF-8
Content-Length: 0
X-Redirect-By: WordPress
Location: http://bacompany.com.sa/en/
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
X-Server-Cache: true
X-Proxy-Cache: EXPIRED
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Raleway%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CTitillium+Web%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%7CJosefin+Sans%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i&subset=latin%2Clatin-ext
142.250.74.106200 OK 1.9 kB URL HTTP/2 fonts.googleapis.com/css?family=Raleway%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CTitillium+Web%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%7CJosefin+Sans%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i&subset=latin%2Clatin-ext
IP 142.250.74.106:0
Hash e84d04bb7449f1cdd9b7aec2195f1899
cb16c3e2a736d4a548890a052d8302ff7b725898
b79ee8d251bf5ce3483600893aa3b748d601e735ce5943f5e544370e3c657855
GET /css?family=Raleway%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CTitillium+Web%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%7CJosefin+Sans%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bacompany.com.sa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 11:01:01 GMT
date: Thu, 01 Dec 2022 11:01:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bacompany.com.sa/en/
162.144.176.157200 OK 59 kB IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4333), with CRLF, LF line terminators
Hash 8c332163ce90ae3da816d21ce34ef8dc
18c2acbb6088bfff6c24c565ed8c9f944fbbefd4
aaba15a9160c38dc1f7a116a28cde1a8661e8aabed1fa18c76dbd00f54f0c779
Analyzer Verdict Alert fortinet Phishing
GET /en/ HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:00:59 GMT
Server: nginx/1.23.2
Content-Type: text/html; charset=UTF-8
Link: <http://bacompany.com.sa/en/wp-json/>; rel="https://api.w.org/", <http://bacompany.com.sa/en/wp-json/wp/v2/pages/320>; rel="alternate"; type="application/json", <http://bacompany.com.sa/en/>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
X-Server-Cache: true
X-Proxy-Cache: HIT
Transfer-Encoding: chunked
bacompany.com.sa/wp-content/plugins/bdthemes-prime-slider-lite/assets/css/prime-slider-site.css?ver=3.2.0
162.144.176.157200 OK 2.7 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/bdthemes-prime-slider-lite/assets/css/prime-slider-site.css?ver=3.2.0
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15861), with no line terminators
Hash e9cbe9e45cb7fc14db9e523e724ce359
46ee21e28072777479c4e30b4fae840439704a17
1372052da2c69a36341b0e8018c9d41bf6104ebb880405da729407ece20d358f
GET /wp-content/plugins/bdthemes-prime-slider-lite/assets/css/prime-slider-site.css?ver=3.2.0 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Wed, 16 Nov 2022 14:05:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 2745
Content-Type: text/css
bacompany.com.sa/wp-content/plugins/bdthemes-prime-slider-lite/assets/css/bdt-uikit.css?ver=3.2
162.144.176.157200 OK 21 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/bdthemes-prime-slider-lite/assets/css/bdt-uikit.css?ver=3.2
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 67a740f5fbe15e75223e8d1a0cc0b5de
366b318da0f009fefb37daded8f3abd5983b7e53
d72aa72acf5329dee7c5c1ca75fb75a4a325a8016a4e27a2e9b41c1507709a52
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bdthemes-prime-slider-lite/assets/css/bdt-uikit.css?ver=3.2 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 14:05:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Transfer-Encoding: chunked
Content-Type: text/css
bacompany.com.sa/wp-includes/css/dist/block-library/style.min.css?ver=5.6.10
162.144.176.157200 OK 10 kB URL HTTP/1.1 bacompany.com.sa/wp-includes/css/dist/block-library/style.min.css?ver=5.6.10
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (27525)
Hash 0b646a55f0ebc37cd4ae2cce50bd1179
0b12c27e92d81610f17b5ee987d4b18750cfb64b
54ef42e9b72647708f504fd440238e52fa06ce13f525e475c887bd684129ec9a
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.6.10 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sun, 07 Mar 2021 21:28:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 10377
Content-Type: text/css
bacompany.com.sa/wp-content/plugins/translatepress-multilingual/assets/css/trp-language-switcher.css?ver=1.9.7
162.144.176.157200 OK 822 B URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/translatepress-multilingual/assets/css/trp-language-switcher.css?ver=1.9.7
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 6ce64bae790b3bf78a4c93b55028bd4c
6560a1ba4a0407336777b5554c52004231f4b8c2
f5e80f911c9fa876a071912a463e12c530a151dbb57ab61e25e7893817e2c56f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/translatepress-multilingual/assets/css/trp-language-switcher.css?ver=1.9.7 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sat, 03 Apr 2021 10:56:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 822
Content-Type: text/css
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 1b6ed7424043055f5dc644164a720909
bb270929e84564ffd8e500bdb094d2858d8fc56b
7843c0e977433e1c8e1a781b0b292bbd221de07176c900eff670b47ef126be3e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=101290
Date: Thu, 01 Dec 2022 11:01:01 GMT
Etag: "63875f50-1d7"
Expires: Fri, 02 Dec 2022 15:09:11 GMT
Last-Modified: Wed, 30 Nov 2022 13:49:04 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3tvK1QWOh8hUSnYSe_PmFP41tTWrxhYAjDXGXMSNduUAPUWd8iZ2zA==
Age: 4807
bacompany.com.sa/wp-content/plugins/wp-sms/assets/css/subscribe.css?ver=5.8.4
162.144.176.157200 OK 2.0 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/wp-sms/assets/css/subscribe.css?ver=5.8.4
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6696), with no line terminators
Hash 3d69b38543d43d53685f66a15d242495
23deb6215bc18f33fc10bcb9d25b98608b2f82d3
2398638ba18d33bad7dd0461934458ef4563044ab3da7c0d9da7276cae97e91f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-sms/assets/css/subscribe.css?ver=5.8.4 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Thu, 17 Nov 2022 13:02:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 2018
Content-Type: text/css
bacompany.com.sa/wp-content/themes/theratio/css/bootstrap.css?ver=4.0
162.144.176.157200 OK 3.5 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/css/bootstrap.css?ver=4.0
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11782), with CRLF line terminators
Hash d2706a72ebeb6e878895a267cc28e86b
d9edd27637dbf4ab242e98d9ed218232f7344f61
d0ab012ac15c1a5631d5aa4e7ffd4648bd1006a4085999b01d0647555fc0096b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/css/bootstrap.css?ver=4.0 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 3461
Content-Type: text/css
bacompany.com.sa/wp-content/themes/theratio/css/flaticon.css?ver=5.6.10
162.144.176.157200 OK 798 B URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/css/flaticon.css?ver=5.6.10
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash efaa433cea86c75c2ad3c20c12083496
fdad1b1e9e166af67ca4d62804677a8b62877af0
610bde11539473582a07a304a4d064f6d960380080bbfb4b957d794eb6a16e02
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/css/flaticon.css?ver=5.6.10 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 798
Content-Type: text/css
bacompany.com.sa/wp-content/themes/theratio/css/font-awesome.min.css?ver=5.6.10
162.144.176.157200 OK 12 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/css/font-awesome.min.css?ver=5.6.10
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (56940), with CRLF line terminators
Hash a6036f520673125b6fa56ed1ce441404
a70a5ae02d5b2810bfd1b9117f496209e718543d
d37fabbe37e68a8592e4c43aed9ca06e8b2bc0346eb20fec94fb593d6694d23b
GET /wp-content/themes/theratio/css/font-awesome.min.css?ver=5.6.10 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 12372
Content-Type: text/css
bacompany.com.sa/wp-content/themes/theratio/css/swiper.min.css?ver=5.6.10
162.144.176.157200 OK 4.8 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/css/swiper.min.css?ver=5.6.10
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13411), with CRLF line terminators
Hash 83f7af15665f4ba8a4910bb066a9e822
4362147b085649498d1add94dff907a36a8fd7dd
03eea7823e69eab613f2df1fb4a6396a9b36c161cc0b9f2e508147a9e0f3a596
GET /wp-content/themes/theratio/css/swiper.min.css?ver=5.6.10 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 4788
Content-Type: text/css
bacompany.com.sa/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4
162.144.176.157409 Conflict 83 B URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 409 Conflict
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
bacompany.com.sa/wp-content/themes/theratio/css/lightgallery.css?ver=5.6.10
162.144.176.157200 OK 6.0 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/css/lightgallery.css?ver=5.6.10
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 7c53778530d573c0199ca89ac425a7f6
0ad34d7b42254bec1e30bb13e7b12b9e4d85244c
f95f3330c5c2ed647d4b882e338d1a9d01799dcef2c3aded3729c375a4e5781a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/css/lightgallery.css?ver=5.6.10 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 6031
Content-Type: text/css
bacompany.com.sa/wp-content/themes/theratio/css/royal-preload.css?ver=5.6.10
162.144.176.157200 OK 1.8 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/css/royal-preload.css?ver=5.6.10
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 407347916397ef56504480e83f428e7a
cc9e3b8ed033353116e3f619a4eaba9d75349825
cba11dfdcfb842d0e09a700f93d2fa73b174370c4241cfaf0744d842bed771b3
GET /wp-content/themes/theratio/css/royal-preload.css?ver=5.6.10 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 1773
Content-Type: text/css
bacompany.com.sa/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
162.144.176.157200 OK 4.0 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19082)
Hash 1a51c193793d105fc6aaddfc3bc05349
238e509973276daa145be273af1aba0fbb3801bf
69e8578f795564941f826ab314ab57c83da7fb6ca7d9221c8df5f1e9081ae6e3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 3978
Content-Type: text/css
bacompany.com.sa/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.4
162.144.176.157200 OK 1.6 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.4
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13766)
Hash 62a3e8ede9a61445c50a10e5181e7680
9bca5c0ec7116d80be7cb876ff794810e147bab0
af9af8e94ad196859761c5216e8cf46e4e7dc95d7a89a94c91e4ad39a85d6367
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.6.4 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 1608
Content-Type: text/css
bacompany.com.sa/wp-content/uploads/elementor/css/post-50237.css?ver=1650798658
162.144.176.157200 OK 400 B URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/elementor/css/post-50237.css?ver=1650798658
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1253), with no line terminators
Hash fe713a40d6a124d1cbe7b8c2e8a5e7d1
9c4d57c0e00f761ff5061f1b994186b7722fec93
b278882408d8e7002049e7565157c0ac804e2f09f15a0b9ce001d1f44df66e7e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-50237.css?ver=1650798658 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Sun, 24 Apr 2022 11:10:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 400
Content-Type: text/css
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9098
Expires: Thu, 01 Dec 2022 13:32:39 GMT
Date: Thu, 01 Dec 2022 11:01:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9098
Expires: Thu, 01 Dec 2022 13:32:39 GMT
Date: Thu, 01 Dec 2022 11:01:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9098
Expires: Thu, 01 Dec 2022 13:32:39 GMT
Date: Thu, 01 Dec 2022 11:01:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9098
Expires: Thu, 01 Dec 2022 13:32:39 GMT
Date: Thu, 01 Dec 2022 11:01:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 9d34c42b-ba0c-498f-8f99-d4ab527ffa89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzMdHXNIAMFgaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbe9-376846f31dc9b995797cbd18;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:25 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DngCuOTO9fQAwWe_ip6EtBcgruigZN6Bl1_v5BHM2dsWlhqCXCL3gg==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:33 GMT
age: 47728
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fd5f7a9e04d27654062b3e18b8aecca
07fafbd614cdb49f20bceea29d5e684725d3bdf6
0cb64a9a33f66b92eed5a591b6c368f3d74363941d8876e553a8ea6aaa547590
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4199
x-amzn-requestid: d7983896-c4a5-4133-9b0e-51ac412cf732
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZttXFcZIAMFmJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386f655-139cd6a82eaa934d5d411029;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 06:21:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 91_Pv2sUA4286BEZXTKFctgZOrzWy6VWFDGiUV3_p_QnyckRDFb-lw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:51:29 GMT
age: 47372
