elkadamany.com/
64.20.48.9301 Moved Permanently 146 B IP 64.20.48.9:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 2af93a921e2870e807426f33b4298a6f
5b79bd6455051b27865872c108e2e863e5642ef8
0980d8fc74ee534368b3834de049ce9eb27ca72f532830b2698a346903bb553c
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: elkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://alkadamany.com/
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Wed, 01 Feb 2023 08:25:18 GMT
Content-Length: 146
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16185
Expires: Wed, 01 Feb 2023 12:55:03 GMT
Date: Wed, 01 Feb 2023 08:25:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7339
Expires: Wed, 01 Feb 2023 10:27:37 GMT
Date: Wed, 01 Feb 2023 08:25:18 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 07:43:25 GMT
content-type: application/json
age: 2513
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2406
Expires: Wed, 01 Feb 2023 09:05:24 GMT
Date: Wed, 01 Feb 2023 08:25:18 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0jGVYuyQmit4bHB18iA+UOvk6UC7882GWINyzqEjaMGiQHuZ8/jxkLLTEiyn4Zetk9KR/wdyYvc=
x-amz-request-id: SGTCA25FV9G9CNFX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 08:22:35 GMT
age: 163
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 08:25:18 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 07:41:42 GMT
age: 2617
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
alkadamany.com/
64.20.48.9200 OK 23 kB IP 64.20.48.9:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (525), with CRLF line terminators
Hash e388390cdaab386a07f0e64787c29968
983017dfd25d63f50586545bc05548e2de7829b5
60548f16e6aee18e9ac86a075140b446d53213994869d34eb8924cd3839ea6af
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 23209
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9459
Expires: Wed, 01 Feb 2023 11:02:58 GMT
Date: Wed, 01 Feb 2023 08:25:19 GMT
Connection: keep-alive
code.jquery.com/jquery-3.5.1.min.js
69.16.175.10200 OK 31 kB URL HTTP/2 code.jquery.com/jquery-3.5.1.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (65451)
Hash 3700d0b271343804b9b9aa1c13efa521
3d6b03dbd74872ca3dfbb0529f6c80943788f918
fda7541f8e4cf921d20bcd0dc1d0efe69644c79bd18a0be4ce2f34246c83603e
GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:19 GMT
content-encoding: gzip
content-length: 30879
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d84"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675239919.dop225.sk1.t,1675239919.cds248.sk1.hn,1675239919.cds208.sk1.c
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f7c7bb7225c10524e8a4c4865da5a6f1
a7d13d671a7896602b3978b3cf95b36e6717a0e0
46603c49f6db6002e629cbe237183c257b80bba17e0841b76c103048a7f51909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6539
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:19 GMT
Last-Modified: Wed, 01 Feb 2023 06:36:20 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
alkadamany.com/css/plugins-css.css
64.20.48.9200 OK 477 B URL HTTP/2 alkadamany.com/css/plugins-css.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 720c2f841017cd71ef9fe2f081cd1766
100e77b1d115f71f0ee05adb86caf077b40b9fb8
2b17d3d8c384e0679ba53c69d7824cc593cc000ceadac42881d8a5940715bd22
GET /css/plugins-css.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Sun, 12 Jun 2022 04:09:41 GMT
accept-ranges: bytes
etag: "69de903d127ed81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 477
X-Firefox-Spdy: h2
alkadamany.com/revolution/fonts/pe-icon-7-stroke/css/pe-icon-7-stroke.css
64.20.48.9200 OK 1.7 kB URL HTTP/2 alkadamany.com/revolution/fonts/pe-icon-7-stroke/css/pe-icon-7-stroke.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 955d7907d941da77e9ba06a84fcae6af
eab9838713c44dba7fcf5c43f8de76adc7e049f8
e3ccbf332dd4d97741b563dbec9694cb66e04b31b3e3de0c8569a670432c4c18
GET /revolution/fonts/pe-icon-7-stroke/css/pe-icon-7-stroke.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:08:46 GMT
accept-ranges: bytes
etag: "023cd875cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 1678
X-Firefox-Spdy: h2
alkadamany.com/revolution/css/settings.css
64.20.48.9200 OK 6.8 kB URL HTTP/2 alkadamany.com/revolution/css/settings.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (29701), with CRLF line terminators
Hash 49979eb8026fb51eeee8a56eebac59bb
4843da304c90e41b315f385ddb9e6740d2e217c9
