firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash c9df6b36bf16969ac566c1b798362e4a
e56eff34815153ae019a4bf63eb9746dd9ae2e5b
33c1175144ab2be42c9de383f7893a6e60cd1f21f282eacb413d546331db3fa0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Retry-After, Alert, Content-Type, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 14 Oct 2022 20:49:53 GMT
Expires: Fri, 14 Oct 2022 21:14:29 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: b_xhGvF6V2XSMwSW1oKQTYKuTLYjnnqFjXz_g29e3HQsqQLxBKvA0Q==
Age: 25
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ef1ca48ca7fd21239a2a11fcfc6366b
ee44232c27fb39d25ac901df2247c3ffd2c5bcca
e9bad8be490429a84a567acd710f97a402bcf7b4ba4e47f2bed27cada418c439
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9BAD8BE490429A84A567ACD710F97A402BCF7B4BA4E47F2BED27CADA418C439"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3769
Expires: Fri, 14 Oct 2022 21:53:07 GMT
Date: Fri, 14 Oct 2022 20:50:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bce7a9c1ff7500c4cfad5c3a3581a939
74b8dadf6ead0ce5d1d72e40a2eac554c5f5430c
6c840089371a0e25d60d0d76d6400348b0cdfb5967876c7b88e2b4a2aaf01a03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6C840089371A0E25D60D0D76D6400348B0CDFB5967876C7B88E2B4A2AAF01A03"
Last-Modified: Wed, 12 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5413
Expires: Fri, 14 Oct 2022 22:20:31 GMT
Date: Fri, 14 Oct 2022 20:50:18 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ynNMgdwWg+4zx3P8x917l+z8vjJ8ZjC/5aXv3nw1lVox+7WcIkXCtWfF8pU5Xb+Z16Z0qxMw1Fg=
x-amz-request-id: VMBGE79PHD8ZCH5M
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 14 Oct 2022 20:02:17 GMT
age: 2881
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 14 Oct 2022 20:50:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 14 Oct 2022 20:07:43 GMT
Expires: Fri, 14 Oct 2022 20:44:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6UiwPDxFl2vOnTzC1jz4mv_VSQWcqX8rkoAWg95h1jcZsUBPUxvGFg==
Age: 2555
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 90336661a2936bdb9efcc26998693b34
bee3b0e35ce901bff835d43a0f22eb0765ab8264
717bf09925581cc0668632ad10dfc2b714e77f9ba2c3852e8cf3ead552fde950
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1198
Cache-Control: max-age=128191
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 20:50:18 GMT
Etag: "6349189b-1d7"
Expires: Sun, 16 Oct 2022 08:26:49 GMT
Last-Modified: Fri, 14 Oct 2022 08:06:51 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
dr-antar.com/
199.250.218.31200 OK 30 kB IP 199.250.218.31:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (20694), with CRLF, LF line terminators
Hash 6e8aadfebae7224ed582c7d9b4aa216e
a560290c9770c27f1481a665d63b9a9d3d3b1d28
4e64417a8b48d3d0e3d7b72c1931eb61cd831cd46302028edbe62f044e960f8d
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:18 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Link: <https://dr-antar.com/wp-json/>; rel="https://api.w.org/"
X-Proxy-Cache: DISABLED
Content-Encoding: gzip
push.services.mozilla.com/
44.238.3.246101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.3.246:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: j9vpCVCcgzoYhrUd1WQz8Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dcACDI++3ZYWvbTZGpm7U2I1pf0=
dr-antar.com/wp-content/plugins/woocommerce-payments/vendor/woocommerce/subscriptions-core/build/index.css?ver=3.1.6
199.250.218.31200 OK 410 B URL HTTP/1.1 dr-antar.com/wp-content/plugins/woocommerce-payments/vendor/woocommerce/subscriptions-core/build/index.css?ver=3.1.6
IP 199.250.218.31:0
File type ASCII text, with very long lines (1411)
Hash ba76f382e22d2fc337a5a38b842444f6
139bd5218ec7a248f145c53591af9778751a2175
ceefbdd6ee0b6c93baf20d6e9e1b1486a6c2b1c5d4d75dd3deb8ed6a48162f53
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce-payments/vendor/woocommerce/subscriptions-core/build/index.css?ver=3.1.6 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 21:16:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f9664a-585"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/uploads/elementor/css/post-7.css?ver=1660507962
199.250.218.31200 OK 361 B URL HTTP/1.1 dr-antar.com/wp-content/uploads/elementor/css/post-7.css?ver=1660507962
IP 199.250.218.31:0
File type ASCII text, with very long lines (1117), with no line terminators
Hash 2797743181968b323b89c5667b0e3243
0b6dade07669ca8fd9b7bb21008c2bf35edd59a5
47f783a1b0e8189ef9205bb613c0a8bbb861834a09b522de184fae6c0430b89f
GET /wp-content/uploads/elementor/css/post-7.css?ver=1660507962 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:12:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f9573a-45d"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.2
199.250.218.31200 OK 1.0 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.2
IP 199.250.218.31:0
Hash 8c5101cf326d40bd98df98a8d0c0519e
6e81a81ba411ac3f3ef44123ccbeb994c1363f84
7297a73ebadada2be39b896862257140781c6f221c08906553ae463a68ab290e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.2 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:08:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95631-aab"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/themes/kayleen-child/style.css?ver=1.0.0
199.250.218.31200 OK 276 B URL HTTP/1.1 dr-antar.com/wp-content/themes/kayleen-child/style.css?ver=1.0.0
IP 199.250.218.31:0
File type ASCII text, with CRLF line terminators
Hash 626476cd1cb7ac6166830bc27b2c880f
c01d7a4996df5856fbb2ffe831d6cea56d9ff82e
7746c3993a8097925eca2328759924dfbe1aa49e844003c1b06116a78627f68b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/kayleen-child/style.css?ver=1.0.0 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:07:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95604-1b6"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.0
199.250.218.31200 OK 2.9 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.0
IP 199.250.218.31:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash 07bc24a04417cc11a48ac2ec171d39ff
57bdd5fe1d8574c99f63097f7e02781d85a0cef9
b25bb73225f0f1e4cc945d3624e4faf9905e4b6ad3a2cb243f77eeea0cd6057f
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.0 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:08:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95648-4591"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.0
199.250.218.31200 OK 10 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.0
IP 199.250.218.31:0
File type Unicode text, UTF-8 text, with very long lines (62753), with no line terminators
Hash 357dd3f77bf4efdac52903b498509657
3f0aad122e07326d8d54ae58c31daed5efccff3a
e9182da403a8171ec6670deae89a70891d020cac0c2caf4c2a8946f16fdd2a95
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.0 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:08:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95648-f523"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0
199.250.218.31200 OK 28 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0
IP 199.250.218.31:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash b4f05d930e9636ba5b9426718a00e72d
1eed330abe9fc504b54323c732705b2c278d839e