etag: "07fafbd614cdb49f20bceea29d5e684725d3bdf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: 4823cf63-98eb-40d3-bb8b-e09cd2262f36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7SqHjYIAMF8xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c10-316b213c33ce9bc2355c0900;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tK4wl-g5kcUhVFE3iZGILhZhZSsaMzQD9JTBHj1JXV95yXs_e3gMGw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 13:21:34 GMT
age: 77967
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CJiSRzIK7-rQE81gaP2We0LhgKX1YmuJKEGYEqW34Bm1KMx6NB8yhQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 04:29:19 GMT
age: 23502
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash acffcb88ce68b2d70c9c046a7b5a4aa8
cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1
692d782ac1d812de6dadbcfe46034b6b5d8bbd586e56beedd96dc4d65445dd4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12035
x-amzn-requestid: eef7d417-c6ca-4e3f-ac00-1425f3d5c4a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0TSGHDIAMF_jA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdae-467c79a805dfb5622687f628;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:39:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: haFJ2LZecbT4HRbkvcaZxR4SAIx5cGxNyghKiDOJVX6xDkPwzc2wNQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:34 GMT
age: 47727
etag: "cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gsn5uUFEzDZDOMPTvW9UQxtccvRfJKUM4eJ8U99jvUGzNIKkF9SzeA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:20 GMT
age: 47501
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bacompany.com.sa/wp-content/uploads/elementor/css/global.css?ver=1650799493
162.144.176.157200 OK 1.1 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/elementor/css/global.css?ver=1650799493
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6697)
Hash 7925a5df5ac6e4c7abb8d166d2d59e79
5a01c01c75e565a3248d9736b1dbf3d8e538034c
22d0e4d10ed3b16e146e95047de05f9033bdd9c8b646ee9ff3fb7b60ceb6035c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/global.css?ver=1650799493 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Sun, 24 Apr 2022 11:24:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 1122
Content-Type: text/css
bacompany.com.sa/wp-content/uploads/elementor/css/post-320.css?ver=1650799494
162.144.176.157200 OK 11 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/elementor/css/post-320.css?ver=1650799494
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9871167bbcfa81cf3bebe7cb81ad37b8
cdc55d910e6ba7962eb0b6f51bf4c142d4883e61
ca0a8d474744841c1a7cde3c08bb6c000f0788a1a5cdcbcdc9db50b97f19a64b
GET /wp-content/uploads/elementor/css/post-320.css?ver=1650799494 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Sun, 24 Apr 2022 11:24:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 10694
Content-Type: text/css
bacompany.com.sa/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.144.176.157200 OK 4.6 kB URL HTTP/1.1 bacompany.com.sa/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Sun, 07 Mar 2021 21:28:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 4618
Content-Type: application/javascript
bacompany.com.sa/wp-content/themes/theratio/style.css?ver=5.6.10
162.144.176.157200 OK 44 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/style.css?ver=5.6.10
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash a0484563d5170f6b54c5a881d2786cca
15442de4c192c00ebc7854423a0306005d5fc3c8
3e97a9c68b575bce2c8b6028bc94cefd56e30456f949a4c965ee177c2f30bc94
GET /wp-content/themes/theratio/style.css?ver=5.6.10 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Transfer-Encoding: chunked
Content-Type: text/css
bacompany.com.sa/wp-content/themes/theratio/js/myloadmore.js?ver=1669889623
162.144.176.157200 OK 1.1 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/js/myloadmore.js?ver=1669889623
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type assembler source, ASCII text, with CRLF line terminators
Hash 5f0d0a63eed66c344e16b8bf952115c0
b1f9890911ae9bb71b0d994a303c9ddaffe1a908
097eeec71f08f4500ac9de58a786116a667ab5ab4744970c4e1ca35c107e95a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/myloadmore.js?ver=1669889623 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 1124
Content-Type: application/javascript
bacompany.com.sa/wp-content/uploads/elementor/css/post-2831.css?ver=1650799494
162.144.176.157200 OK 890 B URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/elementor/css/post-2831.css?ver=1650799494
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5019), with no line terminators
Hash d7318a2469a74e18f7dc3d9e45844ee7
f8df7f88a2dae9ccfd7b6e9128729debcb02056f
17a1e4cad5c6bc72ab11505914d78a29285381228636b2ce6f137f80718cd364
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2831.css?ver=1650799494 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Sun, 24 Apr 2022 11:24:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 890
Content-Type: text/css
bacompany.com.sa/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
162.144.176.157200 OK 39 kB URL HTTP/1.1 bacompany.com.sa/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65451)
Hash 42e9fa1757bc5326671ba7eae0acd9ed
67aef482c8b9b09528525d6388e4c3ef1fc711c7
09d42875fc76ec41061a4cae4e26c6e7e043bc7934ab7cf8184801d5c754ee38
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Last-Modified: Sun, 07 Mar 2021 21:28:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Transfer-Encoding: chunked
Content-Type: application/javascript
bacompany.com.sa/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.4
162.144.176.157200 OK 31 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.4
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65497)
Hash d7e1cf95db237cef4810e5ffac863445
6f507cd81ea1aaa0a1910f27311c4d67443cb72f
408eb0136e179673c5810c4eec1156526ba91a2faa297bef229b8ab524bb4e53
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.6.4 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:01 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Transfer-Encoding: chunked
Content-Type: text/css
bacompany.com.sa/wp-content/plugins/bdthemes-prime-slider-lite/assets/css/ps-dragon.css?ver=3.2.0
162.144.176.157200 OK 1.9 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/bdthemes-prime-slider-lite/assets/css/ps-dragon.css?ver=3.2.0
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7461), with no line terminators
Hash 75366ed10b7acb7f4e43a2d0d4a69a77
a0b957bf58725a7683cd531c674635e4f005cc77
051b56465331a312d7b38319547b7a391df7ad10e579095ebe3366156bd75b6b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bdthemes-prime-slider-lite/assets/css/ps-dragon.css?ver=3.2.0 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 14:05:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 1908
Content-Type: text/css
bacompany.com.sa/wp-content/uploads/elementor/css/post-1334.css?ver=1650799495
162.144.176.157200 OK 406 B URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/elementor/css/post-1334.css?ver=1650799495
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1514), with no line terminators
Hash 0a3ed96a2b4b79b4414521dd66bf26b7
dc652357ada43a2dd93c6ca6d4cf818d256161dd
1ee32d781ebe35c428f9450dd350ad9c278b639e8780316203ef7c0392dead7f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-1334.css?ver=1650799495 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Sun, 24 Apr 2022 11:24:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 406
Content-Type: text/css
bacompany.com.sa/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.4
162.144.176.157200 OK 3.0 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.4
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10019)
Hash c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.4 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 2997
Content-Type: text/css
bacompany.com.sa/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
162.144.176.157200 OK 13 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57726)
Hash dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 12577
Content-Type: text/css
bacompany.com.sa/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4
162.144.176.157200 OK 42 kB URL HTTP/1.1 bacompany.com.sa/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (34729), with NEL line terminators
Hash 91b91e83fb0250b824b8c2e5a8856131
8f8eed572c0212659299c663deb5d78fa75f8969
79379170e07b70895b22058df39eec6194f34dfeccc8bcc1a215c06a99c4b189
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Sat, 12 Sep 2020 20:35:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Transfer-Encoding: chunked
Content-Type: application/javascript
bacompany.com.sa/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
162.144.176.157200 OK 308 B URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 308
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/josefinsans/v25/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
142.250.74.35200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/josefinsans/v25/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 26592, version 1.0\012- data
Hash c2d66029cf6ae68a19e1398fc02feda6
c37e5907e49d2ed5b11f59841a3d16c911da7a5c
3701f4ae604d8fccb4ddca393e076a456aebfb06c1a9d94c1c13089293f55716
GET /s/josefinsans/v25/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bacompany.com.sa
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26592
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 22:37:52 GMT
expires: Sun, 26 Nov 2023 22:37:52 GMT
cache-control: public, max-age=31536000
age: 390190
last-modified: Mon, 11 Jul 2022 20:56:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2
142.250.74.35200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 12372, version 1.0\012- data
Hash 0ef99cf07a2a261ab43d5dc1937ffb27
bd39f9cd13ef2a6f912dcba8fa916fc67b4a19d9
557f6d0883db85be712c3a77baa38875ddf99ecbdfd6fec98e5c0b1f7a0e1532
GET /s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bacompany.com.sa
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 08:32:58 GMT
expires: Fri, 01 Dec 2023 08:32:58 GMT
cache-control: public, max-age=31536000
age: 8884
last-modified: Wed, 27 Apr 2022 16:19:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2
142.250.74.35200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 11796, version 1.0\012- data
Hash 8d4079c3aa4f01e6d9bbd4f1bbcdf114
52ab47c062d0bfdbd34dbd31784008bd0e4c4227
d5c1172f24f4f49f780c65cf5be897527fd08f3662a2ba8db0cfe0057d92e367
GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bacompany.com.sa
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 06:33:22 GMT
expires: Sat, 25 Nov 2023 06:33:22 GMT
cache-control: public, max-age=31536000
age: 534460
last-modified: Wed, 27 Apr 2022 15:47:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bacompany.com.sa/wp-includes/js/dist/i18n.min.js?ver=9e36b5da09c96c657b0297fd6f7cb1fd
162.144.176.157200 OK 4.1 kB URL HTTP/1.1 bacompany.com.sa/wp-includes/js/dist/i18n.min.js?ver=9e36b5da09c96c657b0297fd6f7cb1fd
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 34afdc7ac7d613d4a986a2c8b0fdaafa
9055d4dcef6784bd411098a779d639627441e77a
4acde3c0b30d8116901cdcf457b8e9fefa0726a9a2d8f24d963a14ff5dfd2462
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=9e36b5da09c96c657b0297fd6f7cb1fd HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Thu, 09 Sep 2021 14:11:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 4051
Content-Type: application/javascript
bacompany.com.sa/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.21
162.144.176.157200 OK 29 kB URL HTTP/1.1 bacompany.com.sa/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.21
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4143)
Hash d90da23f9f06faffa4e7109590df47e4
6eab74ce304ebb8266d775d1c7b585787e699e39
cd0b2bb38e756d9d6ab48ba159fa1ac13cf43718fb803430c98f54545097e95d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.21 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Thu, 09 Sep 2021 14:11:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Transfer-Encoding: chunked
Content-Type: application/javascript
fonts.gstatic.com/s/raleway/v28/1Ptsg8zYS_SKggPNyCg4TYFq.woff2
142.250.74.35200 OK 49 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptsg8zYS_SKggPNyCg4TYFq.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 48620, version 1.0\012- data
Hash 8b3f45fbebe40f151e3bdadf9062f2c6
d4b9145fb8346c6442cc946bc25da699dd035e0e
4defd36147167542db6c6ac44452d3784f51bf7f124128fe5f4581bbdb8d2ccc
GET /s/raleway/v28/1Ptsg8zYS_SKggPNyCg4TYFq.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bacompany.com.sa
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:30:13 GMT
expires: Tue, 28 Nov 2023 21:30:13 GMT
cache-control: public, max-age=31536000
age: 221449
last-modified: Mon, 18 Jul 2022 19:45:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2
142.250.74.35200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 12136, version 1.0\012- data
Hash 5d7c6bb8fd4fc992c54e596ab7433d5d
35fd6e4c125235cb7f9aa6e297da4b64ae45b06a
dd870101ad4e95d687a2eb734707b0dd7c20808f76d7be77a71a5d13cf99401c
GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bacompany.com.sa
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12136