32068f2c9b97cd6967bdfffdbda17ba214e07622e9a327b14197984b95053686
GET /revolution/css/settings.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:07:19 GMT
accept-ranges: bytes
etag: "80fdf1535cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 6809
X-Firefox-Spdy: h2
alkadamany.com/revolution/fonts/font-awesome/css/font-awesome.css
64.20.48.9200 OK 7.1 kB URL HTTP/2 alkadamany.com/revolution/fonts/font-awesome/css/font-awesome.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (372)
Hash ed0a5d8aa314cf5fd89dac01a4fe94e6
85fe7c9e8484c9c723d7e5ce6dfac12a28b70637
c1a4aaaf8e247b700c7655614770c65b341dc8c8da491441667b956c6925fb86
GET /revolution/fonts/font-awesome/css/font-awesome.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:08:42 GMT
accept-ranges: bytes
etag: "0c96a855cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 7054
X-Firefox-Spdy: h2
alkadamany.com/revolution/css/revolution.addon.particles.css
64.20.48.9200 OK 378 B URL HTTP/2 alkadamany.com/revolution/css/revolution.addon.particles.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 7844e693ea1b04df36f00f1930d3b8ff
a8e6c39eb0018aaed1d1ea839876a1a2553198b1
6f1d42106792a012e3b56911a32e3f0d81847123b28503e2a43355e1039461d0
GET /revolution/css/revolution.addon.particles.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:07:18 GMT
accept-ranges: bytes
etag: "22f259535cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 378
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alkadamany.com/revolution/css/rev-slider-arrow.css
64.20.48.9200 OK 11 kB URL HTTP/2 alkadamany.com/revolution/css/rev-slider-arrow.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (5398), with CRLF line terminators
Hash 1a4aee90c51939dd8cc4fcfe727ffa67
67c1a4a5556545b4fc2faa6c4271323606e778b3
4ee0fb18176a4e23a579663ad57c082ee8b0b59d662320853b2ba2dae7998830
GET /revolution/css/rev-slider-arrow.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:07:16 GMT
accept-ranges: bytes
etag: "03a28525cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 11339
X-Firefox-Spdy: h2
alkadamany.com/css/typography.css
64.20.48.9200 OK 2.3 kB URL HTTP/2 alkadamany.com/css/typography.css
IP 64.20.48.9:0
File type assembler source, ASCII text, with very long lines (375), with CRLF line terminators
Hash fd9de9e89c4f24772188281bfba1f45e
d139dd5b82f54a9b69fcddb8bcd44ca1537b7600
d5266df346f3c3817e2d3beaeeefae130f0441c74bfe56fc64a9917b336e107f
GET /css/typography.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:03:08 GMT
accept-ranges: bytes
etag: "06e56be5bf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 2253
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js
216.58.211.10200 OK 33 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js
IP 216.58.211.10:0
File type ASCII text, with very long lines (32072)
Hash d38e2944bbc9ae54b8947a2bd0b9a932
782a825679b248d38979c2d7ecae257873344437
65a0917567cb7037612cf420629873f2f3594d2e741aaadf90d893d07d8f5fdd
GET /ajax/libs/jquery/1.10.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 32954
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 15:52:57 GMT
expires: Sun, 28 Jan 2024 15:52:57 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 318742
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
216.58.211.10200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
IP 216.58.211.10:0
File type ASCII text, with very long lines (32077)
Hash fd2b58574f9637ba7ef639267349d848
6eda5ea93f549ceb5693f6f1c038893fa56a510d
75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec
GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 03:13:10 GMT
expires: Tue, 30 Jan 2024 03:13:10 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 191529
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alkadamany.com/css/style.css
64.20.48.9200 OK 25 kB URL HTTP/2 alkadamany.com/css/style.css
IP 64.20.48.9:0
File type Unicode text, UTF-8 text, with very long lines (5429), with CRLF line terminators
Hash 491128a12a9304fae1798562712d93ff
3114955e0f17a573ee1759e9d810db2862f5cec7
cdef2b67d4e8de83a0d6f0a7d5f9e3f8067a1d1ee734c17d3f080c0c45c6eb53
GET /css/style.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:03:07 GMT
accept-ranges: bytes
etag: "80d7bdbd5bf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 24833
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/shortcodes.css