62727f89f415153c9d4b667b32e74de180d4561486762daa5abd7ac843af480a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:08:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95643-333cb"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/themes/kayleen/assets/css/bootstrap-grid.min.css?ver=5.0.2
199.250.218.31200 OK 6.5 kB URL HTTP/1.1 dr-antar.com/wp-content/themes/kayleen/assets/css/bootstrap-grid.min.css?ver=5.0.2
IP 199.250.218.31:0
File type ASCII text, with very long lines (51185)
Hash ddb6c1c1bbc4f2875d16de1f9b7af438
e9a4354ce83fe3909a8ac9740ded22844a105523
41506664aacf867eaba8138d7f068e41eefb275ddd3e761cd582c9c00ff78f5f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/kayleen/assets/css/bootstrap-grid.min.css?ver=5.0.2 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:07:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f955f9-c8fb"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/themes/kayleen/assets/css/woocommerce.css
199.250.218.31200 OK 1.9 kB URL HTTP/1.1 dr-antar.com/wp-content/themes/kayleen/assets/css/woocommerce.css
IP 199.250.218.31:0
File type ASCII text, with very long lines (490), with CRLF line terminators
Hash eae26d88e8e775fbd134ad6d00e3f8db
cf3a23bd2217faefc76b6aaef853d4128693493f
359b67f23687d06f37c13dfc84a2276fb773abe81a81eddf081c471d3bdf02f0
GET /wp-content/themes/kayleen/assets/css/woocommerce.css HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:07:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f955f9-2148"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
199.250.218.31200 OK 4.3 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 199.250.218.31:0
File type ASCII text, with very long lines (19233)
Hash 604fd8fa6bb661c05803395e60da945e
5026347d7d843b0cf1d969674dcce39fa798f1f6
1cde42ac7a1ff03a443a2ab4d73fefc03c962aea0f9f3745256d9f3eef2d1d8b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:07:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f9561e-4b4f"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/themes/kayleen/style.css?ver=6.0.2
199.250.218.31200 OK 33 kB URL HTTP/1.1 dr-antar.com/wp-content/themes/kayleen/style.css?ver=6.0.2
IP 199.250.218.31:0
File type ASCII text, with CRLF line terminators
Hash 969117a35a5a59ee622c322d8d4c3455
ce5e4e8e2522173668505cf2e26a4535e0bf176d
bb76b41bd642fc75c11fa7ec8805d2b3b03a3f26eaae2010e541d7f0a7ca5325
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/kayleen/style.css?ver=6.0.2 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:07:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f955f8-353df"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/themes/kayleen/assets/css/rivax-icon.css?ver=6.0.2
199.250.218.31200 OK 1.3 kB URL HTTP/1.1 dr-antar.com/wp-content/themes/kayleen/assets/css/rivax-icon.css?ver=6.0.2
IP 199.250.218.31:0
Hash 43d0e620ae7158ababfe0f3f8e36ce79
0cdb1d9b7a619c862df7daa9ff32500a8ccc44ba
9a604934b13bb81e9e70241ebfb64fe436fc9d93c191606eb5b0fdeb4cae927c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/kayleen/assets/css/rivax-icon.css?ver=6.0.2 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:07:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f955f9-1be3"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5ed407e919c07a9656b2b6e4079f9bb
f5302c72ba5d7622bba0e82a13102cbb09a0b834
bf93eb8a66d73c8b2425f3a16fc077959f0b7b41634821b852004d22fd213860
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 20:50:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dr-antar.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.1
199.250.218.31200 OK 17 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.1
IP 199.250.218.31:0
File type ASCII text, with very long lines (65497)
Hash f6e12a58e0b6343230b7f16e9a1c94b2
f671a4b4134c4471529b24f14fa3e350bd1e2e45
f8526dd052bbe54031118dfd5ec686b674153f8ae67655b97a83dcec6207dea3
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.1 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:07:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f9561d-1a781"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
199.250.218.31200 OK 14 kB URL HTTP/1.1 dr-antar.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 199.250.218.31:0
File type ASCII text, with very long lines (43771)
Hash 1047dd6779111ec73736abd71a40fef9
e08643922ce9a1a488f2a72c0341807f59f7528e
d85287eacda4e97356cf1b53ec765e34c8913558d6fb485b334debf78c89a3bf
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Mon, 04 Jul 2022 18:10:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62c32d1c-15b64"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5ed407e919c07a9656b2b6e4079f9bb
f5302c72ba5d7622bba0e82a13102cbb09a0b834
bf93eb8a66d73c8b2425f3a16fc077959f0b7b41634821b852004d22fd213860
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 20:50:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dr-antar.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0
199.250.218.31200 OK 1.4 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0
IP 199.250.218.31:0
File type ASCII text, with very long lines (4933), with no line terminators
Hash dec033663791df6f9bda62872451d40f
8d86b21d63dac22ce0c7b83e36a8798906a42482
dc211d6b79915896be681b0252c2ec68efdd1f11b5881b0cf3fc645fcfbcd4da
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:08:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95644-1345"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/uploads/elementor/css/global.css?ver=1660507963
199.250.218.31200 OK 956 B URL HTTP/1.1 dr-antar.com/wp-content/uploads/elementor/css/global.css?ver=1660507963
IP 199.250.218.31:0
File type ASCII text, with very long lines (6697)
Hash fed2058111465320295f51fa97b4537b
77d2821f859e23d9836e016113e6d541e38ca53d
7586c61b317c42517c28e72216cdbab5c74dab1b57b5d38a848fe2dd5cf84e05
GET /wp-content/uploads/elementor/css/global.css?ver=1660507963 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:12:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f9573b-2503"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/uploads/elementor/css/post-208.css?ver=1660508150
199.250.218.31200 OK 418 B URL HTTP/1.1 dr-antar.com/wp-content/uploads/elementor/css/post-208.css?ver=1660508150
IP 199.250.218.31:0
File type ASCII text, with very long lines (1965), with no line terminators
Hash 0d5d1340d8fd335156d230f7d5515122
e28c61b57ae022fc176c3fe4b834a4668c3fc0bd
be5e87a5b27defe21117ef7f77b8a11118cf8b141c964c9895aa9d7dc9177a99
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-208.css?ver=1660508150 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:15:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f957f6-7ad"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/uploads/elementor/css/post-1213.css?ver=1660508150
199.250.218.31200 OK 1.0 kB URL HTTP/1.1 dr-antar.com/wp-content/uploads/elementor/css/post-1213.css?ver=1660508150
IP 199.250.218.31:0
File type ASCII text, with very long lines (7075), with no line terminators
Hash 1125f32fa1a5a082303cc7f204860782
411046aaa3dd1da9ed654b47f2691af1a092db48
168f901defe5da6514d08ee4cb5e30bf2e857bc17bb15d46e47292312f4e7623
GET /wp-content/uploads/elementor/css/post-1213.css?ver=1660508150 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:15:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f957f6-1ba3"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5ed407e919c07a9656b2b6e4079f9bb