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:42:58 GMT
expires: Wed, 29 Nov 2023 15:42:58 GMT
cache-control: public, max-age=31536000
age: 155884
last-modified: Wed, 27 Apr 2022 15:39:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
142.250.74.35200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bacompany.com.sa
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:08:51 GMT
expires: Tue, 28 Nov 2023 21:08:51 GMT
cache-control: public, max-age=31536000
age: 222731
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bacompany.com.sa/wp-includes/js/dist/url.min.js?ver=1b4bb2b3f526a1db366ca3147ac39562
162.144.176.157200 OK 5.8 kB URL HTTP/1.1 bacompany.com.sa/wp-includes/js/dist/url.min.js?ver=1b4bb2b3f526a1db366ca3147ac39562
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13816)
Hash 0d57ad4484a9f444f288f807bf6d1728
5a8874e78b49a1e85343db40a20846ec2c753662
b4fde66eb98ceb95fe555785e05617102d081c1431357f6950054187a5918217
GET /wp-includes/js/dist/url.min.js?ver=1b4bb2b3f526a1db366ca3147ac39562 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Thu, 09 Sep 2021 14:11:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 5757
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
theratio.s3.amazonaws.com/images/logo-footer.svg
52.217.195.89200 OK 4.0 kB URL HTTP/1.1 theratio.s3.amazonaws.com/images/logo-footer.svg
IP 52.217.195.89:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9cbe9ab5b80a4b619be8758336ee17e2
9f4348a33d55f213ecd2e103414463cb0e6d1a62
427f567d432d01753ed50069f78fb1ac59dd6849e0a42ab4b3b72c46cefe0645
GET /images/logo-footer.svg HTTP/1.1
Host: theratio.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bacompany.com.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: WR0EVTE98X8Tj4tpxwA0Vnid8zcLmXV8mFvpEHBHYibv1HDS0WoNHCYtYnm47T0cVFFOn2sB14I=
x-amz-request-id: 8WTK559TNSETXPZC
Date: Thu, 01 Dec 2022 11:01:03 GMT
Last-Modified: Thu, 09 Jul 2020 08:09:08 GMT
ETag: "9cbe9ab5b80a4b619be8758336ee17e2"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 3971
bacompany.com.sa/wp-includes/js/dist/hooks.min.js?ver=d0d9f43e03080e6ace9a3dabbd5f9eee
162.144.176.157200 OK 2.3 kB URL HTTP/1.1 bacompany.com.sa/wp-includes/js/dist/hooks.min.js?ver=d0d9f43e03080e6ace9a3dabbd5f9eee
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6173)
Hash a82621fa653ca5f5721a1aee8afae4ca
4d9c0520f531f97ec0f3933ad90b56997d715ba3
6202b77089ace416848ba63744a2a7d16b713f69976a28cf36677cec9abaffba
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=d0d9f43e03080e6ace9a3dabbd5f9eee HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Thu, 09 Sep 2021 14:11:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 2277
Content-Type: application/javascript
bacompany.com.sa/wp-includes/js/dist/api-fetch.min.js?ver=c207d2d188ba8bf763f7acd50b7fd5a9
162.144.176.157200 OK 5.0 kB URL HTTP/1.1 bacompany.com.sa/wp-includes/js/dist/api-fetch.min.js?ver=c207d2d188ba8bf763f7acd50b7fd5a9
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12468)
Hash b12de6bfe8df41a6738b58ed2f302bd4
e309081617caaa7dd683ecd409fbaef3dec0801e
2da08b36f09a8ab34a17f9e9624da255f842b6490e276b8b6d096a7f4a96b5f6
GET /wp-includes/js/dist/api-fetch.min.js?ver=c207d2d188ba8bf763f7acd50b7fd5a9 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Thu, 09 Sep 2021 14:11:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 5039
Content-Type: application/javascript
bacompany.com.sa/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4
162.144.176.157409 Conflict 83 B URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 409 Conflict
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
bacompany.com.sa/wp-content/themes/theratio/js/mousewheel.min.js?ver=20180910
162.144.176.157200 OK 1.3 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/js/mousewheel.min.js?ver=20180910
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2609), with CRLF line terminators
Hash b583e6596ff54fa311482d3a1d48cfca
2fde0e0c60f64f32dd011a90128f7bd36c01aaf3
9eb3c919658cf87ccf26825687edbdbe176fb627423dd77dab50eac8ac071e7c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/mousewheel.min.js?ver=20180910 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 1306
Content-Type: application/javascript
bacompany.com.sa/wp-content/themes/theratio/js/royal_preloader.min.js?ver=1.0
162.144.176.157200 OK 3.1 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/js/royal_preloader.min.js?ver=1.0
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (550), with CRLF line terminators
Hash 9b28367d12c12704cf9f8ea8425c8afa
5d1ef195af155609fa142ff72656262eebe51026
0d0e4f81ef1379a4495263351d0624f07e209077e23a38750c6e6fd6b468fe08
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/royal_preloader.min.js?ver=1.0 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 3099
Content-Type: application/javascript
bacompany.com.sa/wp-content/themes/theratio/js/jquery.isotope.min.js?ver=20190829
162.144.176.157200 OK 13 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/js/jquery.isotope.min.js?ver=20190829
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32019), with CRLF line terminators
Hash 9e4c7c84c5c37bb9020c65610f5bcb20
4a701612443fa4891f711ba88fc6a298deabf82d
806ea2ffabf83d4c253dfbd74b829931c61d1852ecb50b62798c036cb53d59df
GET /wp-content/themes/theratio/js/jquery.isotope.min.js?ver=20190829 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 13113
Content-Type: application/javascript
bacompany.com.sa/wp-content/themes/theratio/js/swiper.min.js?ver=20200317
162.144.176.157200 OK 47 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/js/swiper.min.js?ver=20200317
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65268), with CRLF line terminators
Hash 6be3d3a28a63141b4e4fa8283ffd3251
74dd520ebedb2b7789b4655babd53a8a9ab188ae
44aec44bfc53107cb2a9c0c357a70505121bc066f5065e5c7711c117274a004c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/swiper.min.js?ver=20200317 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Transfer-Encoding: chunked
Content-Type: application/javascript
bacompany.com.sa/wp-content/themes/theratio/js/jquery.countdown.min.js?ver=20180910
162.144.176.157200 OK 701 B URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/js/jquery.countdown.min.js?ver=20180910
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1156)
Hash 62d83965852795d1d0d8847c12ea54e7
1b516ab2be46f6df17675cfc347673164f5a25e2
578f34d3b26b494eb6ee5f575933903899869d3e1b862df28319c5c80d7ae2f5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/jquery.countdown.min.js?ver=20180910 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 701
Content-Type: application/javascript
bacompany.com.sa/wp-content/themes/theratio/js/before-after.js?ver=20180910
162.144.176.157200 OK 6.8 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/js/before-after.js?ver=20180910
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 5e211cc4d93635b36498186572c120ce
423b16ee0abfcb74ffafa6275dddbddfec0e1a6f
b16bbce5cf699490d65dd1370c3609c238af86180683b504c693c8f35809e277
GET /wp-content/themes/theratio/js/before-after.js?ver=20180910 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 6828
Content-Type: application/javascript
bacompany.com.sa/wp-content/themes/theratio/js/elementor.js?ver=20180910
162.144.176.157200 OK 7.1 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/js/elementor.js?ver=20180910
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 63c7679339a4364f53f6468d43736199
4d820fd9300bac36f7275c7c0e907b7957ceecc5
13efb302f0018c66618b76d5546f78c044d4958345dfbeff287035a02162137a
GET /wp-content/themes/theratio/js/elementor.js?ver=20180910 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 7107
Content-Type: application/javascript
bacompany.com.sa/wp-content/themes/theratio/js/elementor-header.js?ver=20200317
162.144.176.157200 OK 894 B URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/js/elementor-header.js?ver=20200317
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 525a206723e7fd4e430d554682f22afb
098122cd60da227b69436c6bf892f7473fa80bec
ffbb747095cc1b4a97e2a9fd60494b4f1444ac1b5838316d2d5669c0df5ca667
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/elementor-header.js?ver=20200317 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 894
Content-Type: application/javascript
bacompany.com.sa/wp-content/themes/theratio/js/easypiechart.min.js?ver=20190829
162.144.176.157200 OK 1.7 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/js/easypiechart.min.js?ver=20190829
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3765), with CRLF line terminators
Hash 7f7365cd325ff9bd68b8be88aca44981
0bbc1b76b4197ace49839cc43e8992e5b568148b
0e8d3b74c7cf621224b9e9138cb002319b5fae0aea123ca0578d0f7e5c9c0c65
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/easypiechart.min.js?ver=20190829 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 1742
Content-Type: application/javascript
theratio.s3.amazonaws.com/images/bg1-home1.jpg
52.217.195.89200 OK 23 kB URL HTTP/1.1 theratio.s3.amazonaws.com/images/bg1-home1.jpg
IP 52.217.195.89:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x325, components 3\012- data
Hash fbb2cd7dc629eddf3a407a26033513dc
173c8218484db26b58f6face53c63b7746674fd8
769466d87a897a1709bbe3a69139e3aaa4c7997e66094eae31de0d641e9c7d36
GET /images/bg1-home1.jpg HTTP/1.1
Host: theratio.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bacompany.com.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: amEA0HCG1zHnmln0BVLXHsMWfSvBIROV4ykBf2pKd8aYc4/Kdg1CUQC2/wbfr5VKQzueDvZK8qo=
x-amz-request-id: 8WTS4GMZA72NJF9V
Date: Thu, 01 Dec 2022 11:01:03 GMT
Last-Modified: Thu, 09 Jul 2020 04:01:28 GMT
ETag: "fbb2cd7dc629eddf3a407a26033513dc"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 23050
bacompany.com.sa/wp-includes/js/wp-embed.min.js?ver=5.6.10
162.144.176.157200 OK 777 B URL HTTP/1.1 bacompany.com.sa/wp-includes/js/wp-embed.min.js?ver=5.6.10
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1391)
Hash 06ece4d01ee88297957c9f4cdcaa4df5
2b3321654a8ead1e1493eac9b5f1fdfb65e2037f
0b17eb6ab02e69f50ac52ca157375bd69853ae4f4796eb48a35eb4a12fc7af8b
GET /wp-includes/js/wp-embed.min.js?ver=5.6.10 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Sun, 07 Mar 2021 21:28:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 777
Content-Type: application/javascript
bacompany.com.sa/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
162.144.176.157200 OK 736 B URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1801), with no line terminators
Hash ae098a17e8889ff188a7a1ca4545c729
250400844f4e830503e2e9b8642fb00bc337eb62
0f5aecfe5c23d3149b592488ac69726074ee450de920b0e7ecf3071c1acd0771
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 736
Content-Type: application/javascript
bacompany.com.sa/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.4
162.144.176.157200 OK 2.3 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.4
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4921)
Hash 7d020a34e237a973f81e36790d7a1bf4
88d384268be9926288690c6cd68bbba4b7d1c452
6be1f636695ba02ffc054502ca782f0fd3685b1e1f64ddae6a5b768f69db56c0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.4 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 2314
Content-Type: application/javascript
bacompany.com.sa/wp-content/plugins/bdthemes-prime-slider-lite/assets/js/bdt-uikit.min.js?ver=3.2
162.144.176.157200 OK 58 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/bdthemes-prime-slider-lite/assets/js/bdt-uikit.min.js?ver=3.2
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59504)
Hash 49353675db0fba5df0174e48947ac895
2837e5d554b9807de9520bbced26414ed9371459
576211544c0105b469af90113caac6dece02766059716e0612ca0d190a4eccfd
GET /wp-content/plugins/bdthemes-prime-slider-lite/assets/js/bdt-uikit.min.js?ver=3.2 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 14:05:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Transfer-Encoding: chunked
Content-Type: application/javascript
theratio.s3.amazonaws.com/images/bg2-home1.jpg
52.217.195.89200 OK 80 kB URL HTTP/1.1 theratio.s3.amazonaws.com/images/bg2-home1.jpg
IP 52.217.195.89:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x975, components 3\012- data
Hash 189abd3aa68a700d5e01f7165d0dce58
f996c131dc0beb9acc9ab3cfad2a7ae0e0a92395
1fdbd00ec602cf581a9eb1510de4d11dee0228e7a89613af4866f125b9612c86
GET /images/bg2-home1.jpg HTTP/1.1
Host: theratio.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bacompany.com.sa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: yZg4hkBeKNq3Dzn9ir1SgE0CpEopLsGfgGYkg3pLmSy/LnHmF+dWY95m3FImhLDMrmNpuxDqs1U=
x-amz-request-id: 8WTZKEFB421FM65D
Date: Thu, 01 Dec 2022 11:01:03 GMT
Last-Modified: Thu, 09 Jul 2020 04:01:35 GMT
ETag: "189abd3aa68a700d5e01f7165d0dce58"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 79605
bacompany.com.sa/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.4
162.144.176.157200 OK 5.7 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.4
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14238)
