r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c83d39f350161ed2f5d20dcd68e47c92
2695a888e652cb314f8094cc6073c3364336d272
62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5810
Expires: Tue, 28 Mar 2023 16:01:27 GMT
Date: Tue, 28 Mar 2023 14:24:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2974
Expires: Tue, 28 Mar 2023 15:14:11 GMT
Date: Tue, 28 Mar 2023 14:24:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ed282214b024a7895d90e229e92bb1cc
1f447aa59287ce2b45860a1a909d005a41305f77
a35ae9f89cbc77ed5fe849acdc2701592799c335f2674776d69c25bca0a00c2e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Alert, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 28 Mar 2023 14:15:51 GMT
content-type: application/json
age: 526
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5ad3eec59bebbf969f175627757507c1
b176af3a70db378c9e1f219bab24d9d446070d6f
704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11148
Expires: Tue, 28 Mar 2023 17:30:25 GMT
Date: Tue, 28 Mar 2023 14:24:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: iRTIWr2mJ2waDQ03QD2PHYWuL3pwHhnErtRF0XdnGfO9jrwdeP/e6+KadkuzUgYtqCOcCQ1Gt94=
x-amz-request-id: 8JNS4FQW53501ZJ0
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 28 Mar 2023 13:56:14 GMT
age: 1703
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 14:24:37 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f09b3bf8534bef19669767735d8c743d
cfc0caae16b4ae9a6183bdb50442a774ec2cb100
168b34fc0b21823205359450abd4b42f7165e489d7d267ce5bc07f1b11592932
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "168B34FC0B21823205359450ABD4B42F7165E489D7D267CE5BC07F1B11592932"
Last-Modified: Mon, 27 Mar 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21589
Expires: Tue, 28 Mar 2023 20:24:26 GMT
Date: Tue, 28 Mar 2023 14:24:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Backoff, Alert, Retry-After, Cache-Control, Content-Length, Pragma, Expires, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 28 Mar 2023 14:17:25 GMT
age: 432
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 76a0aba3ddb470751c690f5a725159f2
8cb789e8e0dfa336270700ef1e607173f2aee6cd
e76de476654125a06994065d66e30c6fb6c354d0f67fd4e31a3f78679e2bfdcb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E76DE476654125A06994065D66E30C6FB6C354D0F67FD4E31A3F78679E2BFDCB"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11518
Expires: Tue, 28 Mar 2023 17:36:35 GMT
Date: Tue, 28 Mar 2023 14:24:37 GMT
Connection: keep-alive
push.services.mozilla.com/
54.191.227.137101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.191.227.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: y/UQBZ2pFAThdaCLOrQ7vw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RGsdDqMikuHiAIARtQwVLzW+uWY=
upload.wikimedia.org/wikipedia/en/thumb/7/77/Laurentian_Bank_of_Canada_logo.svg/1200px-Laurentian_Bank_of_Canada_logo.svg.png
91.198.174.208200 OK 24 kB URL HTTP/2 upload.wikimedia.org/wikipedia/en/thumb/7/77/Laurentian_Bank_of_Canada_logo.svg/1200px-Laurentian_Bank_of_Canada_logo.svg.png
IP 91.198.174.208:0
File type PNG image data, 1200 x 391, 8-bit/color RGBA, non-interlaced\012- data
Hash b2ba0a626f3d1c3a79eacaa7857d489d
3db11508b6083869feb401f2c56b5927f2c4d1cd
c85bd673696df783cd1cf6f65b78792ca322b4aa638dfb5529855fbb5830b4b1
GET /wikipedia/en/thumb/7/77/Laurentian_Bank_of_Canada_logo.svg/1200px-Laurentian_Bank_of_Canada_logo.svg.png HTTP/1.1
Host: upload.wikimedia.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 11:20:10 GMT
content-type: image/png
content-length: 24368
etag: b2ba0a626f3d1c3a79eacaa7857d489d
last-modified: Thu, 15 Feb 2018 11:53:30 GMT
server: ATS/9.1.4
age: 11068
x-cache: cp3055 hit, cp3061 miss
x-cache-status: hit-local
server-timing: cache;desc="hit-local", host;desc="cp3061"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 91.90.42.154
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/retrieveLogo_012.svg
50.87.249.20200 OK 7.1 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/retrieveLogo_012.svg
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 7f93c07fc45ff4b4be039e72da0675c2
42204b74fad2757af07aa5cbc11ba69314a097d5
da103dbb9c83919e677d0c4de46025b4c4153daadb6e27942a65d5723f3a338f
GET /INTERAC%20e-Transfer_fichiers/retrieveLogo_012.svg HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/svg+xml
content-length: 7148
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/question-mark.svg
50.87.249.20200 OK 1.2 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/question-mark.svg
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (758)
Hash f79843c3c2445babe5c1ae608ef25845
f17bca1dd2df187ab5eb5d0751dc1a42847b4f1d
615c1250335dcbfddff71eb876481abfdcbb93014d1b7892fff34b5a11d1f3c1
GET /INTERAC%20e-Transfer_fichiers/question-mark.svg HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/svg+xml
content-length: 1221
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/desj.png
50.87.249.20200 OK 3.7 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/desj.png
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 403 x 125, 8-bit colormap, non-interlaced\012- data
Hash 4278f83f255df16adfe09508db4c8cab
81dbba55eceb89518d8166de3a8328c48b651264
7216e7d5b16f868bfb6b957d7e216ae8cba3595feefb16192e31f95bcf0e727e
GET /INTERAC%20e-Transfer_fichiers/desj.png HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/png
content-length: 3735
last-modified: Mon, 16 Sep 2019 19:46:32 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/activityi_data/a.gif
50.87.249.20200 OK 42 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/activityi_data/a.gif
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /INTERAC%20e-Transfer_fichiers/activityi_data/a.gif HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/INTERAC%20e-Transfer_fichiers/activityi.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/gif
content-length: 42