64.20.48.9200 OK 528 B URL HTTP/2 alkadamany.com/css/shortcodes/shortcodes.css
IP 64.20.48.9:0
Hash efdaa00c680a47666ab8f148e3f75191
6c5007e336d29305a8839232ad8c76b8e2364b82
e81da00b39ae7554cb705b1eda16918338c20c106188380dcd6e4eceb673664f
GET /css/shortcodes/shortcodes.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:38 GMT
accept-ranges: bytes
etag: "b68ac6175cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 528
X-Firefox-Spdy: h2
alkadamany.com/css/responsive.css
64.20.48.9200 OK 16 kB URL HTTP/2 alkadamany.com/css/responsive.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (343), with CRLF line terminators
Hash c042422da1fd292df9c8002a3b540982
88a7d70621f4aa118238f38518f4458426a9fbf9
d79309b02a78e8b01f1e1d1717545d66b43deb45043513e9245004ccd0b1fb51
GET /css/responsive.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:02:57 GMT
accept-ranges: bytes
etag: "80f6c7b75bf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 16085
X-Firefox-Spdy: h2
alkadamany.com/config/search/colorbox.css
64.20.48.9200 OK 908 B URL HTTP/2 alkadamany.com/config/search/colorbox.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 9db38ead4ac8acd325284537e62a0f4b
cd41187f3793f9e89ba64da1a1b7fffc10f60a27
35bdf19f841ea5006eeb4a2906fe329922de9fb51139d0ccbe66adc1c325f11d
GET /config/search/colorbox.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Sun, 17 Jul 2022 03:41:15 GMT
accept-ranges: bytes
etag: "803fe1108f99d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 908
X-Firefox-Spdy: h2
alkadamany.com/search/zoom_autocomplete.css
64.20.48.9200 OK 414 B URL HTTP/2 alkadamany.com/search/zoom_autocomplete.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 12ad98706ab7f2a88844ce1b49fa5763
9a6773b8cad7934a28ab7d166d518058148f5b13
84727379af9ca6c4ab361864adc386b0f3944d723ccaae4d3d45d6c97a8e482d
GET /search/zoom_autocomplete.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Sun, 15 Jan 2023 11:28:03 GMT
accept-ranges: bytes
etag: "ee568c6ed428d91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 414
X-Firefox-Spdy: h2
alkadamany.com/config/search/jquery.min.js
64.20.48.9200 OK 32 kB URL HTTP/2 alkadamany.com/config/search/jquery.min.js
IP 64.20.48.9:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32732), with CRLF line terminators
Hash 45674be97edca7698c56a24561e35e5a
b2b34f19705edc43cc51428dad9983427e6bc299
61bec6900a531cfc0552a79eb5b11697042df8ced9904733b526cac65444c1f0
Analyzer Verdict Alert fortinet Phishing
GET /config/search/jquery.min.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Mon, 13 Dec 2021 22:10:43 GMT
accept-ranges: bytes
etag: "80f345456ef0d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 32399
X-Firefox-Spdy: h2
alkadamany.com/images/logoworldwhite.png
64.20.48.9200 OK 8.7 kB URL HTTP/2 alkadamany.com/images/logoworldwhite.png
IP 64.20.48.9:0
File type PNG image data, 409 x 74, 8-bit/color RGBA, non-interlaced\012- data
Hash a41de19020b9e2df8138ca4370980000
577d657d05fc6f42710be7bdefd2539c91ccbcac
9d161be91eb9cd70d59033bc9e478422d8c0a9f9c1ae86984e21c3c2900616dc
GET /images/logoworldwhite.png HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Thu, 16 Dec 2021 09:04:03 GMT
accept-ranges: bytes
etag: "83a64bdf5bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 8672
X-Firefox-Spdy: h2
alkadamany.com/search/zoom_autocomplete.js
64.20.48.9200 OK 1.7 kB URL HTTP/2 alkadamany.com/search/zoom_autocomplete.js
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 44120dd8a187e9b9ff221424c4d9e336
819984ac2638e3da6b73d08238132944258fcad9
769f4eefdee21f324ac2ab42539af3f4cd5bdb211d40f4da65d6e59d5cb6c37f
Analyzer Verdict Alert fortinet Phishing
GET /search/zoom_autocomplete.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:04:57 GMT
accept-ranges: bytes
etag: "80824eff5bf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 1741
X-Firefox-Spdy: h2
alkadamany.com/images/logo70.png
64.20.48.9200 OK 12 kB URL HTTP/2 alkadamany.com/images/logo70.png
IP 64.20.48.9:0
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash c17f78331449f7bd0942e2d7fbdd3541
2c8af5a80232bcda7037a02a60d1553c687a3c74
af6158494742755350e7724c995ea8634d6a6eb3ff9de942d53ea1ef777acfab
GET /images/logo70.png HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Thu, 16 Dec 2021 09:04:02 GMT
accept-ranges: bytes