Hash 755e516a396d5dcef2eec924aa7ce4d7
70e5294714b0d859904bf7bbfcf0459e7c599072
18541171013bb88267a4d73504377ae8b07071f881f9e77fd2c1d3d35895d2c9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.4 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 5676
Content-Type: application/javascript
bacompany.com.sa/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
162.144.176.157200 OK 3.7 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 3747
Content-Type: application/javascript
bacompany.com.sa/wp-content/themes/theratio/js/lightgallery-all.min.js?ver=20180910
162.144.176.157200 OK 18 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/js/lightgallery-all.min.js?ver=20180910
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (31952), with CRLF line terminators
Hash 6bab0e81a2ea3131c6cdd44ff7036418
dec3e540edfcc6c002784e8d1a096125f74b5ad4
0fa14bac9e52d5807e3ef4672655a490c7f0806a34a1d6cfd62e27d7cad00512
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/lightgallery-all.min.js?ver=20180910 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Transfer-Encoding: chunked
Content-Type: application/javascript
bacompany.com.sa/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
162.144.176.157200 OK 8.2 kB URL HTTP/1.1 bacompany.com.sa/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7973)
Hash 6e3b0317803aa9f226979ad7a7e77593
c95b4f532fd03f3754bf63139a57aab65fbe8a25
84520e8f7a292cb992fa9c62932245f598c6fa043fd4e19eadb6ad9a767dca6f
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Fri, 16 Apr 2021 02:07:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 8223
Content-Type: application/javascript
bacompany.com.sa/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
162.144.176.157200 OK 47 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65280)
Hash 6d3f8ba511b26a2b5e2555673e996be4
d5a3c1ed68beeeafc4da01d71a6b7ce0f19f985e
955d1e858ec91ca4b3f5c845421692afc83dcbca3dd52577f746e18278f45315
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Transfer-Encoding: chunked
Content-Type: application/javascript
bacompany.com.sa/wp-content/themes/theratio/js/scripts.js?ver=20200317
162.144.176.157200 OK 3.0 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/js/scripts.js?ver=20200317
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type assembler source, ASCII text, with CRLF line terminators
Hash faba7eb1d706d445ce75806c0cc07a30
cc9afc824f0677f168e58f18fb5e3ccd302c40b5
7acab3407acda235920c38e8250613c40ed72e75bfd7f69ed317a65f33aa4c94
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/js/scripts.js?ver=20200317 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 2956
Content-Type: application/javascript
bacompany.com.sa/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.6.4
162.144.176.157200 OK 1.2 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.6.4
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2577)
Hash 159281ac01a46f042b38d0d44cf3eb7a
54677be6b1cf85899d2ab1a6fada531ca5613d29
0738d3f931e8df2b67f3be1ec216b103560266c56cc38fdafae055bcb807ffea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.6.4 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 1151
Content-Type: application/javascript
bacompany.com.sa/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
162.144.176.157200 OK 4.2 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10544)
Hash 552977febe8ef2c71b0806dfaefd2552
01baebfd09383c5d44f066e7b5540fcca6a5eae4
7895907f5a4f54c08c4705b1a194e21c556d68027c5e0a70d4c05b377e712b1d
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 4200
Content-Type: application/javascript
bacompany.com.sa/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.4
162.144.176.157200 OK 15 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.4
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (37702)
Hash b371f8745337418c76d8da1bce09024b
2a431cdfbfdeac1b4902729b6da81f120717623b
cf257af34107798df389a979dff2e9ade1a63dfe32f3e85ba8fb27026f765e33
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.4 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 14706
Content-Type: application/javascript
bacompany.com.sa/wp-content/plugins/bdthemes-prime-slider-lite/assets/js/prime-slider-site.min.js?ver=3.2.0
162.144.176.157200 OK 911 B URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/bdthemes-prime-slider-lite/assets/js/prime-slider-site.min.js?ver=3.2.0
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4931), with no line terminators
Hash d404e1685bfe1282d8fa0daa03e28029
5c6c7284913ab169a61b32b99c7e051e29124c8a
6b88e4dee009c696292efa9c4f1ad7b2c59f497ba4879ab13cd726963b3541df
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bdthemes-prime-slider-lite/assets/js/prime-slider-site.min.js?ver=3.2.0 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 14:05:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 911
Content-Type: application/javascript
bacompany.com.sa/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.6.4
162.144.176.157200 OK 17 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.6.4
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43353)
Hash ca514aba7b165a823e8ac4c5d991b4a7
280bd0f022f233f1e73c172559f682723c2032cb
24b166d2bdaa6f90dad6eac9cb9866cfa8dcb79eab30c3a67d2a6289e98b8a14
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.6.4 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Length: 16889
Content-Type: application/javascript
bacompany.com.sa/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4
162.144.176.157409 Conflict 83 B URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 409 Conflict
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
bacompany.com.sa/wp-content/themes/theratio/fonts/Flaticon.woff2
162.144.176.157200 OK 10 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/fonts/Flaticon.woff2
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 10488, version 1.0\012- data
Hash 3dadf0b92a32bf7320f469d38b5be465
1139b33dbd3739f121a3d00e756b94c4f5cabd06
ec09867c4d6bd0eaf61a697324aeb9111facb2b97b7edd0362e7e8e5ad78293b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/fonts/Flaticon.woff2 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://bacompany.com.sa/wp-content/themes/theratio/css/flaticon.css?ver=5.6.10
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Content-Length: 10488
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: font/woff2
bacompany.com.sa/wp-content/uploads/2021/03/PinClipart.com_pink-baby-elephant-clip_1218818-1-300x62.png
162.144.176.157200 OK 12 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/PinClipart.com_pink-baby-elephant-clip_1218818-1-300x62.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 62, 8-bit/color RGBA, non-interlaced\012- data
Hash 89ffc1ae3470bd423a9795a38392e2ff
0beebfdf6c8853fa41df6c328e14adbf43cd1b12
5590a98f9c714015c29ac844ee79f8ada3d6f8ab9aac4648bf678cb41522e440
GET /wp-content/uploads/2021/03/PinClipart.com_pink-baby-elephant-clip_1218818-1-300x62.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:00 GMT
Accept-Ranges: bytes
Content-Length: 12359
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/themes/theratio/fonts/fa-brands-400.woff2
162.144.176.157200 OK 76 kB URL HTTP/1.1 bacompany.com.sa/wp-content/themes/theratio/fonts/fa-brands-400.woff2
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 75936, version 330.-16253\012- data
Hash 822d94f19fe57477865209e1242a3c63
f356aa2e4d9b7245985d312d3bfba180f774e3b7
8e4560c16c7970efa47680450b2cf239d4a482c056d308acea12bb9022906c8b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theratio/fonts/fa-brands-400.woff2 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://bacompany.com.sa/wp-content/themes/theratio/css/font-awesome.min.css?ver=5.6.10
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:33 GMT
Accept-Ranges: bytes
Content-Length: 75936
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: font/woff2
bacompany.com.sa/wp-content/uploads/2021/03/PikPng.com_secret-png_2258225-300x31.png
162.144.176.157200 OK 4.7 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/PikPng.com_secret-png_2258225-300x31.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 31, 8-bit gray+alpha, non-interlaced\012- data
Hash 9ed08b727e07290d70d5ab1927728b35
f3a4ba64d8d1674aebed0f6947e718fadb75018a
a20164d51e274e02df0f8924718cf92a86663739e3f80d386f0748e314abb3e2
GET /wp-content/uploads/2021/03/PikPng.com_secret-png_2258225-300x31.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:02 GMT
Accept-Ranges: bytes
Content-Length: 4659
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/pngegg-1-300x125.png
162.144.176.157200 OK 23 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/pngegg-1-300x125.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 125, 8-bit/color RGBA, non-interlaced\012- data
Hash 78ef01ebbe6a09b97804cd90406688f1
14814de731c31b4255c2dc8a648e5aed771a6599
3c46f1b6307617cf3ef20d9fadc1aa6880818a90caedaf905db0675794bbb239
GET /wp-content/uploads/2021/03/pngegg-1-300x125.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:03 GMT
Accept-Ranges: bytes
Content-Length: 23337
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/fred-perry-logo-vector-300x300.png
162.144.176.157200 OK 18 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/fred-perry-logo-vector-300x300.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 1823497245d070f8513b79b0e382c5ad
9d86169c411b92fc962feb05c56c1d3a720f4430
2e2792624070a07093b72ffd8621373ccbbcc34185a72346bf9b5500dd25953d
GET /wp-content/uploads/2021/03/fred-perry-logo-vector-300x300.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:01 GMT
Accept-Ranges: bytes
Content-Length: 17817
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2
142.250.74.35200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 12384, version 1.0\012- data
Hash 39009d392a58f87dd2b448612c2cbd5b
45ca26b72258f56af6fb786b8c4552acfdb5252e
d14d732f8caf915919ff661157edc3456a85f408b7a3c5ee1e21357e7df07e1a
GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bacompany.com.sa
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12384
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:45:04 GMT
expires: Wed, 29 Nov 2023 15:45:04 GMT
cache-control: public, max-age=31536000
age: 155759
last-modified: Wed, 27 Apr 2022 16:10:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bacompany.com.sa/wp-content/uploads/2021/03/pngegg-2-300x300.png
162.144.176.157200 OK 13 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/pngegg-2-300x300.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 300, 8-bit gray+alpha, non-interlaced\012- data
Hash 1940f7e7653b8329858acfa896ade785
36864137e37cd7354d3c83659a10693a28e26ca9
b1b915f9bde4aba78c30df11b6da01c15b4969f73328f443f670dbdbade2dde0
GET /wp-content/uploads/2021/03/pngegg-2-300x300.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sat, 03 Apr 2021 10:57:00 GMT
Accept-Ranges: bytes
Content-Length: 13326
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/oakberry.svg
162.144.176.157200 OK 14 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/oakberry.svg
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (14273), with no line terminators
Hash 61d6bd86aed92967ce81a804e499e2ef
631c56fb3a11a278c1a3a960ae40971d3908cbf3
4e67b71bdc5a9a51ce6e4425fb8348c3fba4fb1f7bf1c3ae5d79a4c5b2c6891b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/03/oakberry.svg HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:14 GMT
Accept-Ranges: bytes
Content-Length: 14273
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/svg+xml
bacompany.com.sa/wp-content/uploads/2021/03/Daco_5397915-300x241.png
162.144.176.157200 OK 18 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/Daco_5397915-300x241.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 241, 8-bit/color RGBA, non-interlaced\012- data
Hash a0b094048c7ce83a174de0f19502c8fc
49d6982819f48b7242cbb0871981820cd4b506be
a45e20b49034f731c833a4dc9eea11c20f3dfa889ed7e4a2239a64d6e9119d90
GET /wp-content/uploads/2021/03/Daco_5397915-300x241.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:00 GMT
Accept-Ranges: bytes
Content-Length: 17739
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
162.144.176.157200 OK 77 kB URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://bacompany.com.sa/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 17:05:37 GMT
Accept-Ranges: bytes
Content-Length: 76764
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: font/woff2
bacompany.com.sa/wp-content/uploads/2021/03/pngegg-3-300x232.png
162.144.176.157200 OK 9.2 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/pngegg-3-300x232.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 232, 8-bit/color RGBA, non-interlaced\012- data
Hash 2050a5548d70d252d6cda9f31dd38874
ac35f79182c633d9b4dd0d9718f5e39f22cea659
3e91e62c2188026fe545be318c43b43366b07a1d69bdaf07731804b9700303d1
GET /wp-content/uploads/2021/03/pngegg-3-300x232.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:03 GMT
Accept-Ranges: bytes
Content-Length: 9202