f5302c72ba5d7622bba0e82a13102cbb09a0b834
bf93eb8a66d73c8b2425f3a16fc077959f0b7b41634821b852004d22fd213860
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 20:50:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dr-antar.com/wp-content/uploads/elementor/css/post-1176.css?ver=1660508150
199.250.218.31200 OK 505 B URL HTTP/1.1 dr-antar.com/wp-content/uploads/elementor/css/post-1176.css?ver=1660508150
IP 199.250.218.31:0
File type ASCII text, with very long lines (2074), with no line terminators
Hash fffb5b0ed91d801fcdc901f69891101e
e7d253d9cac519e7969ef39ccf81b2b251b36b32
45b87f2c0242d80911365520d23d710ba95935297536c04fb884e40b5e0fce08
GET /wp-content/uploads/elementor/css/post-1176.css?ver=1660508150 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:15:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f957f6-81a"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/uploads/elementor/css/post-1203.css?ver=1660508150
199.250.218.31200 OK 406 B URL HTTP/1.1 dr-antar.com/wp-content/uploads/elementor/css/post-1203.css?ver=1660508150
IP 199.250.218.31:0
File type ASCII text, with very long lines (1358), with no line terminators
Hash ebe2aee3bf03d70efb11a38a6c3e1594
5c274f3add1610fdb6f3f07e79b9ff96bd3db54f
b3d1564b43e3590a747789fee7bfbe12803da81594ef197347b5ebc185d50996
GET /wp-content/uploads/elementor/css/post-1203.css?ver=1660508150 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:15:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f957f6-54e"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/uploads/elementor/css/post-1053.css?ver=1660508150
199.250.218.31200 OK 1.3 kB URL HTTP/1.1 dr-antar.com/wp-content/uploads/elementor/css/post-1053.css?ver=1660508150
IP 199.250.218.31:0
File type ASCII text, with very long lines (8373), with no line terminators
Hash f1b4f712c0d1f0ce5edf6b61a230d9a2
d6a0af486adf9b81eff7a7bb42ad22cf9b7867fd
0c7cc4f86174994d6009ba1bb12bccb61dff19dc5fc08434e69c509133248a3d
GET /wp-content/uploads/elementor/css/post-1053.css?ver=1660508150 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:15:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f957f6-20b5"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
199.250.218.31200 OK 14 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 199.250.218.31:0
File type ASCII text, with very long lines (57726)
Hash 2f0b07689b34366c1b04e9c84cc2b54c
0a49469573f7add891658c75253a4b68953925e5
6bddc997475f4020265128478b59384b44792a0f986d6a04cd79722b99f2f55f
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:07:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f9561e-e238"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
199.250.218.31200 OK 311 B URL HTTP/1.1 dr-antar.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 199.250.218.31:0
File type ASCII text, with very long lines (489)
Hash c58b23e189e3c7cf45cb7014e704d05b
e6850968edf763aafe862a226a0a3380f4827488
6ba81ab0941a10e6bb1a48b83f30ddaedba974c6609bec7210d9a27e4b3ef38d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:07:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f9561e-2a3"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
ocsp.comodoca.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash a475b101f29312c840f9737594123079
588617961d30e773a6a8df867688b587fb29a2aa
246e857fd875791a991fe343059e5c425c5a4ea0cc9675dcfaf5997b69860268
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 11 Oct 2022 14:30:02 GMT
Expires: Tue, 18 Oct 2022 14:30:01 GMT
Etag: "588617961d30e773a6a8df867688b587fb29a2aa"
Cache-Control: max-age=322181,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75a32fc79919b4e8-OSL
ocsp.comodoca.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash a475b101f29312c840f9737594123079
588617961d30e773a6a8df867688b587fb29a2aa
246e857fd875791a991fe343059e5c425c5a4ea0cc9675dcfaf5997b69860268
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 11 Oct 2022 14:30:02 GMT
Expires: Tue, 18 Oct 2022 14:30:01 GMT
Etag: "588617961d30e773a6a8df867688b587fb29a2aa"
Cache-Control: max-age=322181,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 0
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75a32fc7bd33b51b-OSL
dr-antar.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
199.250.218.31200 OK 4.4 kB URL HTTP/1.1 dr-antar.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 199.250.218.31:0
File type ASCII text, with very long lines (11126)
Hash 24957bc8161f979c6e661f46fdc3974f
fa1237ffe8b3745baa78ac481239038e133fcc17
46acf87c90961d413ac24eace25b77a8d5236daf38799fec2daf0bc350cc6ebe
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Wed, 18 Nov 2020 16:06:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5fb5466e-2bd8"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
199.250.218.31200 OK 5.5 kB URL HTTP/1.1 dr-antar.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 199.250.218.31:0
File type ASCII text, with very long lines (15660)
Hash 17db16eba9de064a60b18a592b36634a
82fc955209623803111e48d5be3cf345315be6f5
1144901adf4e1d54838e6e04a2b75314f3b95518ee654d8c1742af50e355b433
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Tue, 12 Apr 2022 11:56:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"625568e6-48b9"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/uploads/elementor/css/post-1180.css?ver=1660508150
199.250.218.31200 OK 564 B URL HTTP/1.1 dr-antar.com/wp-content/uploads/elementor/css/post-1180.css?ver=1660508150
IP 199.250.218.31:0
File type ASCII text, with very long lines (2923), with no line terminators
Hash 95038981091ece0c41985cb08d3449ef
73643905fef2ad4c45122e1020a9ca70ee85c3ff
e1367e572afe3ade30ad64296e0aecb0d0626377ce0309ff81f8a58722e9520c
GET /wp-content/uploads/elementor/css/post-1180.css?ver=1660508150 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:15:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f957f6-b6b"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/uploads/elementor/css/post-2514.css?ver=1660508150
199.250.218.31200 OK 396 B URL HTTP/1.1 dr-antar.com/wp-content/uploads/elementor/css/post-2514.css?ver=1660508150
IP 199.250.218.31:0
File type ASCII text, with very long lines (2094), with no line terminators
Hash e5152c7843c7fe456947b4ba03baf765
5a71f584bfaa5f9d3876f443971beee248fc890e
5ef58d30233b11c999c57147dadaaef7bd96fa3acf7aa40ad7cd122ecadb5ca6
GET /wp-content/uploads/elementor/css/post-2514.css?ver=1660508150 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: text/css
Last-Modified: Sun, 14 Aug 2022 20:15:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f957f6-82e"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
199.250.218.31200 OK 2.6 kB URL HTTP/1.1 dr-antar.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 199.250.218.31:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash cba765ca076cb13c7678f0293fb8a3da
98430a0a3db9c19a16f6940750a6738c4d00f962
f68a3fba394baf3508e7987049a6037d9f3e212dc9698976df9fbeb5703379ab
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Mon, 11 Apr 2022 18:04:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62546dae-194b"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