last-modified: Sat, 25 Mar 2017 02:19:52 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/meri.png
50.87.249.20200 OK 5.2 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/meri.png
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 441 x 114, 8-bit colormap, non-interlaced\012- data
Hash 773a9ef4874528ac29d748a34c60e7a8
cd356b6996706eb27731543d8271c609b1192850
05fe5e795ecda25ad8410df06fd848112c88b9aa75458caafc9fc8276362fceb
GET /INTERAC%20e-Transfer_fichiers/meri.png HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/png
content-length: 5228
last-modified: Mon, 16 Sep 2019 19:43:48 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/atb.png
50.87.249.20200 OK 24 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/atb.png
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 325, 8-bit/color RGBA, non-interlaced\012- data
Hash 5a9a907f7e3e07d47638677d69b22233
62e1951d1f4b18e55660b91365450d211f5f68fd
094d934d457220b698180fec8869efd2e660617ef5c4cde0beee2d565f2d45a5
GET /INTERAC%20e-Transfer_fichiers/atb.png HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/png
content-length: 24402
last-modified: Mon, 30 Dec 2019 05:16:18 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/retrieveLogo_003.svg
50.87.249.20200 OK 5.2 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/retrieveLogo_003.svg
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2bcc1700517e379a6595af20b5eb258a
a5650b9076432d53aca473dc62fe5de3d7e637c5
db09fc1f3c7b0968d63c6a084b54917225fc17f172eee60a3086ce9ea51fa9b7
GET /INTERAC%20e-Transfer_fichiers/retrieveLogo_003.svg HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/svg+xml
content-length: 5178
last-modified: Sat, 25 Mar 2017 02:19:52 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/pc.png
50.87.249.20200 OK 4.1 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/pc.png
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 482 x 104, 8-bit colormap, non-interlaced\012- data
Hash 5120dce8a8f4f410b27032a0ff8291f5
a119a21c49ab490f96ead1191a8ec7cdff383586
1268ec2ae11982ea5617e2694a5be6017d078cdbd95610874e5715be14b7ebc1
GET /INTERAC%20e-Transfer_fichiers/pc.png HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/png
content-length: 4135
last-modified: Mon, 30 Dec 2019 05:02:18 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/mot.jpg
50.87.249.20200 OK 6.5 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/mot.jpg
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 394x222, components 3\012- data
Hash e6d32407de0c1e524a0988b138d40c7b
bc4c5d2ae32177bd98622b1b85f441b0c57377ac
3ed11bc953873717966f08d8ab4c4424f63dfd8ea184eceee7214c9eb85f964b
GET /INTERAC%20e-Transfer_fichiers/mot.jpg HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/jpeg
content-length: 6549
last-modified: Mon, 16 Sep 2019 19:52:42 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/retrieveLogo_010.svg
50.87.249.20200 OK 5.4 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/retrieveLogo_010.svg
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash f1ee251f868c6eb7184d795d62c3eb8a
f2b8ec28647076273a8cef3f8506e8fa60dff596
9e787eb9727523cc7aa0efa3c0c3debdd36ed2e59503b9b59881d7e5e0b8fc7d
GET /INTERAC%20e-Transfer_fichiers/retrieveLogo_010.svg HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/svg+xml
content-length: 5370
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/retrieveLogo_011.svg
50.87.249.20200 OK 964 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/retrieveLogo_011.svg
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6dbd95cf8a336ada55aa66884829bd5a
e699d784042dc501df68268d6c8168ae54286ec6
2d70de35d8125369775a01fb1f1e58ab5f937843dc024eaeb5c2ff42dd5b9ac3
GET /INTERAC%20e-Transfer_fichiers/retrieveLogo_011.svg HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/svg+xml
content-length: 964
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/CIBC_logo.svg
50.87.249.20200 OK 3.4 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/CIBC_logo.svg
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e07887599e4745fd0a00e2b967be60fd
c56ba46f6638e581c10b6c0be9a56d839dccd6bb
b774e03347f7fd3d1a0f12aa894ef9a2ad55326cac5739c7cf85e424edd5fe1c
GET /INTERAC%20e-Transfer_fichiers/CIBC_logo.svg HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/svg+xml
content-length: 3410
last-modified: Sun, 02 Apr 2017 12:08:28 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/nav-logo.svg
50.87.249.20200 OK 7.5 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/nav-logo.svg
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 1c8460a0a8e618fe109fcc79d186f2b5
c7b97700a2be663391c35906030db60a5eced78d
aecf03897aa76697c48460efd228a17fc6e2b27b27d52a1289f86caefdd615c2
GET /INTERAC%20e-Transfer_fichiers/nav-logo.svg HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/svg+xml
content-length: 7495
last-modified: Sat, 25 Mar 2017 02:19:52 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/manu.png
50.87.249.20200 OK 2.2 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/manu.png
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 362 x 139, 8-bit colormap, non-interlaced\012- data
Hash acaf725c2dc664344ba4985085f9f06c
9f746cb89aa130e095e093c01289b255ca3f23e2
e129b8fdd752311dd85762cc8ca8b31999380c3a36e1d6e8da714f0d41a35681
GET /INTERAC%20e-Transfer_fichiers/manu.png HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/png
content-length: 2203
last-modified: Mon, 16 Sep 2019 19:41:50 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/hsbc.png
50.87.249.20200 OK 2.9 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/hsbc.png
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 479 x 105, 8-bit colormap, non-interlaced\012- data
Hash a3a130447908b7f7f0ac21a71d2b8d38
d383aeb0ef8daff6eae3f72e3952c9d977647441
4c2610e56b15714a1051d9bcf319e79c12872726b9d2ef9724c5ba925b8b2d23