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/pngegg-5-300x300.png
162.144.176.157200 OK 6.1 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/pngegg-5-300x300.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 300, 8-bit gray+alpha, non-interlaced\012- data
Hash 021933af87ad189a7a8dbe1537f0a1a1
0437b1f051c773b350316650476d96deebef0839
b9c750995b2674da2ab6e45b74663343d42b385a0faf68c02a76dba5db860232
GET /wp-content/uploads/2021/03/pngegg-5-300x300.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:00 GMT
Accept-Ranges: bytes
Content-Length: 6109
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/fonts/josefin-sans/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_DjQbMZhKSbpUVz0Eg.woff
162.144.176.157200 OK 14 kB URL HTTP/1.1 bacompany.com.sa/wp-content/fonts/josefin-sans/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_DjQbMZhKSbpUVz0Eg.woff
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 14336, version 1.1\012- data
Hash 3a8e815de8b718b5cf8347ee22340261
adc33b3baf965157a81fcff71605277eb32bc19d
b0a6b3d22bdf037a2a826127a5573a5ae68f03aa3ae42adab16effa35f897f52
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/fonts/josefin-sans/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_DjQbMZhKSbpUVz0Eg.woff HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sun, 17 Jul 2022 13:10:43 GMT
Accept-Ranges: bytes
Content-Length: 14336
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: font/woff
bacompany.com.sa/wp-content/plugins/bdthemes-prime-slider-lite/assets/images/side-round-mask.svg
162.144.176.157200 OK 430 B URL HTTP/1.1 bacompany.com.sa/wp-content/plugins/bdthemes-prime-slider-lite/assets/images/side-round-mask.svg
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5dc97477ccf83965123bf7e0110ef474
93a8c3b75321d1c314f4bd559980f2d9cd61d2fe
f4d9d9c5696d13d5208bf9b19eb391312f9b5a78f1c0b6397b6c5b315eeabdf9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bdthemes-prime-slider-lite/assets/images/side-round-mask.svg HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/wp-content/plugins/bdthemes-prime-slider-lite/assets/css/ps-dragon.css?ver=3.2.0
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 14:05:33 GMT
Accept-Ranges: bytes
Content-Length: 430
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/svg+xml
bacompany.com.sa/wp-content/uploads/2021/03/nike-logo-300x156.png
162.144.176.157200 OK 9.8 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/nike-logo-300x156.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 156, 8-bit gray+alpha, non-interlaced\012- data
Hash 35941f0676695355c6c325031ab5d0e6
c15b0b57a47a5ac5a6b84dcb9bdd01ac68f5d351
387b514bbf22ad906ca21b6100288dd4d189aee50ba9202976f2d2f5217e05aa
GET /wp-content/uploads/2021/03/nike-logo-300x156.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:00 GMT
Accept-Ranges: bytes
Content-Length: 9840
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/kisspng-adidas-run-waist-bag-black-mens-logo-image-thr-adidas-deerupt-bea-world-festival-5cb752a836b840.9199504115555181202241-300x300.png
162.144.176.157200 OK 7.6 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/kisspng-adidas-run-waist-bag-black-mens-logo-image-thr-adidas-deerupt-bea-world-festival-5cb752a836b840.9199504115555181202241-300x300.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 300, 8-bit gray+alpha, non-interlaced\012- data
Hash f81ee4345a7a11fc64ad647d03eedf3b
3c22dbf5092a579173346a200a55967ed4815f56
645b616299c4f866291bc79b8868fac3d64240611cdcd46633f78d73b72953f9
GET /wp-content/uploads/2021/03/kisspng-adidas-run-waist-bag-black-mens-logo-image-thr-adidas-deerupt-bea-world-festival-5cb752a836b840.9199504115555181202241-300x300.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:03 GMT
Accept-Ranges: bytes
Content-Length: 7625
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/kisspng-haagen-dazs-ice-cream-shop-hagen-dazs-ice-cr-food-logo-5b114cd5751627.0305494515278604374796-300x172.png
162.144.176.157200 OK 11 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/kisspng-haagen-dazs-ice-cream-shop-hagen-dazs-ice-cr-food-logo-5b114cd5751627.0305494515278604374796-300x172.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 172, 8-bit/color RGBA, non-interlaced\012- data
Hash f6b1bc70bdc46542715c33c6b7c5942e
5f6868c1fce6d68df83cd7c8f544609d2e533d8a
697ea4744cbaaf22cea1da2b223f2bbfc0ba1e26a5716e51b48f8f82cc54bc95
GET /wp-content/uploads/2021/03/kisspng-haagen-dazs-ice-cream-shop-hagen-dazs-ice-cr-food-logo-5b114cd5751627.0305494515278604374796-300x172.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:57 GMT
Accept-Ranges: bytes
Content-Length: 11198
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/toppng.com-dunkin-donuts-logo-vector-free-download-200x200-1.png
162.144.176.157200 OK 6.8 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/toppng.com-dunkin-donuts-logo-vector-free-download-200x200-1.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 200 x 86, 8-bit/color RGBA, non-interlaced\012- data
Hash a40cd0809949c7a5724e30ddce9489e8
ca8be3cf4416c785f039b85503afed512d03e1d9
1c7da851400df3e0f08b24688cd5a89260f6672713adaf60321028037053c42a
GET /wp-content/uploads/2021/03/toppng.com-dunkin-donuts-logo-vector-free-download-200x200-1.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:01 GMT
Accept-Ranges: bytes
Content-Length: 6777
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/pngfind.com-weber-logo-png-5012999-300x64.png
162.144.176.157200 OK 7.2 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/pngfind.com-weber-logo-png-5012999-300x64.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash eed28c2ba22194a162fc87a8b15811f1
faecac7f021d082ace6862c69e40aaf9beeba031
ccfc8a93ddfb99797b4f2e8632e6942dd6b89e2b1862b03f99d03776acdf4be3
GET /wp-content/uploads/2021/03/pngfind.com-weber-logo-png-5012999-300x64.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:03 GMT
Accept-Ranges: bytes
Content-Length: 7241
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/clipart2374979-300x60.png
162.144.176.157200 OK 7.6 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/clipart2374979-300x60.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash ad85f40513cb77fb9b895705dac04d86
06c6666062483bf6e598dc42852a5c5b5b2363bf
492c46b0a2d1645ffefc1a8f89bc026545affbe6ff93ce1d3e4bd6100bcc089a
GET /wp-content/uploads/2021/03/clipart2374979-300x60.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:57 GMT
Accept-Ranges: bytes
Content-Length: 7576
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/pngegg-4-300x150.png
162.144.176.157200 OK 6.1 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/pngegg-4-300x150.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash e713eb72860d171daa54f640caf6a689
71a137bf25da226068a6fc9e565766309deec2b5
5c4858dfba7a7bb7e927207f2f38adf14ff042e79d796967b0e36684961f8eae
GET /wp-content/uploads/2021/03/pngegg-4-300x150.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:03 GMT
Accept-Ranges: bytes
Content-Length: 6061
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-4.png
162.144.176.157200 OK 340 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-4.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 340 kB (340095 bytes)
Hash 07853bf487d71f612fb1697bedc9e01f
c9bbb2e390c90d4f59ae824fcc997b05d5a88362
f52d1ffaaf173f470c67bc585ddac144e732a1595fada9f7180de5342290f09f
GET /wp-content/uploads/2021/03/BA-project-4.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:04 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:58 GMT
Accept-Ranges: bytes
Content-Length: 340095
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/04/Jeddah-Walk-1.jpg
162.144.176.157200 OK 175 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/04/Jeddah-Walk-1.jpg
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x720, components 3\012- data
Size 175 kB (174816 bytes)
Hash 5fb2ccfe532d319397ffa47225058de4
17a208ed7fc2954bc99aad4e29bd4bae5a1578cb
7cb16ac450e84ad9f71118f8bce8a819dbd79a8250a516c472f13dc758ee2f7b
GET /wp-content/uploads/2021/04/Jeddah-Walk-1.jpg HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:04 GMT
Server: Apache
Last-Modified: Tue, 06 Apr 2021 21:26:53 GMT
Accept-Ranges: bytes
Content-Length: 174816
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/jpeg
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-2.png
162.144.176.157200 OK 252 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-2.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 252 kB (251478 bytes)
Hash 6eba2d710ae35fb5970fa193f154f760
07275d090dd0165d76c57a1b1652e30aee1ee7b8
ebcaf47c9911fbe33a3a34ed09a027fcc297aaf5cd44038fc8cadb659a10c5c6
GET /wp-content/uploads/2021/03/BA-project-2.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:04 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:52 GMT
Accept-Ranges: bytes
Content-Length: 251478
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-1.png
162.144.176.157200 OK 410 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-1.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 410 kB (410391 bytes)
Hash ec756703c13ccdbbfb0b5b9c0e4e2e5e
3f349b632ddbe3f19e1b4c647582dab87ac49417
e81799e9a9f15186142666746bd2e4b4db93e456234b83a89627bf63d729b031
GET /wp-content/uploads/2021/03/BA-project-1.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:03 GMT
Accept-Ranges: bytes
Content-Length: 410391
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-8.png
162.144.176.157200 OK 414 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-8.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 414 kB (413542 bytes)
Hash a4c4b004dbd2abbe137ecdd197b2edde
45c69c2e9c0f32bed8fbab2c4487448000241502
b43123179449703b49d8d2f3dfdafc1183e56e978881922612b6e1bd04a03942
GET /wp-content/uploads/2021/03/BA-project-8.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:04 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:14 GMT
Accept-Ranges: bytes
Content-Length: 413542
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-9.png
162.144.176.157200 OK 382 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-9.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 382 kB (381789 bytes)
Hash 68bbc505b5e3a407d548865036dd5eb1
1e0db51ff092e41f51cd34d16be78703c208232f
64de3132c9b741166448a717554310d77105805df37bcc65f691221a34f87cd8
GET /wp-content/uploads/2021/03/BA-project-9.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:04 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:02 GMT
Accept-Ranges: bytes
Content-Length: 381789
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-7.png
162.144.176.157200 OK 350 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-7.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 350 kB (350502 bytes)
Hash 0a0a9e5e70dcaa9e0fbcb6ff33d35101
6d9b350d32f589136fc731c1213a6f03abca5403
6b34c8c7d5acde488fbb8eb6a58494c8203ee34d44bdc63ffad26dd764b6c213
GET /wp-content/uploads/2021/03/BA-project-7.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:04 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:00 GMT
Accept-Ranges: bytes
Content-Length: 350502
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-10.png
162.144.176.157200 OK 340 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-10.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 340 kB (339580 bytes)
Hash 0409f305e1f3d4ef720ae21388376db5
cdc6d854bca2fe98e6f0f84e00bc1a6f592e7ceb
8da26ed55157d2fc13a267eef277ded2505f07902cf665b5032b1897d009bfee
GET /wp-content/uploads/2021/03/BA-project-10.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:04 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:03 GMT
Accept-Ranges: bytes
Content-Length: 339580
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-6.png
162.144.176.157200 OK 346 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-6.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 346 kB (346451 bytes)
Hash 0b637133e5ad8f364f6893c914daff2c
1f89f8b1f3d376dcb6b4f8a9a54fca216a66074d
8f75ce15f09b19c356bfa1cb1ca2cf29e5376298b420a8560a1fd687236f958c
GET /wp-content/uploads/2021/03/BA-project-6.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:04 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:00 GMT
Accept-Ranges: bytes
Content-Length: 346451
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-11.png
162.144.176.157200 OK 277 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-11.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 277 kB (277183 bytes)
Hash 1252df4e754bd1a0dd51c194ffa7e120
a8166a97cff7ad12aae7fe46b375ff7b02bfc4e0
2463ba276ed8c1a4566ef459e689cfc6a9f16be8d2f1a4763549c178b816dc1d
GET /wp-content/uploads/2021/03/BA-project-11.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:04 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:57 GMT
Accept-Ranges: bytes
Content-Length: 277183
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-14.png
162.144.176.157200 OK 253 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-14.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 253 kB (252778 bytes)
Hash a6185b9c84734e9541014c06d98f3d84
fa1fef2d8fe9372bbcde410d1e3f1d2a3e5e5c98