199.250.218.31200 OK 34 kB URL HTTP/1.1 dr-antar.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 199.250.218.31:0
File type ASCII text, with very long lines (65447)
Hash 22b0253c0ecce70e41e296d176b0d972
a161c363d2092739db21bfeb2cf23c980ec71580
181967b7928e133789c8edbb8bdcb73d44a0328d884b613f8ebfb182b4c3c52e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Wed, 10 Mar 2021 22:07:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6049431c-15db1"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
199.250.218.31200 OK 7.6 kB URL HTTP/1.1 dr-antar.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 199.250.218.31:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 2059fe073bfc62ce84fe8fc1f42d35a9
68038ff5383ffde15542f57782d7a53c8de8bb48
543dbc6a5dd60032fb9d74beef1f7ac5f6cee543b6422b1f0928b9001d050eb8
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Mon, 11 Apr 2022 18:04:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62546dae-4ac6"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2
199.250.218.31200 OK 7.1 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2
IP 199.250.218.31:0
File type ASCII text, with very long lines (21905), with no line terminators
Hash 9f9b7c739349adf3a6f12368ef08a395
46f684997c86363525e487becd87ba7c01abadbd
d94c2705a5abbd866a11acd62751fc64a0fa7d2af2ed7f04a7d4965a9e6348ab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Aug 2022 20:08:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95631-5591"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.0
199.250.218.31200 OK 1.1 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.0
IP 199.250.218.31:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 8871d4b6a802b8e8edc5730053aa997c
d39838f5c81eb52dcc3ffb87584b2365930af96f
6912b68af7b9d4a040ac738f58c1bba3886197af833fbc59215a35bbe77ac3bc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.0 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Aug 2022 20:08:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95649-bdd"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.0
199.250.218.31200 OK 3.7 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.0
IP 199.250.218.31:0
File type ASCII text, with very long lines (9115)
Hash 6a9c6fdacdf14b613d643f562fd41764
e41c68b535a83864dba54eedaa48a9c3332168c0
2066890038c65f8d4cdd90a2d0c755014fa443ccc5fa7ce33e72c75285292ef6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.0 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Aug 2022 20:08:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95649-2525"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.0
199.250.218.31200 OK 1.0 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.0
IP 199.250.218.31:0
File type ASCII text, with very long lines (1668)
Hash 7821acfdb8b6a9b7239c819e511d2037
bdff79427e23f820c2b219dad0d9a6763930c1dc
e8e9806a85797e1392e7d87132fbc9e411ba5e3838bce7ab1a178bc1fd721cfe
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.0 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Aug 2022 20:08:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95649-72a"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.0
199.250.218.31200 OK 836 B URL HTTP/1.1 dr-antar.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.0
IP 199.250.218.31:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash b0099b2baa05980cbc24ac27a8e95be3
f72e3bab79d57be81440a23adcca469cd9f4506a
ed4794d311b177c5847a43b9e13df968a32153f4a45fa72d7ef8c9a0c00a11b1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.0 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Aug 2022 20:08:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95649-85b"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/uploads/elementor/thumbs/jon-tyson-sPim6Y8Wa7Y-unsplash-pt9n8dtjgr3o8tawdf7x7iar1oza6xq9pwesvdlfps.jpg
199.250.218.31200 OK 22 kB URL HTTP/2 dr-antar.com/wp-content/uploads/elementor/thumbs/jon-tyson-sPim6Y8Wa7Y-unsplash-pt9n8dtjgr3o8tawdf7x7iar1oza6xq9pwesvdlfps.jpg
IP 199.250.218.31:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x200, components 3\012- data
Hash d47c8d6d39231723badff80f51fc20e4
1af78b2b0fb5c6fb9364e62ec028dd8cff9a631e
83decaf873efc93b4ed1e731559070b45150dce5977498be9045fc1cb7d9e95e
GET /wp-content/uploads/elementor/thumbs/jon-tyson-sPim6Y8Wa7Y-unsplash-pt9n8dtjgr3o8tawdf7x7iar1oza6xq9pwesvdlfps.jpg HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dr-antar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Fri, 14 Oct 2022 20:50:19 GMT
content-type: image/jpeg
content-length: 21885
last-modified: Sun, 14 Aug 2022 20:15:51 GMT
etag: "62f957f7-557d"
expires: Fri, 21 Oct 2022 20:50:19 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
dr-antar.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.0
199.250.218.31200 OK 1.1 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.0
IP 199.250.218.31:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 25e23a802d20db87fcc1f06b03c1e8a2
f161cebfbad2f5eb07a2a9df1ce49cd7e7b2179b
c2a882653542c39ff9479ce69781d0cae503b3e03727d96ee61cfb203ca5942f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.0 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Aug 2022 20:08:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95649-b7a"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/themes/kayleen/assets/js/SmoothScroll.min.js?ver=1.4.10
199.250.218.31200 OK 3.4 kB URL HTTP/1.1 dr-antar.com/wp-content/themes/kayleen/assets/js/SmoothScroll.min.js?ver=1.4.10
IP 199.250.218.31:0
File type ASCII text, with very long lines (7433), with CRLF line terminators
Hash 0236936dd609e70cef77618ca4704ffd
f1d689a6bb16b83ae441e6df35e041275dc18090
f654b9d39bdb41cce8c3af0d4e04af722d4b5316c36c88539e22e1e75dc72914
GET /wp-content/themes/kayleen/assets/js/SmoothScroll.min.js?ver=1.4.10 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Aug 2022 20:07:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f955f9-1db3"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash acaba5d27d27f0ebeb1a1495a6e4ff09
5953b351f69fd15de1b4d42dd9634dea8f6e920b
023cd9eaaee884f8cb91ed69805e308b42d2aaf48be2e3788e33dd95a501410f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 20:50:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://dr-antar.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 21:48:50 GMT
expires: Thu, 12 Oct 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 169289
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash acaba5d27d27f0ebeb1a1495a6e4ff09
5953b351f69fd15de1b4d42dd9634dea8f6e920b
023cd9eaaee884f8cb91ed69805e308b42d2aaf48be2e3788e33dd95a501410f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 20:50:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash acaba5d27d27f0ebeb1a1495a6e4ff09
5953b351f69fd15de1b4d42dd9634dea8f6e920b
023cd9eaaee884f8cb91ed69805e308b42d2aaf48be2e3788e33dd95a501410f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 20:50:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash acaba5d27d27f0ebeb1a1495a6e4ff09
5953b351f69fd15de1b4d42dd9634dea8f6e920b