GET /INTERAC%20e-Transfer_fichiers/hsbc.png HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/png
content-length: 2895
last-modified: Mon, 30 Dec 2019 05:06:48 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/retrieveLogo_013.svg
50.87.249.20200 OK 4.7 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/retrieveLogo_013.svg
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 94a11e3ab6455d72ba2eb3bf76dd02a6
3e492c445f36e8f577b286d65cc65980d4e401d8
0299918272e06ca437732616075e2db772d6708ae45c714fe7d2294ed3a7cf59
GET /INTERAC%20e-Transfer_fichiers/retrieveLogo_013.svg HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/svg+xml
content-length: 4650
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/retrieveLogo_007.svg
50.87.249.20200 OK 3.9 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/retrieveLogo_007.svg
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 7c3e381e1612af2735140be1a1354157
4eecf5ce7eb5f587afb5ad1205cdd2396d29e59d
7ed4383e1732ec505b094b3856dc7375fef1bf351eea96775758ffc5461f1074
GET /INTERAC%20e-Transfer_fichiers/retrieveLogo_007.svg HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/svg+xml
content-length: 3875
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/footer-logo-en.svg
50.87.249.20200 OK 34 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/footer-logo-en.svg
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bc44f96cf1d4d9932e578543b3f9a63d
a7ab7ac174d69fb8ca3187725653e37002a5c1ff
5988dde3c4371f87e723912b971f70dbcaa0594408e5192f63fb0f5dd901d6c7
GET /INTERAC%20e-Transfer_fichiers/footer-logo-en.svg HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/svg+xml
content-length: 33481
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/activityi_data/a_002.gif
50.87.249.20200 OK 42 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/activityi_data/a_002.gif
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /INTERAC%20e-Transfer_fichiers/activityi_data/a_002.gif HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/INTERAC%20e-Transfer_fichiers/activityi.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/gif
content-length: 42
last-modified: Sat, 25 Mar 2017 02:19:52 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/simpl.png
50.87.249.20200 OK 188 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/simpl.png
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 3599 x 2443, 8-bit/color RGB, non-interlaced\012- data
Size 188 kB (187625 bytes)
Hash f5075ad61b53b3a22a2e2e3f4bacd1cb
2c14d7fc7a9cd61ec09ee48e55589a25220be288
9a22808680fe198d7a4093f54138a32e2e004b0728f2c89d2d471d932f74835a
GET /INTERAC%20e-Transfer_fichiers/simpl.png HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: image/png
content-length: 187625
last-modified: Mon, 16 Sep 2019 19:55:28 GMT
accept-ranges: bytes
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24b6b63c575b987ca5887b023df7d2eb
c77d2d86aebb9e8e55cb9be53683ae532535292c
2d484eb2a8975f592d679f557f8bc1cde3ae733f7ff7e6961265391dbcf71e8a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24b6b63c575b987ca5887b023df7d2eb
c77d2d86aebb9e8e55cb9be53683ae532535292c
2d484eb2a8975f592d679f557f8bc1cde3ae733f7ff7e6961265391dbcf71e8a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24b6b63c575b987ca5887b023df7d2eb
c77d2d86aebb9e8e55cb9be53683ae532535292c
2d484eb2a8975f592d679f557f8bc1cde3ae733f7ff7e6961265391dbcf71e8a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleadservices.com/pagead/conversion/979606057/?random=1680013499569&cv=8&fst=1680013499519&num=3&fmt=3&label=USQkCKH7zmIQqbSO0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php
142.250.74.98302 Found 42 B URL HTTP/2 www.googleadservices.com/pagead/conversion/979606057/?random=1680013499569&cv=8&fst=1680013499519&num=3&fmt=3&label=USQkCKH7zmIQqbSO0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/conversion/979606057/?random=1680013499569&cv=8&fst=1680013499519&num=3&fmt=3&label=USQkCKH7zmIQqbSO0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 14:24:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/979606057/?random=1114532983&cv=8&fst=1680013499519&num=3&fmt=3&label=USQkCKH7zmIQqbSO0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=pvgiZPHlOfiJ-cAPwaGJqAI&sscte=1&crd=
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion/954740125/?random=1680013499562&cv=8&fst=1680013499519&num=2&fmt=1&label=0x9BCJvGwGMQndugxwM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php
142.250.74.98302 Found 41 B URL HTTP/2 www.googleadservices.com/pagead/conversion/954740125/?random=1680013499562&cv=8&fst=1680013499519&num=2&fmt=1&label=0x9BCJvGwGMQndugxwM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php
IP 142.250.74.98:0
File type HTML document, ASCII text, with no line terminators
Hash 6f9614f3366bc133d8af98b2972414d3
3326014795542af72daca0ba061d2058e439d296
3faab04f2e5f618866392db3954950192c0f83f127915a62a56bce2539ff53d7
GET /pagead/conversion/954740125/?random=1680013499562&cv=8&fst=1680013499519&num=2&fmt=1&label=0x9BCJvGwGMQndugxwM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 14:24:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/954740125/?random=916004463&cv=8&fst=1680013499519&num=2&fmt=1&label=0x9BCJvGwGMQndugxwM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=pvgiZL3uOd20iQb9p5V4&sscte=1&crd=
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 41
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion/981124174/?random=1680013499519&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php
142.250.74.98302 Found 42 B URL HTTP/2 www.googleadservices.com/pagead/conversion/981124174/?random=1680013499519&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/conversion/981124174/?random=1680013499519&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 14:24:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/981124174/?random=1982529701&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=pvgiZLvwOZqliQb1qYm4DQ&sscte=1&crd=