etag: "bfdf9de5bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 11733
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.241.148.153101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.241.148.153:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NJ9dxhG9c/u55EE99IAjVw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Fv4kTzUeAvee7Ho0l6eMMvPSAiw=
alkadamany.com/images/dummy.png
64.20.48.9200 OK 73 B URL HTTP/2 alkadamany.com/images/dummy.png
IP 64.20.48.9:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9d08eac154f5b02ef14e612fc25b9bf2
5a1e9121811015fbc274dae72072f874aee3d805
17af9e65317bbbfbbd0bcdc729f14faadf37cd08cf30cc0fe0b72443e78cbffb
GET /images/dummy.png HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Thu, 16 Dec 2021 09:03:47 GMT
accept-ranges: bytes
etag: "1a80c7d55bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 73
X-Firefox-Spdy: h2
alkadamany.com/images/logo600.png
64.20.48.9200 OK 30 kB URL HTTP/2 alkadamany.com/images/logo600.png
IP 64.20.48.9:0
File type PNG image data, 600 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 8afff9602ff7255e40675aad9c418598
007fd3553f73deb37face11762f1203787a95742
479383028019c254816ef28dca19b77175c9328bb14e0ba68dfbff8340e09749
GET /images/logo600.png HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Thu, 16 Dec 2021 09:04:02 GMT
accept-ranges: bytes
etag: "576b94de5bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 29586
X-Firefox-Spdy: h2
alkadamany.com/green/content/plugins/halfdata-green-popups/js/lepopup.min.js?ver=7.4
64.20.48.9200 OK 17 kB URL HTTP/2 alkadamany.com/green/content/plugins/halfdata-green-popups/js/lepopup.min.js?ver=7.4
IP 64.20.48.9:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0423779ddd2db2adc5e85099519f567d
781b3642c60d9557a3aa8d473c0824302f3704f9
e454db1731fbf6d2c4e64a2b26db7744b041d8461b1655a37c0d602d6fff0e24
Analyzer Verdict Alert fortinet Phishing
GET /green/content/plugins/halfdata-green-popups/js/lepopup.min.js?ver=7.4 HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 14 Jan 2023 02:48:17 GMT
accept-ranges: bytes
etag: "80ae69a7c227d91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 16647
X-Firefox-Spdy: h2
alkadamany.com/js/jquery-3.4.1.min.js
64.20.48.9200 OK 31 kB URL HTTP/2 alkadamany.com/js/jquery-3.4.1.min.js
IP 64.20.48.9:0
File type ASCII text, with very long lines (65451)
Hash 1e0d7baa851ccfd35b58359579165c36
fea8ea578e270c67b3ef7bdcf2467b5a8ad9f36c
279ec7040815604ebf45711b62226d49e404143ef16fc4413e4518869106ffcc
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery-3.4.1.min.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 16 Dec 2021 09:04:28 GMT
accept-ranges: bytes
etag: "0765ee5bf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 30655
X-Firefox-Spdy: h2
alkadamany.com/images/mygif.gif
64.20.48.9200 OK 385 kB URL HTTP/2 alkadamany.com/images/mygif.gif
IP 64.20.48.9:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 385 kB (385086 bytes)
Hash 5424832359972fae4767e40773c6b493
71710b545f472bba7289b9600d14a9219dad6085
b4181b09eb2b87b24b37dc0e6b5c2fa07ba21a10bf76504985ca982b4689da5a
GET /images/mygif.gif HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
last-modified: Thu, 16 Dec 2021 09:04:09 GMT
accept-ranges: bytes
etag: "a310d1e25bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 385086
X-Firefox-Spdy: h2
alkadamany.com/js/plugins-jquery.js
64.20.48.9200 OK 115 kB URL HTTP/2 alkadamany.com/js/plugins-jquery.js
IP 64.20.48.9:0
File type ASCII text, with very long lines (32003), with CRLF line terminators
Size 115 kB (114769 bytes)
Hash 0eb3f252749080cb9ca38bda054ad2ac
e12e7e745de375e2e16ee9015d780a578bb49d36
10294c3486f168cf6b1c571493d7d06f06496f93360310555b7884d4548100be
Analyzer Verdict Alert fortinet Phishing
GET /js/plugins-jquery.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:04:29 GMT
accept-ranges: bytes
etag: "80c9eee5bf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 114769
X-Firefox-Spdy: h2
alkadamany.com/revolution/js/jquery.themepunch.revolution.min.js
64.20.48.9200 OK 18 kB URL HTTP/2 alkadamany.com/revolution/js/jquery.themepunch.revolution.min.js
IP 64.20.48.9:0
File type ASCII text, with very long lines (64455), with CRLF line terminators
Hash 7d4bfe57a379d4c23bef02b9a087853e
bb0ff2bdbb6db628b4e975ef9c72ed0cbe73d2b4
c146697c97fdf916a11478491ffbcf7806343a0dd201e6f92de391a04018f604