995558465123ceb5c41c97856129d817646eb0278130f8eebeebd9666ed8915c
GET /wp-content/uploads/2021/03/BA-project-14.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:04 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:03 GMT
Accept-Ranges: bytes
Content-Length: 252778
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-16.png
162.144.176.157200 OK 316 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-16.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 316 kB (316401 bytes)
Hash 0bb2a80dfe762a8997d18cc44d02c50c
fe39d539d944c922883986590bb118ef0c3f3bd0
da0bf7749da91a408ab7ff7df1f182d4005c63a689532e1aacd306bc9338579b
GET /wp-content/uploads/2021/03/BA-project-16.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:05 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:03 GMT
Accept-Ranges: bytes
Content-Length: 316401
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-15.png
162.144.176.157200 OK 532 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-15.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 532 kB (532294 bytes)
Hash 2436ca333dcf248469a2ff90f529730e
6d3b70a335cdb0dc22f6e014ecbdbb26a5ac3d9a
8374104cfab7287f7d06f77120f2643b58a9976305afa738b2b64376d3514b96
GET /wp-content/uploads/2021/03/BA-project-15.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:05 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:58 GMT
Accept-Ranges: bytes
Content-Length: 532294
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-13.png
162.144.176.157200 OK 396 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-13.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 396 kB (396017 bytes)
Hash 9b34afb1baad3da8e8ec4eeb9f5a7f34
840818b64e5170bb959ca2b417c42088da7f27cc
c3584539ae5519286f7cb3c64e673a7600ec400183a68b03ce3a76db9481f31c
GET /wp-content/uploads/2021/03/BA-project-13.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:04 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:52 GMT
Accept-Ranges: bytes
Content-Length: 396017
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-12.png
162.144.176.157200 OK 336 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-12.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 336 kB (336432 bytes)
Hash 4d237cd47bd456756448a59c06165195
82c4a1fd762606edffceeccd343776f47f86868a
abf9aa394fcd566414e180f863b2f8b46e100ee0ee1f2e147dd9418ebafe6a9c
GET /wp-content/uploads/2021/03/BA-project-12.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:04 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:03 GMT
Accept-Ranges: bytes
Content-Length: 336432
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-3.png
162.144.176.157200 OK 326 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-3.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 326 kB (325682 bytes)
Hash 2220f1b3a1508c6bd884842ebd4863ce
24684929a7d0e83d759bc8f9cc11cef5d4c3fe2b
64474c6dc609b1ce27ed841c340cffd5c0b47150ec335fe7c29c13f2f14b66cc
GET /wp-content/uploads/2021/03/BA-project-3.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:03 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:03 GMT
Accept-Ranges: bytes
Content-Length: 325682
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-5.png
162.144.176.157200 OK 379 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-5.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 379 kB (379186 bytes)
Hash b0e79de9b9a3b736fbb0966db48dbb04
443374c0c48d30a10d8a93d4cde7f3651dceb6f2
e24d58cb42bf9f421543f856abc62478525de1e921678aadbd1523256a7a4fdd
GET /wp-content/uploads/2021/03/BA-project-5.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:04 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:03 GMT
Accept-Ranges: bytes
Content-Length: 379186
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-17.png
162.144.176.157200 OK 404 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-17.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 404 kB (404017 bytes)
Hash f4f44ad6696f8522ef907cf94c202f59
55cc0c70f3eaf363ea159c3315a6bd27e11af93b
1c2f82026fa66a50ebcd1f49d227e895bb7c52edb099878ce47769a78a3191a3
GET /wp-content/uploads/2021/03/BA-project-17.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:05 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:01 GMT
Accept-Ranges: bytes
Content-Length: 404017
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-18.png
162.144.176.157200 OK 472 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-18.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 472 kB (471849 bytes)
Hash af6b7edeb7b3a3744abf311feb34e100
00a2f46339d1f062fbf58e261ee680b6931747f2
91e638b4ff740c7f9095479ff5b48ac771efdf444e8387f8588e730bdcff0941
GET /wp-content/uploads/2021/03/BA-project-18.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:05 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:01 GMT
Accept-Ranges: bytes
Content-Length: 471849
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2020/05/p3-gallery4.jpg
162.144.176.157200 OK 156 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2020/05/p3-gallery4.jpg
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1440x810, components 3\012- data
Size 156 kB (155489 bytes)
Hash c6a4d090638539cb1878b548fa37a66e
04089e87805ec4ad3c13dbf10bb925cc6faa2f4e
538259394a9334bc8430742f754ac3f0ce4ca839b56a8bd0c3b72742b026f0b4
GET /wp-content/uploads/2020/05/p3-gallery4.jpg HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:05 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:49 GMT
Accept-Ranges: bytes
Content-Length: 155489
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/jpeg
bacompany.com.sa/wp-content/uploads/2020/05/p4-gallery2.jpg
162.144.176.157200 OK 161 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2020/05/p4-gallery2.jpg
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1440x830, components 3\012- data
Size 161 kB (160750 bytes)
Hash c95e601b22d217089ea421b0803bffec
a3553cdf8a07fc8aa25edbba7bb13345c2d3d065
2fdb9262af3e41c57a17ddfdce8b562c45b7cb41d2857bc35e3d696ed573bf27
GET /wp-content/uploads/2020/05/p4-gallery2.jpg HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:05 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:49 GMT
Accept-Ranges: bytes
Content-Length: 160750
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/jpeg
bacompany.com.sa/wp-content/uploads/2020/05/p3-gallery5.jpg
162.144.176.157200 OK 161 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2020/05/p3-gallery5.jpg
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1440x810, components 3\012- data
Size 161 kB (161152 bytes)
Hash 8d6e242afe9bc287170cbeac26bcaaa5
9ae2cb3f4385b2b677f6031c677a0de4355c66d5
7075bcc25a3ce0151d90d9d0a449b678f4e75117fe7863091f461619aa76de1a
GET /wp-content/uploads/2020/05/p3-gallery5.jpg HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:05 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:49 GMT
Accept-Ranges: bytes
Content-Length: 161152
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/jpeg
bacompany.com.sa/wp-content/uploads/2020/05/p3-gallery1.jpg
162.144.176.157200 OK 166 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2020/05/p3-gallery1.jpg
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1440x810, components 3\012- data
Size 166 kB (165960 bytes)
Hash 23920f36dd99db902cc47f879357fcd6
ffbfc7681af2b514cf249f0dadb00459b3859e2e
6b791fa13a05977bb2ea5d16ae7a97e2a0b5f115f05047a766e7ea3adbe7f596
GET /wp-content/uploads/2020/05/p3-gallery1.jpg HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:05 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:49 GMT
Accept-Ranges: bytes
Content-Length: 165960
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/jpeg
bacompany.com.sa/wp-content/uploads/2020/05/image3-home1.png
162.144.176.157200 OK 164 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2020/05/image3-home1.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 860 x 645, 8-bit colormap, non-interlaced\012- data
Size 164 kB (164300 bytes)
Hash b4bf21fe3642b6a9f8313c3965b00c61
abb355b4e668ed0e04d42dd22996697f9a56b955
ae226fc3c84c1431365dbb998c6a2d58e987530d51668b280369b0d9ac625993
GET /wp-content/uploads/2020/05/image3-home1.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:05 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:49 GMT
Accept-Ranges: bytes
Content-Length: 164300
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-19.png
162.144.176.157200 OK 409 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-19.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Size 409 kB (409073 bytes)
Hash 804a62aa031fc8db0739add13c291e9e
e1836f756b5640a8323fab5923a071372c0b351d
7831384dfc674224e2b49e8f673e2125dc0fbb7ee6cc56e1562c141397a05b73
GET /wp-content/uploads/2021/03/BA-project-19.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:05 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:58 GMT
Accept-Ranges: bytes
Content-Length: 409073
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/Long-image.png
162.144.176.157200 OK 307 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/Long-image.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 720 x 980, 8-bit colormap, non-interlaced\012- data
Size 307 kB (307239 bytes)
Hash 57b98edcd2b56399b7771ee9f6f76610
38b895abafe5d698fd5c68060ba5d391ac8d1090
ae6152f4f6b55d19673ee5f8a8c66fcd2d8532de9d2581ac389e7d64cbdedad0
GET /wp-content/uploads/2021/03/Long-image.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:05 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:02 GMT
Accept-Ranges: bytes
Content-Length: 307239
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2020/05/p3-gallery2.jpg
162.144.176.157200 OK 156 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2020/05/p3-gallery2.jpg
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1400x788, components 3\012- data
Size 156 kB (156235 bytes)
Hash ad2d8a20448f0f1f3f2ce82006dc7b50
7c9207b9ef441db99c05350d735d71b050ce4cc2
9bb14680a03a457dc9fd31b3e0c0ef0e06a61eb4a474fd1b4b094d2b902bcff8
GET /wp-content/uploads/2020/05/p3-gallery2.jpg HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:05 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:49 GMT
Accept-Ranges: bytes
Content-Length: 156235
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/jpeg
bacompany.com.sa/wp-content/uploads/2021/03/BA-project-15-1024x576.png
162.144.176.157200 OK 1.1 MB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/BA-project-15-1024x576.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1024 x 576, 8-bit/color RGBA, non-interlaced\012- data
Size 1.1 MB (1116555 bytes)
Hash 397a96fefd4a27e11f913a77e66ca285
453a1b82ae4ee9745ddaa30486e3f5d5cf478293
99908d4a2cdc48894550e65b83fade76226395d615884f9179cf496477fc0a79
GET /wp-content/uploads/2021/03/BA-project-15-1024x576.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:05 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:02 GMT
Accept-Ranges: bytes
Content-Length: 1116555
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bacompany.com.sa/wp-content/uploads/2021/03/cropped-512-logo--32x32.png
162.144.176.157200 OK 1.2 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/cropped-512-logo--32x32.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash b4c9c23a165b71117a2c7aa08050b46c
131cd117278575cd980a1c59aa26174692d82e1c
7bd86a851ff1f4b301a11e01114f46d717732b008075baff1ee1e6d59fbbe3b2
GET /wp-content/uploads/2021/03/cropped-512-logo--32x32.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:06 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:00 GMT
Accept-Ranges: bytes
Content-Length: 1172
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2021/03/cropped-512-logo--192x192.png
162.144.176.157200 OK 5.2 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2021/03/cropped-512-logo--192x192.png
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash e6a78ea20afed8bb9325e556b2fe5a51
be59fee779ba247e36388307aec03975b959a78b
2ad4c60b60712b76c62f3568b991266a147ab5e5e6c1b38d42c70c68e159bba2
GET /wp-content/uploads/2021/03/cropped-512-logo--192x192.png HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
Cookie: pll_language=en
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:06 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:57:02 GMT
Accept-Ranges: bytes
Content-Length: 5219
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/png
bacompany.com.sa/wp-content/uploads/2020/05/p4-gallery1.jpg
162.144.176.157200 OK 222 kB URL HTTP/1.1 bacompany.com.sa/wp-content/uploads/2020/05/p4-gallery1.jpg
IP 162.144.176.157:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1440x830, components 3\012- data
Size 222 kB (222320 bytes)
Hash 0402db91586237223d69c211dd7e5095
2ea221abcbf07fa9aedd9f4ec274852a29613c32
1fd6491c4557f08a1fd4041cd6f46338d779f0641b90a43b1f26af63cd54f19c
GET /wp-content/uploads/2020/05/p4-gallery1.jpg HTTP/1.1
Host: bacompany.com.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bacompany.com.sa/en/
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:01:05 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 10:56:49 GMT
Accept-Ranges: bytes