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 43dfc0545b2763ef5c9f4ce5eb0005c5
5d46db4bc91ded50ef36b6165eb6f8f6983fb164
b0e4bfbf3f00a518869e46e86a62ea2a0e29c0a88f4b0767cf85d5899a37fae6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/allModuleJS.js
50.87.249.20200 OK 6.5 kB URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/allModuleJS.js
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 77732b54be09887439b7430fc68e39c6
67c6c32372d0b4a4181d8d79b4b3b481cfb41bc0
b17db2bf350783e9cbc8e79f204f450c418369f793ebee5a0f85ccb3e6493b54
GET /INTERAC%20e-Transfer_fichiers/allModuleJS.js HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: application/javascript
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b76c41e7fa6c84786fbcab7d2cb465f4
8847dc11d36d0b4bb3bc84cf978ba5fd492a3123
851b090355da469b1e3c4ea302c7ad7941f2a6b4eb79447791927b792be73ac7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b76c41e7fa6c84786fbcab7d2cb465f4
8847dc11d36d0b4bb3bc84cf978ba5fd492a3123
851b090355da469b1e3c4ea302c7ad7941f2a6b4eb79447791927b792be73ac7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/979606057/?random=1114532983&cv=8&fst=1680013499519&num=3&fmt=3&label=USQkCKH7zmIQqbSO0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=pvgiZPHlOfiJ-cAPwaGJqAI&sscte=1&crd=
142.250.74.66302 Found 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/979606057/?random=1114532983&cv=8&fst=1680013499519&num=3&fmt=3&label=USQkCKH7zmIQqbSO0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=pvgiZPHlOfiJ-cAPwaGJqAI&sscte=1&crd=
IP 142.250.74.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/979606057/?random=1114532983&cv=8&fst=1680013499519&num=3&fmt=3&label=USQkCKH7zmIQqbSO0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=pvgiZPHlOfiJ-cAPwaGJqAI&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://doraemonarabic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 14:24:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/979606057/?random=1114532983&cv=8&fst=1680013499519&num=3&fmt=3&label=USQkCKH7zmIQqbSO0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZPHlOfiJ-cAPwaGJqAI&random=1309969582
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 28-Mar-2023 14:39:39 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/981124174/?random=1982529701&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=pvgiZLvwOZqliQb1qYm4DQ&sscte=1&crd=
142.250.74.66302 Found 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/981124174/?random=1982529701&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=pvgiZLvwOZqliQb1qYm4DQ&sscte=1&crd=
IP 142.250.74.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/981124174/?random=1982529701&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=pvgiZLvwOZqliQb1qYm4DQ&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://doraemonarabic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 14:24:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/981124174/?random=1982529701&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZLvwOZqliQb1qYm4DQ&random=349782735
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 28-Mar-2023 14:39:39 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/954740125/?random=916004463&cv=8&fst=1680013499519&num=2&fmt=1&label=0x9BCJvGwGMQndugxwM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=pvgiZL3uOd20iQb9p5V4&sscte=1&crd=
142.250.74.66302 Found 41 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/954740125/?random=916004463&cv=8&fst=1680013499519&num=2&fmt=1&label=0x9BCJvGwGMQndugxwM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=pvgiZL3uOd20iQb9p5V4&sscte=1&crd=
IP 142.250.74.66:0
File type HTML document, ASCII text, with no line terminators
Hash 6f9614f3366bc133d8af98b2972414d3
3326014795542af72daca0ba061d2058e439d296
3faab04f2e5f618866392db3954950192c0f83f127915a62a56bce2539ff53d7
GET /pagead/viewthroughconversion/954740125/?random=916004463&cv=8&fst=1680013499519&num=2&fmt=1&label=0x9BCJvGwGMQndugxwM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=pvgiZL3uOd20iQb9p5V4&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://doraemonarabic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 14:24:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/954740125/?random=916004463&cv=8&fst=1680013499519&num=2&fmt=1&label=0x9BCJvGwGMQndugxwM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZL3uOd20iQb9p5V4&random=401162394
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 41
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 28-Mar-2023 14:39:39 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b76c41e7fa6c84786fbcab7d2cb465f4
8847dc11d36d0b4bb3bc84cf978ba5fd492a3123
851b090355da469b1e3c4ea302c7ad7941f2a6b4eb79447791927b792be73ac7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7e2d8156baac12231cc9cbfdefedacf1
62384d8842fb5b560ac39636bb519953e22dc664
ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7e2d8156baac12231cc9cbfdefedacf1
62384d8842fb5b560ac39636bb519953e22dc664
ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 718fd0a69c546765a1e4fb756d2c6660
f179206be32ab202458745c8b5b009faf236ba72
971bd81d829ea0f8aa54ef71cce89a5b8e1f1e4a87cb94c206770b2a233ccf0f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
doraemonarabic.net/resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.html
50.87.249.20404 Not Found 20 kB URL HTTP/2 doraemonarabic.net/resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.html
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1490)
Hash 7a261be33a997f29e6736dc8c7801542
59690af87f75479da83efdf030d42b5c8088a9ec
67baf26118e1bfb7688ef33c4c2b25caa0b5f8881e215931106ffd947cbac149
GET /resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.html HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Cookie: _ga=GA1.2.267484634.1680013499; _dc_gtm_UA-53324311-2=1; _dc_gtm_UA-53324311-1=1