023cd9eaaee884f8cb91ed69805e308b42d2aaf48be2e3788e33dd95a501410f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 20:50:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dr-antar.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.1
199.250.218.31200 OK 2.3 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.1
IP 199.250.218.31:0
File type ASCII text, with very long lines (4918)
Hash f03f0e2a99b73c9d1eae0326157404e3
6783610f8ba26b202b09f4f2e1de200e5c9f0818
4fb720b7cebc16dbc7bde77060bc6a86a8432e30722f2d95d6d9dd28de74f1fe
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.1 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Aug 2022 20:08:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95620-135d"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/themes/kayleen/assets/js/main.js?ver=6.0.2
199.250.218.31200 OK 3.3 kB URL HTTP/1.1 dr-antar.com/wp-content/themes/kayleen/assets/js/main.js?ver=6.0.2
IP 199.250.218.31:0
File type ASCII text, with CRLF line terminators
Hash 238dd449ade75f8a736202261a02a4d3
5b56d8982889ee3997471adf8bf15d72281b0a3c
6e90f3acb75fa75ddbf1ca9796a44f0dbd9bbbb1a7daee973918d04e7aac7d63
GET /wp-content/themes/kayleen/assets/js/main.js?ver=6.0.2 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Aug 2022 20:07:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f955f9-32c8"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://dr-antar.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 19:34:08 GMT
expires: Thu, 12 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 177371
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://dr-antar.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 19:34:08 GMT
expires: Thu, 12 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 177371
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dr-antar.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.1
199.250.218.31200 OK 12 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.1
IP 199.250.218.31:0
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash 53beca25cb0120edb9a308051c9c39d2
f560fec5e6e3834fd9fa6927481e1884d9f1f569
3d3bc621f8d29333a05412632b81e28061580de6a2fc4a69794d6f3ae6968a5d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.1 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Aug 2022 20:08:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95620-80a1"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://dr-antar.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 19:34:21 GMT
expires: Thu, 12 Oct 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 177358
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dr-antar.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
199.250.218.31200 OK 3.3 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 199.250.218.31:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash e7e06a56acbe48a5e94540829d446734
a62e3d7ea0dbd0a3e771f419377882aee5512e67
42ba07f11715edb58a365296c32ae85230bb28f164a34f561f295cbceb1f5981
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Aug 2022 20:07:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f9561e-2fa6"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash acaba5d27d27f0ebeb1a1495a6e4ff09
5953b351f69fd15de1b4d42dd9634dea8f6e920b
023cd9eaaee884f8cb91ed69805e308b42d2aaf48be2e3788e33dd95a501410f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 20:50:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dr-antar.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
199.250.218.31200 OK 7.4 kB URL HTTP/1.1 dr-antar.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 199.250.218.31:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 7070cf6c839a09af2a84f926dd2f95e1
2ac5f6312b4cc85f39804d4a61eeb00c2cced58e
ed584ebba9826c2d9fb5078ca275ce47d05b2a9a1f075e7493526fe7fe458c4c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Sat, 09 Apr 2022 02:07:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6250ea56-50eb"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.1
199.250.218.31200 OK 13 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.1
IP 199.250.218.31:0
File type ASCII text, with very long lines (40463)
Hash 1e0482dbfea10cd446b72904e8e896a9
cd9d84fc61c5b9e1338df91b4fa07f6b68e20b7e
0c0281519f4beb0d087b350b8fa89cc1d3989dd08e7ee178f71f2546380b0a42
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.1 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Aug 2022 20:08:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95620-9e36"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-includes/js/underscore.min.js?ver=1.13.3
199.250.218.31200 OK 7.8 kB URL HTTP/1.1 dr-antar.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP 199.250.218.31:0
File type ASCII text, with very long lines (18876)
Hash a8f99c32a628461f9c7500e76e604567
88ab3c370bc896f5580065d601b7496a7b66bb56
9cf8b992dc38ff9be1ec3c2d5a31d69ec491db09eaa287a71f490df0edb1b139
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Wed, 27 Apr 2022 20:39:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6269a9f8-49df"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-includes/js/wp-util.min.js?ver=6.0.2
199.250.218.31200 OK 718 B URL HTTP/1.1 dr-antar.com/wp-includes/js/wp-util.min.js?ver=6.0.2
IP 199.250.218.31:0
File type ASCII text, with very long lines (1305)
Hash 31e7f275636fe6733bafba2b77ce9ec0
9e2f9b8bfc9bf8910f6cc7068ea83ef379c6696f
08685fe4df303f97dd8f256b468000568635d59480e36784a8908a2d18c641e7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-util.min.js?ver=6.0.2 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Fri, 25 Jun 2021 20:50:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60d641b2-53c"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/themes/kayleen/assets/fonts/rivax-icon.woff
199.250.218.31200 OK 8.1 kB URL HTTP/1.1 dr-antar.com/wp-content/themes/kayleen/assets/fonts/rivax-icon.woff
IP 199.250.218.31:0
File type Web Open Font Format, CFF, length 8084, version 1.0\012- data
Hash 8f4eff722c5cca0ec41426fd79d0af33
84238355ab0b0d54b0e880bd717f0c0296b43b40
745ec1ff770da2ef4406168899bff46c362accc172fc62c3a9f0aab033b9cab4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/kayleen/assets/fonts/rivax-icon.woff HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://dr-antar.com/wp-content/themes/kayleen/assets/css/rivax-icon.css?ver=6.0.2
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: font/woff
Content-Length: 8084
Last-Modified: Sun, 14 Aug 2022 20:07:21 GMT
Connection: keep-alive
ETag: "62f955f9-1f94"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Accept-Ranges: bytes
dr-antar.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.5.5
199.250.218.31200 OK 380 B URL HTTP/1.1 dr-antar.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.5.5
IP 199.250.218.31:0
File type ASCII text, with very long lines (754), with no line terminators
Hash fee7cae8cb5f15b973a084be7cc05e7c
26b304ccb8d91f4f36048842a3106d10398a3a8e
312f6cc2f9daa80ca1fe84eff679128cd927e3a18bdaac7d8c2aba63eb75b8ef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.5.5 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Aug 2022 20:13:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95764-2f2"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