Content-Length: 222320
host-header: Y2xvdWQuYmx1ZWhvc3QuY29t
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 920992c4818e7d17517e3dfef67a22c1
407b7e56fbb4faacca123af367b6cfdf0b7b2d99
527197c1e55e0b319d64e59070906d60084827233a6d7498cf63145ab665c424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 10:51:04 GMT
expires: Thu, 01 Dec 2022 11:06:04 GMT
cache-control: public, max-age=900
age: 603
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
216.58.211.2302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 216.58.211.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Thu, 01 Dec 2022 11:01:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 01 Dec 2022 11:01:07 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 920992c4818e7d17517e3dfef67a22c1
407b7e56fbb4faacca123af367b6cfdf0b7b2d99
527197c1e55e0b319d64e59070906d60084827233a6d7498cf63145ab665c424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash ab50caa0d1dee1bfb831e048be17f88e
4f621889d9c2ae83138390bed042702006e2f4ae
9b139e09bf40609937669a6ae7e6bd6197e0a4ec94f8c50c1b5e1a4ef8949a8d
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 01 Dec 2022 11:01:07 GMT
server: ESF
cache-control: private
content-length: 31022
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36106)
Hash 7fc7e22ecccb0cfd0ae897bb40a58efe
5d46470a711120793c362235105836fe49e699a4
1907005cab41fbd6d1d67df3b25586f3232e053a261c9e2b2503459f4980b1c5
GET /js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14302
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 10:09:03 GMT
expires: Mon, 27 Nov 2023 10:09:03 GMT
cache-control: public, max-age=31536000
age: 348724
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d1ebc694c20ec150aad9e485dcdb35f4
1fae3fbe9fecff6ca2fc6dfa620d5193669fa3db
e2f7b273bed2605b18a008d13310bd022b46b8b2b8d82bf18128315f5af7111e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/SId8Nep6Li8/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGDkgUyhyMA8=&rs=AOn4CLBkoSv5jFk4HPGPuKA7UKyl_L1alQ
216.58.207.246200 OK 86 kB URL HTTP/2 i.ytimg.com/vi/SId8Nep6Li8/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGDkgUyhyMA8=&rs=AOn4CLBkoSv5jFk4HPGPuKA7UKyl_L1alQ
IP 216.58.207.246:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Hash 472b7439c2764374cfad871cc7fe4de7
bea2705df92535ed86bfde0cdc77a17c728143df
2fbb3ba54003b3c70267a632d686dcf385ac7cc930717bb79d22daf6c7549aac
GET /vi/SId8Nep6Li8/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGDkgUyhyMA8=&rs=AOn4CLBkoSv5jFk4HPGPuKA7UKyl_L1alQ HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 85670
date: Thu, 01 Dec 2022 11:01:07 GMT
expires: Thu, 01 Dec 2022 13:01:07 GMT
cache-control: public, max-age=7200
etag: "1615376842"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d1ebc694c20ec150aad9e485dcdb35f4
1fae3fbe9fecff6ca2fc6dfa620d5193669fa3db
e2f7b273bed2605b18a008d13310bd022b46b8b2b8d82bf18128315f5af7111e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 01 Dec 2022 11:01:07 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4cc4375167fc1d2956e6a8af82758047
ab312aa950fc8a79c284e2c7692de05d01e19616
e9f4ed60bf1a53f58b533e3b9b457b631c9e662fcc91ea50407017aceb51c47f
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1132
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 01 Dec 2022 11:01:07 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AMLnZu-rRdC4HrdzXXzlyTpZxNStMyYPty-76Dxk2ygCHg=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 1.0 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu-rRdC4HrdzXXzlyTpZxNStMyYPty-76Dxk2ygCHg=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash c4bd5d641eacbe68b32e8b17500e83e0
40a5707cb35a546dbe257d3bfd4ab854fcb8ae00
d6eb2d853fd30324d9703ce43241177093a12348a53800d30bfd9d0a48b93448
GET /ytc/AMLnZu-rRdC4HrdzXXzlyTpZxNStMyYPty-76Dxk2ygCHg=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Fri, 02 Dec 2022 11:01:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 01 Dec 2022 11:01:07 GMT
server: fife
content-length: 1020
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ed11eee2bea0fb8ed1c93e5a1430e35b
0b4bd6bdb585691eb99681be0cc8544694b5bf6a
6e019a78f4ef6f7fcf21d1d905cd10be9e4843a84d557e61223fc078965dd97a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ed11eee2bea0fb8ed1c93e5a1430e35b
0b4bd6bdb585691eb99681be0cc8544694b5bf6a
6e019a78f4ef6f7fcf21d1d905cd10be9e4843a84d557e61223fc078965dd97a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&mh=_n&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1828750&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=video%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&otf=1&otfp=1&dur=0.000&lmt=1615376780605217&mt=1669892015&fvip=4&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=6210222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgAarGQ0bsg-Wxqob6PqTMVOMZ_p4pEsg1l16puCfdvAYCIG7EnDpA6vA6_ax-CRzx5eF4b0uJT6QoCTPMuaDhVhp4&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgWIwltaBoHGcZ7kSoHwCJnSo931DOZIRWwocfJ4esLHcCIQDFLDoAwGR9c0hcb_qtthqXefFT52J7WcOnSELQJ67jtg%3D%3D&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&sq=0&rn=1&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU=
91.90.45.172200 OK 1.2 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&mh=_n&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1828750&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=video%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&otf=1&otfp=1&dur=0.000&lmt=1615376780605217&mt=1669892015&fvip=4&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=6210222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgAarGQ0bsg-Wxqob6PqTMVOMZ_p4pEsg1l16puCfdvAYCIG7EnDpA6vA6_ax-CRzx5eF4b0uJT6QoCTPMuaDhVhp4&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgWIwltaBoHGcZ7kSoHwCJnSo931DOZIRWwocfJ4esLHcCIQDFLDoAwGR9c0hcb_qtthqXefFT52J7WcOnSELQJ67jtg%3D%3D&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&sq=0&rn=1&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU=
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1219), with no line terminators
Hash 785aba67d49856b5186415bf64e55ac7
7e2af319f8b152753fec5438af1a09889a5984e1
71c8e89399b70de7f181db6c3207316470037b169fdbcce498b069c2f125a95d
GET /videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&mh=_n&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1828750&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=video%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&otf=1&otfp=1&dur=0.000&lmt=1615376780605217&mt=1669892015&fvip=4&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=6210222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgAarGQ0bsg-Wxqob6PqTMVOMZ_p4pEsg1l16puCfdvAYCIG7EnDpA6vA6_ax-CRzx5eF4b0uJT6QoCTPMuaDhVhp4&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgWIwltaBoHGcZ7kSoHwCJnSo931DOZIRWwocfJ4esLHcCIQDFLDoAwGR9c0hcb_qtthqXefFT52J7WcOnSELQJ67jtg%3D%3D&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&sq=0&rn=1&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Thu, 01 Dec 2022 11:01:07 GMT
Expires: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1219
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=251&source=youtube&requiressl=yes&mh=_n&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1828750&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=audio%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&gir=yes&clen=1418869&otfp=1&dur=90.121&lmt=1615376774893522&mt=1669892015&fvip=4&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=6211222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXcAnk0tNVCHCGakchtFp0mCshLvsjJaow8AH7VWDO-kCIFA7GkLiop-XxMOM0afDhvOY_4f4aGonik5S9LZ34T6w&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgWIwltaBoHGcZ7kSoHwCJnSo931DOZIRWwocfJ4esLHcCIQDFLDoAwGR9c0hcb_qtthqXefFT52J7WcOnSELQJ67jtg%3D%3D&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&range=0-65961&rn=2&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU=
91.90.45.172200 OK 1.2 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=251&source=youtube&requiressl=yes&mh=_n&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1828750&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=audio%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&gir=yes&clen=1418869&otfp=1&dur=90.121&lmt=1615376774893522&mt=1669892015&fvip=4&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=6211222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXcAnk0tNVCHCGakchtFp0mCshLvsjJaow8AH7VWDO-kCIFA7GkLiop-XxMOM0afDhvOY_4f4aGonik5S9LZ34T6w&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgWIwltaBoHGcZ7kSoHwCJnSo931DOZIRWwocfJ4esLHcCIQDFLDoAwGR9c0hcb_qtthqXefFT52J7WcOnSELQJ67jtg%3D%3D&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&range=0-65961&rn=2&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU=
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1182), with no line terminators
Hash e3eb85f6a7d3560e26844fae1993cf42
5c0796c015b4c8f4d6f08ea2c8955aa010954757
b1124bc5ce53f6f69f2497f362746a47ed49a2dd16481137ac3421579a3bc224
GET /videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=251&source=youtube&requiressl=yes&mh=_n&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=1828750&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=audio%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&gir=yes&clen=1418869&otfp=1&dur=90.121&lmt=1615376774893522&mt=1669892015&fvip=4&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=6211222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXcAnk0tNVCHCGakchtFp0mCshLvsjJaow8AH7VWDO-kCIFA7GkLiop-XxMOM0afDhvOY_4f4aGonik5S9LZ34T6w&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgWIwltaBoHGcZ7kSoHwCJnSo931DOZIRWwocfJ4esLHcCIQDFLDoAwGR9c0hcb_qtthqXefFT52J7WcOnSELQJ67jtg%3D%3D&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&range=0-65961&rn=2&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Thu, 01 Dec 2022 11:01:07 GMT
Expires: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1182
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ed11eee2bea0fb8ed1c93e5a1430e35b
0b4bd6bdb585691eb99681be0cc8544694b5bf6a
6e019a78f4ef6f7fcf21d1d905cd10be9e4843a84d557e61223fc078965dd97a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79e80787534035cb4b3531d77a0d4432
61477b58a4caa41e02f12ddb606fb9059fea76ac
487a083d5db20fc4afe03e307ec0605954f43e3acd48feabd206c7aa599852bb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79e80787534035cb4b3531d77a0d4432
61477b58a4caa41e02f12ddb606fb9059fea76ac
487a083d5db20fc4afe03e307ec0605954f43e3acd48feabd206c7aa599852bb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=251&source=youtube&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=audio%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&gir=yes&clen=1418869&otfp=1&dur=90.121&lmt=1615376774893522&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6211222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXcAnk0tNVCHCGakchtFp0mCshLvsjJaow8AH7VWDO-kCIFA7GkLiop-XxMOM0afDhvOY_4f4aGonik5S9LZ34T6w&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=_n&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669892264&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgIaQlZnYzV6zLJDHvL-hTKX70_QMGD2lNFQcnZPnn_1ACIQC88EKNBu81RSwx6xvp-xRmyw-XE2E_LW0vGPV93NfEaA%3D%3D&range=0-65961&rn=4&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU=
74.125.111.9200 OK 1.2 kB URL HTTP/1.1 rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=251&source=youtube&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=audio%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&gir=yes&clen=1418869&otfp=1&dur=90.121&lmt=1615376774893522&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6211222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXcAnk0tNVCHCGakchtFp0mCshLvsjJaow8AH7VWDO-kCIFA7GkLiop-XxMOM0afDhvOY_4f4aGonik5S9LZ34T6w&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=_n&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669892264&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgIaQlZnYzV6zLJDHvL-hTKX70_QMGD2lNFQcnZPnn_1ACIQC88EKNBu81RSwx6xvp-xRmyw-XE2E_LW0vGPV93NfEaA%3D%3D&range=0-65961&rn=4&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU=
IP 74.125.111.9:0
File type ASCII text, with very long lines (1192), with no line terminators
Hash d21bc5c517121c9c995f959ad0c5ebe1
3fff42be9a6cd38e4690f82189de3a71ffe9ac35
55469db4a337112e440b850809f7f0b92d1f0bdc263723f93a9007b231c7a951
GET /videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=251&source=youtube&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=audio%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&gir=yes&clen=1418869&otfp=1&dur=90.121&lmt=1615376774893522&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6211222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXcAnk0tNVCHCGakchtFp0mCshLvsjJaow8AH7VWDO-kCIFA7GkLiop-XxMOM0afDhvOY_4f4aGonik5S9LZ34T6w&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=_n&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669892264&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgIaQlZnYzV6zLJDHvL-hTKX70_QMGD2lNFQcnZPnn_1ACIQC88EKNBu81RSwx6xvp-xRmyw-XE2E_LW0vGPV93NfEaA%3D%3D&range=0-65961&rn=4&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU= HTTP/1.1