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/resources/newgateway/vendor/jquery.mobile-1.4.5.min.html
50.87.249.20404 Not Found 274 B URL HTTP/2 doraemonarabic.net/resources/newgateway/vendor/jquery.mobile-1.4.5.min.html
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b2fae162d44b0d76613c2c40cbf26824
80e91be73cf440a73e73f340c9a0459d8822941c
e7d46e6f64496b0d5cf796d5b543dc2ce7387a416b72e1e2f3af413e1acf1abb
GET /resources/newgateway/vendor/jquery.mobile-1.4.5.min.html HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Cookie: _ga=GA1.2.267484634.1680013499; _dc_gtm_UA-53324311-2=1; _dc_gtm_UA-53324311-1=1
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7e2d8156baac12231cc9cbfdefedacf1
62384d8842fb5b560ac39636bb519953e22dc664
ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/navJS.js
50.87.249.20200 OK 428 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/navJS.js
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 9bb4547922596365263b3b74504fa4b0
eb0eb5d428a010560a24d8d8d6104ab923434127
1a91ce985bd27055a9706daa3967923c7cfe7683df0be21de7ef6423d5b09ee3
GET /INTERAC%20e-Transfer_fichiers/navJS.js HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: application/javascript
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7e2d8156baac12231cc9cbfdefedacf1
62384d8842fb5b560ac39636bb519953e22dc664
ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
doraemonarabic.net/resources/newgateway/vendor/jquery-mobile-theme/themes/interac-jqm.min.css
50.87.249.20404 Not Found 274 B URL HTTP/2 doraemonarabic.net/resources/newgateway/vendor/jquery-mobile-theme/themes/interac-jqm.min.css
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b2fae162d44b0d76613c2c40cbf26824
80e91be73cf440a73e73f340c9a0459d8822941c
e7d46e6f64496b0d5cf796d5b543dc2ce7387a416b72e1e2f3af413e1acf1abb
GET /resources/newgateway/vendor/jquery-mobile-theme/themes/interac-jqm.min.css HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Cookie: _ga=GA1.2.267484634.1680013499; _dc_gtm_UA-53324311-2=1; _dc_gtm_UA-53324311-1=1
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 718fd0a69c546765a1e4fb756d2c6660
f179206be32ab202458745c8b5b009faf236ba72
971bd81d829ea0f8aa54ef71cce89a5b8e1f1e4a87cb94c206770b2a233ccf0f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/r/collect?v=1&_v=j47&aip=1&a=1915562113&t=event&ni=1&_s=1&dl=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ul=en-us&de=UTF-8&dt=INTERAC%20e-Transfer&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=Scroll%20Depth&ea=Percentage&el=0%25&_u=SGCAAAABI~&jid=1451135678&cid=267484634.1680013499&tid=UA-53324311-1&_r=1>m=GTM-5SR238&z=695596092
142.250.74.142200 OK 35 B URL HTTP/2 www.google-analytics.com/r/collect?v=1&_v=j47&aip=1&a=1915562113&t=event&ni=1&_s=1&dl=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ul=en-us&de=UTF-8&dt=INTERAC%20e-Transfer&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=Scroll%20Depth&ea=Percentage&el=0%25&_u=SGCAAAABI~&jid=1451135678&cid=267484634.1680013499&tid=UA-53324311-1&_r=1>m=GTM-5SR238&z=695596092
IP 142.250.74.142:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/collect?v=1&_v=j47&aip=1&a=1915562113&t=event&ni=1&_s=1&dl=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ul=en-us&de=UTF-8&dt=INTERAC%20e-Transfer&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=Scroll%20Depth&ea=Percentage&el=0%25&_u=SGCAAAABI~&jid=1451135678&cid=267484634.1680013499&tid=UA-53324311-1&_r=1>m=GTM-5SR238&z=695596092 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
date: Tue, 28 Mar 2023 14:24:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba50d379b2776214995c207b42c083a4
0f1b48c6d01ace326c49acf5bcac222f772e9f6a
6692886530b311f94ac3855df31c774feed6d5135dad4ac24921b6030fcbb8d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba50d379b2776214995c207b42c083a4
0f1b48c6d01ace326c49acf5bcac222f772e9f6a
6692886530b311f94ac3855df31c774feed6d5135dad4ac24921b6030fcbb8d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11765
Expires: Tue, 28 Mar 2023 17:40:44 GMT
Date: Tue, 28 Mar 2023 14:24:39 GMT
Connection: keep-alive
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/activityi_data/a.html
50.87.249.20200 OK 520 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/activityi_data/a.html
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 03c207237e542a08587376ec6725bf32
04fe7cd9d39c81cb4be059797a515aaf583d84c3
6af30eabb83884cb8ec68687e2a7d8cae22281c3a2c20da454292ba46b66ffef
GET /INTERAC%20e-Transfer_fichiers/activityi_data/a.html HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/INTERAC%20e-Transfer_fichiers/activityi.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/html
last-modified: Sat, 25 Mar 2017 02:19:52 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba50d379b2776214995c207b42c083a4
0f1b48c6d01ace326c49acf5bcac222f772e9f6a
6692886530b311f94ac3855df31c774feed6d5135dad4ac24921b6030fcbb8d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11765
Expires: Tue, 28 Mar 2023 17:40:44 GMT
Date: Tue, 28 Mar 2023 14:24:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: I3GuoZ4ZxAtz0sKe3wrW67aitLlCAbaZkiPw23fl0F3FoumJDEnXiQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 10:12:21 GMT
age: 15138
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1da68df9d96e2758e37b9f15daab027b
5ff19ed6dc5752aa4b15fb88da972b736fd55783
ad924425946dbdf309c764e7097e676185516301feb7722b30d95ffd50b4353f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7426
x-amzn-requestid: 85a30298-4613-4a96-bdba-0899fe9f9475
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdcsgGZsoAMFQkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220e4f-10db431e7632048d7b15e0ec;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:44:47 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: JDa9YUJ9xo5mo8tb7poZC8XJDp6USTidZjWEwTZCrioJxR7vur6uJw==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:00:12 GMT