199.250.218.31200 OK 2.4 kB URL HTTP/2 dr-antar.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 199.250.218.31:0
File type ASCII text, with very long lines (11736)
Hash 26cf195e3f47a9796beba239b9a81d2b
58ee74f0901016bb3853150ed26034c4134ff006
68e7434c7bd0401b2dbc2ac87c76abd74c51bb14394a98a26cfe55ac197c82bd
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dr-antar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.6
date: Fri, 14 Oct 2022 20:50:19 GMT
content-type: text/css
last-modified: Sun, 14 Aug 2022 20:07:57 GMT
vary: Accept-Encoding
etag: W/"62f9561d-2dff"
expires: Fri, 21 Oct 2022 20:50:19 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
dr-antar.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
199.250.218.31200 OK 77 kB URL HTTP/1.1 dr-antar.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 199.250.218.31:0
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://dr-antar.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:19 GMT
Content-Type: font/woff2
Content-Length: 76764
Last-Modified: Sun, 14 Aug 2022 20:07:59 GMT
Connection: keep-alive
ETag: "62f9561f-12bdc"
Expires: Fri, 21 Oct 2022 20:50:19 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Accept-Ranges: bytes
dr-antar.com/wp-content/uploads/2021/11/ben-masora-Oy5IKUo8lZM-unsplash-1000x600.jpg
199.250.218.31200 OK 132 kB URL HTTP/2 dr-antar.com/wp-content/uploads/2021/11/ben-masora-Oy5IKUo8lZM-unsplash-1000x600.jpg
IP 199.250.218.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x600, components 3\012- data
Size 132 kB (131649 bytes)
Hash a01eb7a2823f92aca9c78a4401dac33f
0a03e762885f77ce27478615f9c5594131d5f72f
6cfdd5ea7cbf24761774f9150c4d2e10570b036798423fe441631f5ec1abbb59
GET /wp-content/uploads/2021/11/ben-masora-Oy5IKUo8lZM-unsplash-1000x600.jpg HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dr-antar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Fri, 14 Oct 2022 20:50:19 GMT
content-type: image/jpeg
content-length: 131649
last-modified: Sun, 14 Aug 2022 20:12:56 GMT
etag: "62f95748-20241"
expires: Fri, 21 Oct 2022 20:50:19 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
dr-antar.com/wp-content/uploads/2021/11/ben-masora-Oy5IKUo8lZM-unsplash-150x150.jpg
199.250.218.31200 OK 8.5 kB URL HTTP/2 dr-antar.com/wp-content/uploads/2021/11/ben-masora-Oy5IKUo8lZM-unsplash-150x150.jpg
IP 199.250.218.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash ea74223649d31ae15e9a13e20cfbadc4
c58bf5d8ab48eb048036eae62527252d1a4b8c79
3a224cfe310a33a2402b07a1f62c8160fb3797b17c3127ac5d354d2d98273d5e
GET /wp-content/uploads/2021/11/ben-masora-Oy5IKUo8lZM-unsplash-150x150.jpg HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dr-antar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Fri, 14 Oct 2022 20:50:19 GMT
content-type: image/jpeg
content-length: 8503
last-modified: Sun, 14 Aug 2022 20:12:52 GMT
etag: "62f95744-2137"
expires: Fri, 21 Oct 2022 20:50:19 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
dr-antar.com/wp-content/uploads/2021/11/brooke-lark-atzWFItRHy8-unsplash-150x150.jpg
199.250.218.31200 OK 3.4 kB URL HTTP/2 dr-antar.com/wp-content/uploads/2021/11/brooke-lark-atzWFItRHy8-unsplash-150x150.jpg
IP 199.250.218.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 7b7f9dce7c9e1b787dc3550ca5ef3832
44024ca892e26d5756e0fafa3c58463be1361c18
89746f4a7679b15e0b7ee9541a817d79d6b5fdf307cbc50fb76174f21ceca622
GET /wp-content/uploads/2021/11/brooke-lark-atzWFItRHy8-unsplash-150x150.jpg HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dr-antar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Fri, 14 Oct 2022 20:50:19 GMT
content-type: image/jpeg
content-length: 3405
last-modified: Sun, 14 Aug 2022 20:13:01 GMT
etag: "62f9574d-d4d"
expires: Fri, 21 Oct 2022 20:50:19 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
dr-antar.com/wp-content/uploads/2021/11/mihai-stefan-658815-unsplash-150x150.jpg
199.250.218.31200 OK 7.2 kB URL HTTP/2 dr-antar.com/wp-content/uploads/2021/11/mihai-stefan-658815-unsplash-150x150.jpg
IP 199.250.218.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 2c43a4f1b1e9a5730f55124526894bdc
a2078652aedb5ecaf83061a9c745ea1062b72f88
14605d0e0aaa848fb71aa8aa21af93b2a42f4a89e9ab9d645f11705c3f32d18c
GET /wp-content/uploads/2021/11/mihai-stefan-658815-unsplash-150x150.jpg HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dr-antar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Fri, 14 Oct 2022 20:50:19 GMT
content-type: image/jpeg
content-length: 7173
last-modified: Sun, 14 Aug 2022 20:10:34 GMT
etag: "62f956ba-1c05"
expires: Fri, 21 Oct 2022 20:50:19 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
dr-antar.com/wp-content/uploads/2021/11/cleyton-ewerton-N3JngnkuyRs-unsplash-150x150.jpg
199.250.218.31200 OK 5.5 kB URL HTTP/2 dr-antar.com/wp-content/uploads/2021/11/cleyton-ewerton-N3JngnkuyRs-unsplash-150x150.jpg
IP 199.250.218.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 36995d501671dbe78464faa03f5d7fd1
26cdab7e950ee1c41fb235e8decead19db763936
c9920dd77f605afb311e39d7f831c09682b77e97239a67accbff008e20c2e952
GET /wp-content/uploads/2021/11/cleyton-ewerton-N3JngnkuyRs-unsplash-150x150.jpg HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dr-antar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Fri, 14 Oct 2022 20:50:19 GMT
content-type: image/jpeg
content-length: 5479
last-modified: Sun, 14 Aug 2022 20:13:10 GMT
etag: "62f95756-1567"
expires: Fri, 21 Oct 2022 20:50:19 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
dr-antar.com/wp-content/uploads/2021/11/nora-hutton-tCJ44OIqceU-unsplash.jpg
199.250.218.31200 OK 31 kB URL HTTP/2 dr-antar.com/wp-content/uploads/2021/11/nora-hutton-tCJ44OIqceU-unsplash.jpg
IP 199.250.218.31:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=2740, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1826], progressive, precision 8, 150x150, components 3\012- data
Hash 5af965772fe064167649bf4af3523d76
aebaba6c993d7a241c251de304b5803a24e7c75f
ca705fb99111d255db76ccd996369c1d40c6e8ac0e899e000a8616a4252353db
GET /wp-content/uploads/2021/11/nora-hutton-tCJ44OIqceU-unsplash.jpg HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dr-antar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Fri, 14 Oct 2022 20:50:19 GMT
content-type: image/jpeg
content-length: 31341
last-modified: Sun, 14 Aug 2022 20:09:58 GMT
etag: "62f95696-7a6d"
expires: Fri, 21 Oct 2022 20:50:19 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
dr-antar.com/wp-content/uploads/2021/11/brooke-lark-atzWFItRHy8-unsplash-1000x600.jpg
199.250.218.31200 OK 78 kB URL HTTP/2 dr-antar.com/wp-content/uploads/2021/11/brooke-lark-atzWFItRHy8-unsplash-1000x600.jpg
IP 199.250.218.31:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x600, components 3\012- data
Hash 064186c395a0052aed55b6af34e8e053
07630bdfb08d931d8d5388c13f44c81dbf56d911
fed6db32a26e957102f9c7bb65bd2e5d90f4aec4df50c8ffb9e3bee9bbff15a5
GET /wp-content/uploads/2021/11/brooke-lark-atzWFItRHy8-unsplash-1000x600.jpg HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dr-antar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Fri, 14 Oct 2022 20:50:19 GMT
content-type: image/jpeg
content-length: 77673
last-modified: Sun, 14 Aug 2022 20:13:04 GMT