Host: rr4---sn-5goeenez.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Thu, 01 Dec 2022 11:01:07 GMT
Expires: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1192
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=video%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&otf=1&otfp=1&dur=0.000&lmt=1615376780605217&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgAarGQ0bsg-Wxqob6PqTMVOMZ_p4pEsg1l16puCfdvAYCIG7EnDpA6vA6_ax-CRzx5eF4b0uJT6QoCTPMuaDhVhp4&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=_n&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669892264&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgVYCtHH__RcP80nJkCBqI11Q1FZPP6pJXTGCnhf6vueECICV_d1y2GZjPkIpuJhbwF2jB-u3tblr9OVLGI6YJNKPH&sq=0&rn=3&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU=
74.125.111.9200 OK 1.2 kB URL HTTP/1.1 rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=video%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&otf=1&otfp=1&dur=0.000&lmt=1615376780605217&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgAarGQ0bsg-Wxqob6PqTMVOMZ_p4pEsg1l16puCfdvAYCIG7EnDpA6vA6_ax-CRzx5eF4b0uJT6QoCTPMuaDhVhp4&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=_n&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669892264&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgVYCtHH__RcP80nJkCBqI11Q1FZPP6pJXTGCnhf6vueECICV_d1y2GZjPkIpuJhbwF2jB-u3tblr9OVLGI6YJNKPH&sq=0&rn=3&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU=
IP 74.125.111.9:0
File type ASCII text, with very long lines (1231), with no line terminators
Hash 206c97da00a7f7d232a1c3be5059deaa
ff8ac225bc44de6d37c168581e6b98146ca703f6
9232855dc091ece934ac4386b158e1d9bda8685cb21eb2a5f5fcd57a29285baf
GET /videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=video%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&otf=1&otfp=1&dur=0.000&lmt=1615376780605217&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgAarGQ0bsg-Wxqob6PqTMVOMZ_p4pEsg1l16puCfdvAYCIG7EnDpA6vA6_ax-CRzx5eF4b0uJT6QoCTPMuaDhVhp4&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=_n&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669892264&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgVYCtHH__RcP80nJkCBqI11Q1FZPP6pJXTGCnhf6vueECICV_d1y2GZjPkIpuJhbwF2jB-u3tblr9OVLGI6YJNKPH&sq=0&rn=3&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU= HTTP/1.1
Host: rr4---sn-5goeenez.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Thu, 01 Dec 2022 11:01:07 GMT
Expires: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1231
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79e80787534035cb4b3531d77a0d4432
61477b58a4caa41e02f12ddb606fb9059fea76ac
487a083d5db20fc4afe03e307ec0605954f43e3acd48feabd206c7aa599852bb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=video%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&otf=1&otfp=1&dur=0.000&lmt=1615376780605217&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgAarGQ0bsg-Wxqob6PqTMVOMZ_p4pEsg1l16puCfdvAYCIG7EnDpA6vA6_ax-CRzx5eF4b0uJT6QoCTPMuaDhVhp4&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=_n&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669892264&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAJhXsO_C35Li1KMkJGB57OefCZ7fBU-Pkj0V1t01xyvCAiAqyG3iTlGjP6MfMaoQRVRhqRIwxNXC5ZiIKk-E3Eo9NA%3D%3D&sq=0&rn=7&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU=
74.125.111.9200 OK 1.2 kB URL HTTP/1.1 rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=video%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&otf=1&otfp=1&dur=0.000&lmt=1615376780605217&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgAarGQ0bsg-Wxqob6PqTMVOMZ_p4pEsg1l16puCfdvAYCIG7EnDpA6vA6_ax-CRzx5eF4b0uJT6QoCTPMuaDhVhp4&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=_n&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669892264&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAJhXsO_C35Li1KMkJGB57OefCZ7fBU-Pkj0V1t01xyvCAiAqyG3iTlGjP6MfMaoQRVRhqRIwxNXC5ZiIKk-E3Eo9NA%3D%3D&sq=0&rn=7&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU=
IP 74.125.111.9:0
File type ASCII text, with very long lines (1239), with no line terminators
Hash 61e2ecc7f895260ab52bff93907502ca
3d2dc42e4f20044e4aea2aaefe5a172ce1b804a5
b3cb3d097c839876a3cb94fc5173ae45c757545292a69c160488e6b75bc0a7c6
GET /videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=video%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&otf=1&otfp=1&dur=0.000&lmt=1615376780605217&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgAarGQ0bsg-Wxqob6PqTMVOMZ_p4pEsg1l16puCfdvAYCIG7EnDpA6vA6_ax-CRzx5eF4b0uJT6QoCTPMuaDhVhp4&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=_n&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669892264&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAJhXsO_C35Li1KMkJGB57OefCZ7fBU-Pkj0V1t01xyvCAiAqyG3iTlGjP6MfMaoQRVRhqRIwxNXC5ZiIKk-E3Eo9NA%3D%3D&sq=0&rn=7&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU= HTTP/1.1
Host: rr4---sn-5goeenez.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Thu, 01 Dec 2022 11:01:07 GMT
Expires: Thu, 01 Dec 2022 11:01:07 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1239
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr2---sn-5hnekn7s.googlevideo.com/videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=video%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&otf=1&otfp=1&dur=0.000&lmt=1615376780605217&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgAarGQ0bsg-Wxqob6PqTMVOMZ_p4pEsg1l16puCfdvAYCIG7EnDpA6vA6_ax-CRzx5eF4b0uJT6QoCTPMuaDhVhp4&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=_n&mm=34&mn=sn-5hnekn7s&ms=ltu&mt=1669892226&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgdJClcjI1Ie-SHigSY8JM7nW8zYnKMRJQIsj6SEe3OMYCIQDyjEdUTMo015ZAzNh_tPq7ov-t05ejM3qbMlHCFBFlJg%3D%3D&sq=0&rn=8&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU=
74.125.100.39200 OK 351 B URL HTTP/1.1 rr2---sn-5hnekn7s.googlevideo.com/videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=video%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&otf=1&otfp=1&dur=0.000&lmt=1615376780605217&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgAarGQ0bsg-Wxqob6PqTMVOMZ_p4pEsg1l16puCfdvAYCIG7EnDpA6vA6_ax-CRzx5eF4b0uJT6QoCTPMuaDhVhp4&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=_n&mm=34&mn=sn-5hnekn7s&ms=ltu&mt=1669892226&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgdJClcjI1Ie-SHigSY8JM7nW8zYnKMRJQIsj6SEe3OMYCIQDyjEdUTMo015ZAzNh_tPq7ov-t05ejM3qbMlHCFBFlJg%3D%3D&sq=0&rn=8&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU=
IP 74.125.100.39:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 43fad102fa93414ed136ad88708950ee
249a6919964d211d62979f7deb61539790e9594c
457fd6c7ac001a4690bbf57a29d5332083c10001e1e78c9685fc464cde8e7cbc
GET /videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=video%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&otf=1&otfp=1&dur=0.000&lmt=1615376780605217&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgAarGQ0bsg-Wxqob6PqTMVOMZ_p4pEsg1l16puCfdvAYCIG7EnDpA6vA6_ax-CRzx5eF4b0uJT6QoCTPMuaDhVhp4&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=_n&mm=34&mn=sn-5hnekn7s&ms=ltu&mt=1669892226&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgdJClcjI1Ie-SHigSY8JM7nW8zYnKMRJQIsj6SEe3OMYCIQDyjEdUTMo015ZAzNh_tPq7ov-t05ejM3qbMlHCFBFlJg%3D%3D&sq=0&rn=8&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU= HTTP/1.1
Host: rr2---sn-5hnekn7s.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Fri, 04 Nov 2022 21:17:18 GMT
Content-Type: video/webm
Date: Thu, 01 Dec 2022 11:01:08 GMT
Expires: Thu, 01 Dec 2022 11:01:08 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 351
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr2---sn-5hnekn7s.googlevideo.com/videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=251&source=youtube&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=audio%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&gir=yes&clen=1418869&otfp=1&dur=90.121&lmt=1615376774893522&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6211222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXcAnk0tNVCHCGakchtFp0mCshLvsjJaow8AH7VWDO-kCIFA7GkLiop-XxMOM0afDhvOY_4f4aGonik5S9LZ34T6w&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=_n&mm=34&mn=sn-5hnekn7s&ms=ltu&mt=1669892226&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAI69JOZfWitkscyJq6ELyG_PAFxvOIl70uWbJ91qiQ-aAiBqoQ2NTFsIQkWonkUCTVDEUGq8pasMTAx8Vr8sHpwnmw%3D%3D&range=0-65961&rn=5&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU=
74.125.100.39200 OK 66 kB URL HTTP/1.1 rr2---sn-5hnekn7s.googlevideo.com/videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=251&source=youtube&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=audio%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&gir=yes&clen=1418869&otfp=1&dur=90.121&lmt=1615376774893522&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6211222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXcAnk0tNVCHCGakchtFp0mCshLvsjJaow8AH7VWDO-kCIFA7GkLiop-XxMOM0afDhvOY_4f4aGonik5S9LZ34T6w&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=_n&mm=34&mn=sn-5hnekn7s&ms=ltu&mt=1669892226&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAI69JOZfWitkscyJq6ELyG_PAFxvOIl70uWbJ91qiQ-aAiBqoQ2NTFsIQkWonkUCTVDEUGq8pasMTAx8Vr8sHpwnmw%3D%3D&range=0-65961&rn=5&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU=
IP 74.125.100.39:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 839a6c900dfbe933a464683da0b61e2a
b243384d18080b81255e0c9b39a614d7678871ba
9c926ac531b1ad5c3728dece8524160cb0fed3dd2a613a3376f1ccfcd9c71ba1
GET /videoplayback?expire=1669914067&ei=c4mIY837GcyQyAXXkLGgDw&ip=91.90.42.154&id=o-AGoAU7FqEHa0yrHnA-5-0iE5OeVqCWM2b4FYdVTO8r3L&itag=251&source=youtube&requiressl=yes&spc=SFxXNqBGsCiCpEgnVKQubp8k5ClcBcY&vprv=1&mime=audio%2Fwebm&ns=6gP-Q9CoJYLNR5I8JLTBERcJ&gir=yes&clen=1418869&otfp=1&dur=90.121&lmt=1615376774893522&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6211222&n=4eU2vR7797n4_Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRAIgXcAnk0tNVCHCGakchtFp0mCshLvsjJaow8AH7VWDO-kCIFA7GkLiop-XxMOM0afDhvOY_4f4aGonik5S9LZ34T6w&alr=yes&cpn=CiGgfjSSyUyhs-9p&cver=1.20221129.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=_n&mm=34&mn=sn-5hnekn7s&ms=ltu&mt=1669892226&mv=m&mvi=2&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIhAI69JOZfWitkscyJq6ELyG_PAFxvOIl70uWbJ91qiQ-aAiBqoQ2NTFsIQkWonkUCTVDEUGq8pasMTAx8Vr8sHpwnmw%3D%3D&range=0-65961&rn=5&rbuf=0&pot=D3tGPVmA3uMme31XjDBcqxEMTs7oLAVcZj6Yn59uqkuNDBavDxiStRv5t-H9D_vXRyFMIpMoxPuG0D6kaTN4TmDptEvwxdJ6_YXkrAor7aiDB-iIPnKquU3ss2vt8KLeVI6-jgH9fdU= HTTP/1.1
Host: rr2---sn-5hnekn7s.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Wed, 10 Mar 2021 11:46:14 GMT
Content-Type: audio/webm
Date: Thu, 01 Dec 2022 11:01:08 GMT
Expires: Thu, 01 Dec 2022 11:01:08 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 65962
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1e6b6ba4f82221b41c3d9129008c76d
2f9532d698b4c28df23e18bbb66399ec776d5b9f
218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: c08f55b2-7ac6-4dec-b53c-fd3f4533f9c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpBiGoHIAMFR2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bba3-69c2c2d05e55fd745caf1dce;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:09:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w_Mb-0pBwp-pUyU2bdJ8MhrGHkk6VQgJmcGV9MfHwj_yGUMIYZkyrg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 10:48:24 GMT
age: 764
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
216.58.211.14200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api
IP 216.58.211.14:0
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bacompany.com.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Thu, 01 Dec 2022 11:01:06 GMT
date: Thu, 01 Dec 2022 11:01:06 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=e2dZVWKcWU0; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=ZSz_tLTBsa8; Domain=.youtube.com; Expires=Tue, 30-May-2023 11:01:06 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+778; expires=Sat, 30-Nov-2024 11:01:06 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CTitillium+Web%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CJosefin+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.6.10
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CTitillium+Web%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CJosefin+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.6.10
IP 142.250.74.106:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CTitillium+Web%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CJosefin+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.6.10 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bacompany.com.sa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 11:01:01 GMT
date: Thu, 01 Dec 2022 11:01:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2