age: 59067
etag: "5ff19ed6dc5752aa4b15fb88da972b736fd55783"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
doraemonarabic.net/resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.js
50.87.249.20404 Not Found 281 B URL HTTP/2 doraemonarabic.net/resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.js
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 712da3a72014343fa4cd0a72c247db8c
10a10ca3a3b6f20219a1051818b88d9eda63b46f
8b7fd9332b6ff57d2b817f84017a7102cf0e49766ccfeff52e8aa862b084cd79
GET /resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.js HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Cookie: _ga=GA1.2.267484634.1680013499; _dc_gtm_UA-53324311-2=1; _dc_gtm_UA-53324311-1=1
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F858e946a-2e67-4e7b-b78f-763226855b6d.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F858e946a-2e67-4e7b-b78f-763226855b6d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 789f11978a1149984408fbbb9a2b3f81
078bd523107096bab5e26d42b18e316c253f1ca7
7974980290443b64126f512686261150cd27331cb7b32a96d1167a97d046e8a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F858e946a-2e67-4e7b-b78f-763226855b6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8961
x-amzn-requestid: 9277e35d-8fe8-482e-b65c-b132dfcbd87e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbqBGl0IAMFy4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220ca6-7869936b33cbf3633c68e7ac;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:42 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Xz5zjv-po5mgSFz_kkZZ5Hvw9SxY-3d-J2DpvFWxM-iI4jXTsUbiyg==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 10:16:22 GMT
age: 14897
etag: "078bd523107096bab5e26d42b18e316c253f1ca7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ada29e049501b12a35b0bcc5f68e3e57
5c1ba9bffbcc9007e7f119dbb3197db34a12f8da
b45583b5845129386a456e03fbdba25305c8d6d9fb5a8f01d783816ced080629
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10744
x-amzn-requestid: d693d820-7eed-47a3-9b0b-8f43c141bd3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbogF0poAMFTAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220c9c-22ab350146e8a3a606f74c42;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: KAI78tfv0ATn1DQvBGyodBs9UWsIGdj1Fa50KowbUAO4ab2ceaYhMw==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:49:26 GMT
age: 59713
etag: "5c1ba9bffbcc9007e7f119dbb3197db34a12f8da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd937575-8f71-4732-8bca-faaeed83b6a1.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd937575-8f71-4732-8bca-faaeed83b6a1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5fdd8a3f935830ca9e5ffdb5824acebc
39caaddec703fdad962d03fff8687bad2c1df4ad
6fe6301fb3610c3e8a9b62671579db53189bb62ead4cf5ab30a1f1e0b90b8ca2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd937575-8f71-4732-8bca-faaeed83b6a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7537
x-amzn-requestid: 2fb06f69-4757-4ba5-9f20-6e829127b931
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbqWETgoAMFV5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220ca8-6421e38b3a0ac0590ffa8b52;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:44 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: JZfiBSqQdWXqpaxSlepC6hEJ888ja6o10GW0KziDifD8KdTmDTn0eQ==
via: 1.1 4e4278a2778e72cc34feef6db603088c.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:05:18 GMT
age: 58761
etag: "39caaddec703fdad962d03fff8687bad2c1df4ad"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
doraemonarabic.net/resources/newgateway/vendor/jquery.mobile-1.4.5/jquery.mobile.structure-1.4.5.min.html
50.87.249.20404 Not Found 315 B URL HTTP/2 doraemonarabic.net/resources/newgateway/vendor/jquery.mobile-1.4.5/jquery.mobile.structure-1.4.5.min.html
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 917a38d7cfa43809c5e4ef17da59261d
dbd366f26f91008f3444832bad0ebe0688d1330b
af57d0992e5d2612355f54735e8294a785a1cba44abf0ae3a88a3b0e8cb1276c
GET /resources/newgateway/vendor/jquery.mobile-1.4.5/jquery.mobile.structure-1.4.5.min.html HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Cookie: _ga=GA1.2.267484634.1680013499; _dc_gtm_UA-53324311-2=1; _dc_gtm_UA-53324311-1=1
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png
34.120.237.76200 OK 20 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b3e093e7b5c12cfc2aee601f823ea47e
d76b3958471b2ed70a2b52f078ec638748fdb441
de4fc669195611c4ea6fe7d920482987aef077973b4973c01e2f362aeb18c2ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 20349
x-amzn-requestid: 8e810007-5602-40d0-b103-da5421381d67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbpjHdcoAMFSuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220ca3-22f4671a5cd5fab36268ae3f;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:39 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: -rX6JXPNzVJyz9ykqPUCTNBUK9NOK2CAwrrVNPsoVfCDIEeH3AS3bQ==
via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:55:30 GMT
age: 59349
etag: "d76b3958471b2ed70a2b52f078ec638748fdb441"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 718fd0a69c546765a1e4fb756d2c6660
f179206be32ab202458745c8b5b009faf236ba72
971bd81d829ea0f8aa54ef71cce89a5b8e1f1e4a87cb94c206770b2a233ccf0f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7e2d8156baac12231cc9cbfdefedacf1
62384d8842fb5b560ac39636bb519953e22dc664
ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-conversion/981124174/?random=1982529701&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZLvwOZqliQb1qYm4DQ&random=349782735
216.58.211.4302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-conversion/981124174/?random=1982529701&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZLvwOZqliQb1qYm4DQ&random=349782735