Analyzer Verdict Alert fortinet Phishing
GET /revolution/js/jquery.themepunch.revolution.min.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 16 Dec 2021 09:07:25 GMT
accept-ranges: bytes
etag: "808485575cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 17912
X-Firefox-Spdy: h2
alkadamany.com/revolution/js/extensions/revolution.extension.carousel.min.js
64.20.48.9200 OK 2.6 kB URL HTTP/2 alkadamany.com/revolution/js/extensions/revolution.extension.carousel.min.js
IP 64.20.48.9:0
File type ASCII text, with very long lines (7370), with CRLF line terminators
Hash aeea966ddcf2ccdc2c440af3de5133c1
824b0548f138c9ccee9679e102f40444dfb3dda7
411abff2e82a457c259be9b443941d0bb8948c6300e912b9b5969c08dc17bf03
Analyzer Verdict Alert fortinet Phishing
GET /revolution/js/extensions/revolution.extension.carousel.min.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 16 Dec 2021 09:08:03 GMT
accept-ranges: bytes
etag: "80db2b6e5cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 2600
X-Firefox-Spdy: h2
alkadamany.com/revolution/js/extensions/revolution.extension.kenburn.min.js
64.20.48.9200 OK 1.6 kB URL HTTP/2 alkadamany.com/revolution/js/extensions/revolution.extension.kenburn.min.js
IP 64.20.48.9:0
File type ASCII text, with very long lines (3515), with CRLF line terminators
Hash b6ac6f7e8d431c81a697389d233a331a
62c57ac46fd53a36229419003b8eb20a8f575ee7
4a717d2880226ae8ab86b0f18fe90e854ad2fb1a7304a5ea2b2bcde0be1420ef
Analyzer Verdict Alert fortinet Phishing
GET /revolution/js/extensions/revolution.extension.kenburn.min.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 16 Dec 2021 09:08:04 GMT
accept-ranges: bytes
etag: "072c46e5cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 1560
X-Firefox-Spdy: h2
alkadamany.com/revolution/js/extensions/revolution.extension.layeranimation.min.js
64.20.48.9200 OK 14 kB URL HTTP/2 alkadamany.com/revolution/js/extensions/revolution.extension.layeranimation.min.js
IP 64.20.48.9:0
File type ASCII text, with very long lines (55747), with CRLF line terminators
Hash 4d59defac1af8eafe6e67a218e4115ec
e38641651bda0949d9b5e9dc60e6841da3cff70f
5d224b183968f2382a35fd9459623c410bad162bff8956fb4cea0a79bff7b487
Analyzer Verdict Alert fortinet Phishing
GET /revolution/js/extensions/revolution.extension.layeranimation.min.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 16 Dec 2021 09:08:04 GMT
accept-ranges: bytes
etag: "072c46e5cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 14361
X-Firefox-Spdy: h2
alkadamany.com/revolution/js/extensions/revolution.extension.migration.min.js
64.20.48.9200 OK 7.0 kB URL HTTP/2 alkadamany.com/revolution/js/extensions/revolution.extension.migration.min.js
IP 64.20.48.9:0
File type ASCII text, with very long lines (25862), with CRLF line terminators
Hash 283692e1b4730c87daf17a5180e59230
092bba4305a14ffcbeecfd0fb1f8cbd2da956240
30d8cc7377e8d6a3653e59f5b67f309ddcab65efd840c884c31cba7f01f711df
Analyzer Verdict Alert fortinet Phishing
GET /revolution/js/extensions/revolution.extension.migration.min.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 16 Dec 2021 09:08:04 GMT
accept-ranges: bytes
etag: "072c46e5cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 7028
X-Firefox-Spdy: h2
alkadamany.com/revolution/js/extensions/revolution.extension.navigation.min.js
64.20.48.9200 OK 7.0 kB URL HTTP/2 alkadamany.com/revolution/js/extensions/revolution.extension.navigation.min.js
IP 64.20.48.9:0
File type ASCII text, with very long lines (25862), with CRLF line terminators
Hash 283692e1b4730c87daf17a5180e59230
092bba4305a14ffcbeecfd0fb1f8cbd2da956240
30d8cc7377e8d6a3653e59f5b67f309ddcab65efd840c884c31cba7f01f711df
Analyzer Verdict Alert fortinet Phishing
GET /revolution/js/extensions/revolution.extension.navigation.min.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 16 Dec 2021 09:08:04 GMT
accept-ranges: bytes
etag: "072c46e5cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 7028
X-Firefox-Spdy: h2
alkadamany.com/revolution/js/extensions/revolution.extension.parallax.min.js
64.20.48.9200 OK 3.2 kB URL HTTP/2 alkadamany.com/revolution/js/extensions/revolution.extension.parallax.min.js
IP 64.20.48.9:0
File type ASCII text, with very long lines (10692), with CRLF line terminators
Hash ba8575b443a20b1f7bdef10e6169b4da
c3fd428e2f7744b82d24f4fe2be34256a010d388