etag: "62f95750-12f69"
expires: Fri, 21 Oct 2022 20:50:19 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 73b0059a5671ff189dccdeb345c3dfb6
89a89effe4d8e12b478b3abb9ae5e94a861d957d
673eaa034fe322874455a7ea38197c02819882d0176d9ae3773eea63dd53e3b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "673EAA034FE322874455A7EA38197C02819882D0176D9AE3773EEA63DD53E3B0"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8786
Expires: Fri, 14 Oct 2022 23:16:46 GMT
Date: Fri, 14 Oct 2022 20:50:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 73b0059a5671ff189dccdeb345c3dfb6
89a89effe4d8e12b478b3abb9ae5e94a861d957d
673eaa034fe322874455a7ea38197c02819882d0176d9ae3773eea63dd53e3b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "673EAA034FE322874455A7EA38197C02819882D0176D9AE3773EEA63DD53E3B0"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8786
Expires: Fri, 14 Oct 2022 23:16:46 GMT
Date: Fri, 14 Oct 2022 20:50:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 73b0059a5671ff189dccdeb345c3dfb6
89a89effe4d8e12b478b3abb9ae5e94a861d957d
673eaa034fe322874455a7ea38197c02819882d0176d9ae3773eea63dd53e3b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "673EAA034FE322874455A7EA38197C02819882D0176D9AE3773EEA63DD53E3B0"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8786
Expires: Fri, 14 Oct 2022 23:16:46 GMT
Date: Fri, 14 Oct 2022 20:50:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 73b0059a5671ff189dccdeb345c3dfb6
89a89effe4d8e12b478b3abb9ae5e94a861d957d
673eaa034fe322874455a7ea38197c02819882d0176d9ae3773eea63dd53e3b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "673EAA034FE322874455A7EA38197C02819882D0176D9AE3773EEA63DD53E3B0"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8786
Expires: Fri, 14 Oct 2022 23:16:46 GMT
Date: Fri, 14 Oct 2022 20:50:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98481d75-e189-4e2a-94de-5d6c94c4ea9e.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98481d75-e189-4e2a-94de-5d6c94c4ea9e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1a0e7692a42450c5880b6bf2c3e600f
3c567806bfec9a195235f1c1e3c3e4bc647fdde9
318e462ae5b2da302cc3fa6539270866a352f011ebcc9ea35eef50c38fe9fe24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98481d75-e189-4e2a-94de-5d6c94c4ea9e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6685
x-amzn-requestid: 8d5aa091-bf24-4ab1-a33b-73795e951da1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z9m0EENeIAMF9Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634884e6-36c8c3d75b57c8df3b0644a0;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 21:36:38 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lf8nte3n3LzQdLXnv6MfnVk2LO0b0CjSfyiaxK2UWsM2DLsm-xEAgA==
via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 13 Oct 2022 21:56:44 GMT
age: 82416
etag: "3c567806bfec9a195235f1c1e3c3e4bc647fdde9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
demo.rivaxstudio.com/kayleen/wp-content/uploads/2021/12/kayleen-logo.png
172.67.218.19200 OK 1.1 kB URL HTTP/2 demo.rivaxstudio.com/kayleen/wp-content/uploads/2021/12/kayleen-logo.png
IP 172.67.218.19:0
File type PNG image data, 223 x 54, 8-bit colormap, non-interlaced\012- data
Hash 9c41d1c3e200808b90b5f57a2829ad98
6695b42ce0c75391f54d5344cc8b95c51231b5b1
7685597b59775c7e3c3c813170db4d3c6e2561983e5afe817dc92aaf2292f1dc
GET /kayleen/wp-content/uploads/2021/12/kayleen-logo.png HTTP/1.1
Host: demo.rivaxstudio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dr-antar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 14 Oct 2022 20:50:20 GMT
content-type: image/png
content-length: 1138
cache-control: public, max-age=31557600
expires: Sun, 15 Oct 2023 02:50:20 GMT
last-modified: Mon, 13 Dec 2021 06:59:01 GMT
accept-ranges: bytes
vary: User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w2Rlj%2BAPXctaTqHkJGo67gI2YkuBjz7S1uE3t9v0eZot6XOZpjbhskI3%2BKW%2FaxNjcGsblh5lAaRFlFftCC%2BZ%2BjSzmE3yOdPKd4%2FU491hcLub%2BUkQB6Ges0jlP2M7ARvzUadK5k21rA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75a32fc8ce8db51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42e00752-5abb-46e6-8a0d-c47f96af6b9f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42e00752-5abb-46e6-8a0d-c47f96af6b9f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 07dec47a418618af22b7104e1bbde5e6
c34dd1552df55e8b62e699a5efb14e7f26a60acb
5eb94cd99c5187faa2c0c8f5ef5b9786009d37c2950ca0048eb3f737e45c363b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42e00752-5abb-46e6-8a0d-c47f96af6b9f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9622
x-amzn-requestid: 340d7e66-1eb4-49fc-bf3d-56e5cc4af771
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z9n2_HXqIAMFzsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63488692-78ea067c541cb84f75741d22;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 21:43:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uN6RkKHKGjhauRGxTQiyluFaTwFaGBgtkJsdFMcxUoZNEu_05ocMZg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 13 Oct 2022 22:18:42 GMT
etag: "c34dd1552df55e8b62e699a5efb14e7f26a60acb"
content-type: image/jpeg
age: 81098
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ada65cb-c437-4614-ad56-8612a5eb3d39.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ada65cb-c437-4614-ad56-8612a5eb3d39.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c2fb169144739a1240a832df181cf24
a7eb3a1289135eeafd639dffba6daf3e0bd0aee5
6f471bf8a40088a008efc818c762f8ec99988b9b68478034762cf872c809d246
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ada65cb-c437-4614-ad56-8612a5eb3d39.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6005
x-amzn-requestid: f9cd6d19-f5f8-44ad-a809-9c66b2cea9ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z9m7YEw7oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63488515-74c9354b031430335dfea732;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LXxeCjMMQNf9omLbqQcNmOE0beFQz79WxHAamulwf5JtYN8UL3qOmg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 13 Oct 2022 21:47:47 GMT
age: 82953
etag: "a7eb3a1289135eeafd639dffba6daf3e0bd0aee5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66af0895-4532-481a-84d9-523353a6c160.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66af0895-4532-481a-84d9-523353a6c160.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e80557033ce8935b57b87fe59633393e
6c055a00a12067ab5b11458bb614bc6f1028c28a
8a88d7f2110e5c200f6f26ed5e6c7b299b9c76654f095b870cfffb2a8d7b96d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66af0895-4532-481a-84d9-523353a6c160.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9350
x-amzn-requestid: fd2ec00f-7ef1-4e4a-a652-a388dcba3e16
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z9m0EHctoAMF8Ww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634884e6-7e945574599f2ec67e824671;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 21:36:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nGGbFQtzfoIKZyepQq5gOTzJ4XFk6PzjncnWVn5dCMRWqi88NXkkjw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 13 Oct 2022 21:53:45 GMT
age: 82595