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/981124174/?random=1982529701&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZLvwOZqliQb1qYm4DQ&random=349782735 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://doraemonarabic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 14:24:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/981124174/?random=1982529701&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZLvwOZqliQb1qYm4DQ&random=349782735&ipr=y&prhg=0
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash eb2978f78249fa2030ff84708ab627b5
0003a93bc57234fba10c90bd0bd80c00d5a90884
b76d3066ba863b1aaf4f5f4fced0a48768bc34de818dc3494e89c045f41f5acf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7ba0b9730b8fb55610287ac3588f8aa1
b2e1c8b30219467965ebcc541bb2a33d5fe7bf59
764aff4d087b3a8e798a0eda5080a1d6026ca912568b7b9d44681c44daf207e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7ba0b9730b8fb55610287ac3588f8aa1
b2e1c8b30219467965ebcc541bb2a33d5fe7bf59
764aff4d087b3a8e798a0eda5080a1d6026ca912568b7b9d44681c44daf207e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7ba0b9730b8fb55610287ac3588f8aa1
b2e1c8b30219467965ebcc541bb2a33d5fe7bf59
764aff4d087b3a8e798a0eda5080a1d6026ca912568b7b9d44681c44daf207e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-conversion/954740125/?random=916004463&cv=8&fst=1680013499519&num=2&fmt=1&label=0x9BCJvGwGMQndugxwM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZL3uOd20iQb9p5V4&random=401162394&ipr=y&prhg=0
216.58.207.227200 OK 76 B URL HTTP/2 www.google.no/pagead/1p-conversion/954740125/?random=916004463&cv=8&fst=1680013499519&num=2&fmt=1&label=0x9BCJvGwGMQndugxwM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZL3uOd20iQb9p5V4&random=401162394&ipr=y&prhg=0
IP 216.58.207.227:0
File type HTML document, ASCII text, with no line terminators
Hash 7d4e21ac635bc6d350ec37fac5d24546
d289b7f969d3c91d754e3976da75e9c9ea948d96
63d8bfea184dc022dd8257788f16a903ebc2f916adb6e289ef27b4b075a3268d
GET /pagead/1p-conversion/954740125/?random=916004463&cv=8&fst=1680013499519&num=2&fmt=1&label=0x9BCJvGwGMQndugxwM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZL3uOd20iQb9p5V4&random=401162394&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://doraemonarabic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 14:24:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 76
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-conversion/981124174/?random=1982529701&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZLvwOZqliQb1qYm4DQ&random=349782735&ipr=y&prhg=0
216.58.207.227200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-conversion/981124174/?random=1982529701&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZLvwOZqliQb1qYm4DQ&random=349782735&ipr=y&prhg=0
IP 216.58.207.227:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/981124174/?random=1982529701&cv=8&fst=1680013499519&num=1&fmt=3&label=T3JACK2A7mMQzojr0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZLvwOZqliQb1qYm4DQ&random=349782735&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://doraemonarabic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 14:24:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-conversion/979606057/?random=1114532983&cv=8&fst=1680013499519&num=3&fmt=3&label=USQkCKH7zmIQqbSO0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZPHlOfiJ-cAPwaGJqAI&random=1309969582&ipr=y&prhg=0
216.58.207.227200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-conversion/979606057/?random=1114532983&cv=8&fst=1680013499519&num=3&fmt=3&label=USQkCKH7zmIQqbSO0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZPHlOfiJ-cAPwaGJqAI&random=1309969582&ipr=y&prhg=0
IP 216.58.207.227:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/979606057/?random=1114532983&cv=8&fst=1680013499519&num=3&fmt=3&label=USQkCKH7zmIQqbSO0wM&bg=ffffff&hl=en&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&frm=1&url=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ref=https%3A%2F%2Fdoraemonarabic.net%2Findexx.php&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=pvgiZPHlOfiJ-cAPwaGJqAI&random=1309969582&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://doraemonarabic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 14:24:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7ba0b9730b8fb55610287ac3588f8aa1
b2e1c8b30219467965ebcc541bb2a33d5fe7bf59
764aff4d087b3a8e798a0eda5080a1d6026ca912568b7b9d44681c44daf207e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 14:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/gtm.js
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/gtm.js
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/gtm.js HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: application/javascript
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/interac-jqm.css
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/interac-jqm.css
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/interac-jqm.css HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/css
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/jquery-ui.css
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/jquery-ui.css
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/jquery-ui.css HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/css
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/activityi_data/conversion.js
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/activityi_data/conversion.js
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/activityi_data/conversion.js HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/INTERAC%20e-Transfer_fichiers/activityi.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: application/javascript
last-modified: Sat, 25 Mar 2017 02:19:52 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/getAllFisandCus.do?lang=en