984bb3eda17a61c4b443a5da5aa390ce865710923878153eda49611b46b78117
Analyzer Verdict Alert fortinet Phishing
GET /revolution/js/extensions/revolution.extension.parallax.min.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 16 Dec 2021 09:08:05 GMT
accept-ranges: bytes
etag: "8085d6f5cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 3237
X-Firefox-Spdy: h2
alkadamany.com/revolution/js/extensions/revolution.extension.slideanims.min.js
64.20.48.9200 OK 6.6 kB URL HTTP/2 alkadamany.com/revolution/js/extensions/revolution.extension.slideanims.min.js
IP 64.20.48.9:0
File type ASCII text, with very long lines (29149), with CRLF line terminators
Hash 658a90155b6c0e0ce4856c74b8ea5687
a20735e9c0595485d44b78e73af12c221a870687
53bc0ea68c35e6cb6c4c97b09cc2dbc4e701bd054052bfaef98cff5068d11701
Analyzer Verdict Alert fortinet Phishing
GET /revolution/js/extensions/revolution.extension.slideanims.min.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:08:05 GMT
accept-ranges: bytes
etag: "8085d6f5cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 6629
X-Firefox-Spdy: h2
alkadamany.com/revolution/js/revolution.addon.particles.min.js
64.20.48.9200 OK 6.6 kB URL HTTP/2 alkadamany.com/revolution/js/revolution.addon.particles.min.js
IP 64.20.48.9:0
File type ASCII text, with very long lines (555), with CRLF line terminators
Hash 173b3f0e20d889db4992b4f8ed098444
c8702ce1b5f98b2cff82f40b45a390137c880068
d640c23d59831085c80b95bf185f2c84a99f1bdb5cc20dd928fe1a117576bdad
Analyzer Verdict Alert fortinet Phishing
GET /revolution/js/revolution.addon.particles.min.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 16 Dec 2021 09:07:27 GMT
accept-ranges: bytes
etag: "80b1b6585cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 6581
X-Firefox-Spdy: h2
alkadamany.com/js/custom.js
64.20.48.9200 OK 8.9 kB URL HTTP/2 alkadamany.com/js/custom.js
IP 64.20.48.9:0
File type ASCII text, with very long lines (1438), with CRLF line terminators
Hash bd32eca05a140e681f1f54526a36bf5a
04584b50e720c723d7bfa8a03390004750b8cb5c
237549b522b1bd2e96f7f5b5580d31dac636e6e2d5fdb91642cc58cc437c30cf
Analyzer Verdict Alert fortinet Phishing
GET /js/custom.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Tue, 17 Jan 2023 06:08:08 GMT
accept-ranges: bytes
etag: "054d8113a2ad91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 8914
X-Firefox-Spdy: h2
alkadamany.com/css/plugins/bootstrap.min.css
64.20.48.9200 OK 20 kB URL HTTP/2 alkadamany.com/css/plugins/bootstrap.min.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (65324)
Hash 708df068699a3161ce41deae641db318
35c4852f9af7652f54d8a60b6ae7b3c5d53b481c
bba2c90eab91893b0e507d0efcb3dee5ab8772f322214793c8104661721b59c5
GET /css/plugins/bootstrap.min.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/plugins-css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:27 GMT
accept-ranges: bytes
etag: "802530115cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 20173
X-Firefox-Spdy: h2
alkadamany.com/css/plugins/mega_menu.css
64.20.48.9200 OK 6.0 kB URL HTTP/2 alkadamany.com/css/plugins/mega_menu.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (537), with CRLF line terminators
Hash fe0f21e692df6067681eed4e1b60554d
3fde00a62c83c25aa6aee2e5368a1d97355e5ce3
6d80a86b5841ab123353f51fc36bc3028b4b9f0aa2bb94b6f43f984b5fbd78af
GET /css/plugins/mega_menu.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/plugins-css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:29 GMT
accept-ranges: bytes
etag: "805261125cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 6003
X-Firefox-Spdy: h2
gensanmaid.com/images/akmafooter.png
64.20.48.30200 OK 4.5 kB URL HTTP/2 gensanmaid.com/images/akmafooter.png
IP 64.20.48.30:0
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash b122f391f68b2061f95b4aa16d6b8d1d
7ecc0ba340396a887391d0d7c7f418749aaff54a
ced72528fd2a6a12cbc2873fdd44190b4cee0cbe343273d36061dc45913395a0
GET /images/akmafooter.png HTTP/1.1
Host: gensanmaid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
last-modified: Thu, 16 Dec 2021 10:37:40 GMT
accept-ranges: bytes
etag: "b9cf70f368f2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 4529
X-Firefox-Spdy: h2
alkadamany.com/css/plugins/animate.css
64.20.48.9200 OK 4.0 kB URL HTTP/2 alkadamany.com/css/plugins/animate.css
IP 64.20.48.9:0
Hash 0ec6f4017e7b0527bbc90eafe2732e06