etag: "6c055a00a12067ab5b11458bb614bc6f1028c28a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3261ab5d-a8bc-4570-b3a7-6a84af32a316.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3261ab5d-a8bc-4570-b3a7-6a84af32a316.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8cb88b15f7586a43b2f80b8079afd374
11fd9e6c872c6eb6e03761dbbcf38bf3707b741a
8bfffc22e8ea19dab232e21f1f5f76811e37b048f80cad532f905f5a1047b9c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3261ab5d-a8bc-4570-b3a7-6a84af32a316.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10731
x-amzn-requestid: 30e35246-dd7f-421c-afcf-5c5372edd5d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z0fEgESiIAMFTtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6344dee9-06ab66382ab2d71a18b6a8be;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 03:11:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DSf-Pze4qG8u-neGe5WU6keIki0n0g6UWEjOqpDzijlPCVOz9nw5iA==
via: 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 14 Oct 2022 06:13:05 GMT
age: 52635
etag: "11fd9e6c872c6eb6e03761dbbcf38bf3707b741a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe601c322-0073-4b24-8118-55869adbeb98.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe601c322-0073-4b24-8118-55869adbeb98.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9c5be9ddedaa70a8e03c2caa6612e50
aee7bccc46ab5f49f91f469058958c38b957564a
d2c07961af9586fd776ab456b37516d0da1512bd511411f025c6e624442ec334
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe601c322-0073-4b24-8118-55869adbeb98.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12311
x-amzn-requestid: ea7249c5-3474-468f-95da-f72348359496
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3yJEFDGoAMFo8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634630a0-7e14ca5f47e01f696db40261;Sampled=0
x-amzn-remapped-date: Wed, 12 Oct 2022 03:12:32 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Ob3vdgFus0FNjPIM2kFx4W-lUaeoajDM4CmrcrJH3VP3Qs3yJcji_A==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 14 Oct 2022 04:20:26 GMT
age: 59394
etag: "aee7bccc46ab5f49f91f469058958c38b957564a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dr-antar.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
199.250.218.31200 OK 676 B URL HTTP/1.1 dr-antar.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 199.250.218.31:0
File type ASCII text, with very long lines (1320)
Hash 13cfc30b3d17620e0834a8851d7a7ced
418abfdc1843cd8c910ff41328bd6c45958b12ad
27e8161bcbb0b508f926a44fbed51ebae414c2d337b9869232b38c95f1c4b850
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:20 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Aug 2022 20:08:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f95621-54f"
Expires: Fri, 21 Oct 2022 20:50:20 GMT
Cache-Control: max-age=604800, public, must-revalidate
X-Proxy-Cache: STATIC/TYPE
Content-Encoding: gzip
dr-antar.com/?wc-ajax=get_refreshed_fragments
199.250.218.31200 OK 189 B URL HTTP/1.1 dr-antar.com/?wc-ajax=get_refreshed_fragments
IP 199.250.218.31:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 90932e53fa04e286c9af9d2bdc99b5f0
6c0556375d6a5043c1bf1414e3a836a8aebee737
57d0fd105c52b8601168e56b23f1441285f2db2e014ed9650474d7d7c4660642
Analyzer Verdict Alert fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://dr-antar.com
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:20 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: http://dr-antar.com
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Robots-Tag: noindex
X-Proxy-Cache: DISABLED
Content-Encoding: gzip
dr-antar.com/favicon.ico
199.250.218.31404 Not Found 113 B IP 199.250.218.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash fa654187ff3fa5d00f447d5c53990518
0c996af2521a1c3fef0a0738dcc9bbd00e6bee1d
2a447af4bd6b0dddf926fcde3f29c0464cddd299ce4bbcffa97804efd6f33693
GET /favicon.ico HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 404 Not Found
Server: nginx/1.21.6
Date: Fri, 14 Oct 2022 20:50:20 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
0.gravatar.com/avatar/0314a668162cd61af35f58d690a94dfa?s=60&d=mm&r=g
192.0.73.2200 OK 2.3 kB URL HTTP/1.1 0.gravatar.com/avatar/0314a668162cd61af35f58d690a94dfa?s=60&d=mm&r=g
IP 192.0.73.2:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 60x60, components 3\012- data
Hash 937ca63b4f96c7c39a50cd5d16477a4a
ac15187cd6a93adafaf5affc1bbad4f58a0c5997
46ea74e51a76c2fc347954fe043489823d22754b651665cdba169f00b0560e33
GET /avatar/0314a668162cd61af35f58d690a94dfa?s=60&d=mm&r=g HTTP/1.1
Host: 0.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dr-antar.com/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 14 Oct 2022 20:50:20 GMT
Content-Type: image/jpeg
Content-Length: 2316
Connection: keep-alive
Last-Modified: Mon, 19 Aug 2019 11:04:22 GMT
Link: <https://www.gravatar.com/avatar/0314a668162cd61af35f58d690a94dfa?s=60&d=mm&r=g>; rel="canonical"
Content-Disposition: inline; filename="0314a668162cd61af35f58d690a94dfa.jpeg"
Access-Control-Allow-Origin: *
Expires: Fri, 14 Oct 2022 20:55:20 GMT
Cache-Control: max-age=300
X-nc: MISS arn 1
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5c76a23-8abd-4e3e-a093-75e8dfb1dbfb.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5c76a23-8abd-4e3e-a093-75e8dfb1dbfb.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56217b4ec776d52347ca781dd826b1fc
8f1261feb1d5ed02e3ffcdc1bdfd299f03108d96
1efffa3f5ce3690da3215b7ec98bf6b6c80888fa99fc130b87e5aa11cf2c8f43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5c76a23-8abd-4e3e-a093-75e8dfb1dbfb.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 14262
x-amzn-requestid: d52e5bb3-1c81-4691-989c-18f4f9884aad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZhQUBFshIAMFvzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633d2db3-10be4b386c99044a771581dc;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 07:09:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dNksIlyBIFpQOMtyErqbUFfEXOY1BIiZnxD1m0YX72lna4SA9qBOIA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Fri, 14 Oct 2022 20:17:02 GMT
age: 2005
etag: "8f1261feb1d5ed02e3ffcdc1bdfd299f03108d96"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dr-antar.com/page/2/
199.250.218.31200 OK 0 B IP 199.250.218.31:0
Analyzer Verdict Alert fortinet Malware
GET /page/2/ HTTP/1.1
Host: dr-antar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: http://dr-antar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Fri, 14 Oct 2022 20:50:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://dr-antar.com/wp-json/>; rel="https://api.w.org/"
x-proxy-cache: DISABLED
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins&display=swap&ver=1660508236
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins&display=swap&ver=1660508236
IP 142.250.74.10:0
GET /css?family=Poppins&display=swap&ver=1660508236 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dr-antar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 14 Oct 2022 20:50:19 GMT
date: Fri, 14 Oct 2022 20:50:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
IP 142.250.74.10:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dr-antar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 14 Oct 2022 20:50:19 GMT
date: Fri, 14 Oct 2022 20:50:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2