50.87.249.20404 Not Found 0 B URL HTTP/2 doraemonarabic.net/getAllFisandCus.do?lang=en
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /getAllFisandCus.do?lang=en HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Cookie: _ga=GA1.2.267484634.1680013499; _dc_gtm_UA-53324311-2=1; _dc_gtm_UA-53324311-1=1; _gat_UA-53324311-1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/linkid.js
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/linkid.js
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/linkid.js HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: application/javascript
last-modified: Sat, 25 Mar 2017 02:19:52 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/jquery.js
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/jquery.js
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/jquery.js HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: application/javascript
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/gatewayInitJS.js
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/gatewayInitJS.js
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/gatewayInitJS.js HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: application/javascript
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/resources/newgateway/vendor/jquery-mobile-theme/themes/interac-jqm.min.css
50.87.249.20404 Not Found 0 B URL HTTP/2 doraemonarabic.net/resources/newgateway/vendor/jquery-mobile-theme/themes/interac-jqm.min.css
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /resources/newgateway/vendor/jquery-mobile-theme/themes/interac-jqm.min.css HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Cookie: _ga=GA1.2.267484634.1680013499; _dc_gtm_UA-53324311-2=1; _dc_gtm_UA-53324311-1=1; _gat_UA-53324311-1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:39 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/jquery_002.css
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/jquery_002.css
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/jquery_002.css HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/css
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/jquery-ui.js
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/jquery-ui.js
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/jquery-ui.js HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: application/javascript
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/GTIe8CSS.css
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/GTIe8CSS.css
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/GTIe8CSS.css HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/css
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/resources/newgateway/vendor/jquery-mobile-theme/themes/jquery.mobile.icons.min.html
50.87.249.20404 Not Found 0 B URL HTTP/2 doraemonarabic.net/resources/newgateway/vendor/jquery-mobile-theme/themes/jquery.mobile.icons.min.html
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /resources/newgateway/vendor/jquery-mobile-theme/themes/jquery.mobile.icons.min.html HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Cookie: _ga=GA1.2.267484634.1680013499; _dc_gtm_UA-53324311-2=1; _dc_gtm_UA-53324311-1=1; _gat_UA-53324311-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:39 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/analytics.js
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/analytics.js
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/analytics.js HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: application/javascript
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/activityi.html
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/activityi.html
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/activityi.html HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/html
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/jquery.css
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/jquery.css
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/jquery.css HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/css
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/generalCSS.css
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/generalCSS.css
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/generalCSS.css HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/css
last-modified: Sat, 25 Mar 2017 02:19:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/INTERAC%20e-Transfer_fichiers/vendorJS.js
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/INTERAC%20e-Transfer_fichiers/vendorJS.js
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /INTERAC%20e-Transfer_fichiers/vendorJS.js HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: application/javascript
last-modified: Sat, 25 Mar 2017 02:19:52 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/www.googletagmanager.com/gtm5445.html?id=GTM-5SR238
50.87.249.20404 Not Found 0 B URL HTTP/2 doraemonarabic.net/www.googletagmanager.com/gtm5445.html?id=GTM-5SR238
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /www.googletagmanager.com/gtm5445.html?id=GTM-5SR238 HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://doraemonarabic.net/indexx.php
Cookie: _ga=GA1.2.267484634.1680013499; _dc_gtm_UA-53324311-2=1; _dc_gtm_UA-53324311-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:38 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2
doraemonarabic.net/indexx.php
50.87.249.20200 OK 0 B URL HTTP/2 doraemonarabic.net/indexx.php
IP 50.87.249.20:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert openphish Interac e-Transfer
GET /indexx.php HTTP/1.1
Host: doraemonarabic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx/1.14.1
date: Tue, 28 Mar 2023 14:24:37 GMT
content-type: text/html; charset=UTF-8
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-encoding: gzip
X-Firefox-Spdy: h2