e37c773dc82932ab5ac94ca3ef83da8ba7b03aad
e128ed6ccdb4cd3a5748d731b3110d183f01d780b2f2cde7668358da57791e93
GET /css/plugins/animate.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/plugins-css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:26 GMT
accept-ranges: bytes
etag: "08f97105cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 4020
X-Firefox-Spdy: h2
alkadamany.com/css/plugins/font-awesome.min.css
64.20.48.9200 OK 6.6 kB URL HTTP/2 alkadamany.com/css/plugins/font-awesome.min.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (30855)
Hash fdc746691cea265935fc65c39ea146c6
ba1a8f57562567e72f6db6fb2b71ec7363fff127
2ffdc3142321b7ed96984844874669ce0db67e5669262ebf0d2cfce44bd6a121
GET /css/plugins/font-awesome.min.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/plugins-css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:28 GMT
accept-ranges: bytes
etag: "0bcc8115cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 6631
X-Firefox-Spdy: h2
alkadamany.com/css/plugins/bootstrap-datetimepicker.min.css
64.20.48.9200 OK 1.2 kB URL HTTP/2 alkadamany.com/css/plugins/bootstrap-datetimepicker.min.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (7814)
Hash b3b8556688490ac316eee2e55fbb2187
19a8c708702fe109b212037e4ddaf5a2c3e566cb
ae913c4cf2318ad051aefc1eced313c416305921173143adc19d3a1b1e586589
GET /css/plugins/bootstrap-datetimepicker.min.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/plugins-css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:26 GMT
accept-ranges: bytes
etag: "08f97105cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 1154
X-Firefox-Spdy: h2
alkadamany.com/css/plugins/dataTables.bootstrap4.min.css
64.20.48.9200 OK 873 B URL HTTP/2 alkadamany.com/css/plugins/dataTables.bootstrap4.min.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (5033)
Hash a5049f7178066fa8fc1be525aa7af23e
85407ae7495fc621e2b41a9918ad866f3afc30b1
496f7bac361500cb2614e06a615235bb3ad0bd15aaa0db1b78989ae0481f296d
GET /css/plugins/dataTables.bootstrap4.min.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/plugins-css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:28 GMT
accept-ranges: bytes
etag: "0bcc8115cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 873
X-Firefox-Spdy: h2
alkadamany.com/css/plugins/magnific-popup.css
64.20.48.9200 OK 1.6 kB URL HTTP/2 alkadamany.com/css/plugins/magnific-popup.css
IP 64.20.48.9:0
Hash b346f0d1b06c7ab1396c3b76381353b9
d9c411b998655313bd9f5a500faa7e5969ab0a32
00ec8c7b6d04a7fb58742cc5446d63d5ab5c054f864d3d55c7d93db8bc05706b
GET /css/plugins/magnific-popup.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/plugins-css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:29 GMT
accept-ranges: bytes
etag: "805261125cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 1568
X-Firefox-Spdy: h2
alkadamany.com/css/plugins/mediaelementplayer.css
64.20.48.9200 OK 3.4 kB URL HTTP/2 alkadamany.com/css/plugins/mediaelementplayer.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (1785), with CRLF line terminators
Hash a2d18faf803c5ef2fb6b8e2621999ffe
51c6dd97bb8b164eeeb948b1c3e68cf6e9ee4ad1
175a4d2b1e8cb240089bf9079d5afdb1e496dfc23a3902fad23377bb28c0c2d5
GET /css/plugins/mediaelementplayer.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/plugins-css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:29 GMT
accept-ranges: bytes
etag: "805261125cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 3365
X-Firefox-Spdy: h2
alkadamany.com/css/plugins/owl.carousel.min.css
64.20.48.9200 OK 829 B URL HTTP/2 alkadamany.com/css/plugins/owl.carousel.min.css
IP 64.20.48.9:0
Hash 22ebccacf611b0bc10a1f7ccd798efd1
8f47634e398a107d4a05e693b33dbaa6e049648e
abe77e39aef7f06da70c6ac9cd2509365543a65dbdb1a2f81c53b20165b135a6
GET /css/plugins/owl.carousel.min.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/plugins-css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:30 GMT
accept-ranges: bytes
etag: "0e9f9125cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 829
X-Firefox-Spdy: h2
alkadamany.com/css/plugins/slick-theme.css
64.20.48.9200 OK 1.1 kB URL HTTP/2 alkadamany.com/css/plugins/slick-theme.css
IP 64.20.48.9:0
Hash dac38e4fa93218bf072205ee2ef7b9f5
84877384b7b2daae9a6aba6a21aa147379cb02c2
f01af31acb1454ceb31945fbfe9c105e0590a8a80fa77a7c6a1306e39949d4e8
GET /css/plugins/slick-theme.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/plugins-css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:30 GMT
accept-ranges: bytes
etag: "0e9f9125cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 1130
X-Firefox-Spdy: h2
alkadamany.com/css/plugins/themify-icons.css
64.20.48.9200 OK 2.7 kB URL HTTP/2 alkadamany.com/css/plugins/themify-icons.css
IP 64.20.48.9:0
Hash 381eb483e809d24f3c3cd3636d4f5104
1593b29496d95d3e591c7691d883a5e2b65a6ec3
93192b42bc667d196fc3eb6b14ecfa65bba37085d4f41ffa477c7a08cf4ffa3b
GET /css/plugins/themify-icons.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/plugins-css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:30 GMT
accept-ranges: bytes
etag: "0e9f9125cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 2661
X-Firefox-Spdy: h2
alkadamany.com/css/plugins/fullcalendar.css
64.20.48.9200 OK 3.4 kB URL HTTP/2 alkadamany.com/css/plugins/fullcalendar.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (15973)
Hash 25109011653bf972c6c29741cd8f88d8
e8d09bdc99c147aa3a5d8110edc88d28ee74cb44
99c6bdc1eef7e833c5e54ec8be4db41d1cbc9997f0917e53ff7c457152cffd86
GET /css/plugins/fullcalendar.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/plugins-css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:28 GMT
accept-ranges: bytes
etag: "0bcc8115cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 3422
X-Firefox-Spdy: h2
masoniya.com/images/eagle.gif
64.20.48.30200 OK 11 kB URL HTTP/2 masoniya.com/images/eagle.gif
IP 64.20.48.30:0
File type GIF image data, version 89a, 144 x 162\012- data
Hash 893f4e284c0f6e5658d9d12e8148ca85
eee6bf12a8fd3e16461629b400e815c5c344d785
531796614b53fd16cf34dee620ccb8d03b547d5d1b4f15ad0124e89c0aac52e9
GET /images/eagle.gif HTTP/1.1
Host: masoniya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
last-modified: Fri, 17 Dec 2021 11:33:39 GMT
accept-ranges: bytes
etag: "2d96d4ef39f3d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Wed, 01 Feb 2023 08:25:20 GMT
content-length: 10831
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/accordion.css
64.20.48.9200 OK 895 B URL HTTP/2 alkadamany.com/css/shortcodes/accordion.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 2a185f4ff793f6ea149c4b80797460b0
648236b618da7780407043120dfe69e1ee61cbb8
17909cc0ff7136a7618d4d1dc3f265d923c6807aec9a463edcf815a249034b9c
GET /css/shortcodes/accordion.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:32 GMT
accept-ranges: bytes
etag: "0162b145cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 895
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/action-box.css
64.20.48.9200 OK 719 B URL HTTP/2 alkadamany.com/css/shortcodes/action-box.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 654f305cd054ce6e6247c7a2622ba795
c59e4edd534066e4ba0ec5f11ac9997dc30ec4bc
ceb982288b3161252af658bce3746384442af5bace283ea876d8e59519391c8e
GET /css/shortcodes/action-box.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:32 GMT
accept-ranges: bytes
etag: "267567145cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 719
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/blockquote.css
64.20.48.9200 OK 657 B URL HTTP/2 alkadamany.com/css/shortcodes/blockquote.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash a427ad8e2587d751c69bba93b7cd7faa
7168d2d4b8018c131ebd7959dfd66fc2309a837c
9689525b773b301a73c49c2cd6ab153706bb605aafab1b63080849e0b7c40ea7
GET /css/shortcodes/blockquote.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:32 GMT
accept-ranges: bytes
etag: "afc4be145cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 657
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/bootstrap-typography.css
64.20.48.9200 OK 2.1 kB URL HTTP/2 alkadamany.com/css/shortcodes/bootstrap-typography.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (934), with CRLF line terminators
Hash bcc08f9c04e31f30407198493eeddbfb
c8394ae0d3a2a8a377b390c0e754d0fe5175e9f0
361fda8379029bcc628b5d08bccdb6323be6f9ce943a44aab7ca79ca08276cb6
GET /css/shortcodes/bootstrap-typography.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:33 GMT
accept-ranges: bytes
etag: "80acc3145cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 2109
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.1/css/v4-shims.css
172.64.133.15200 OK 5.2 kB URL HTTP/2 use.fontawesome.com/releases/v5.15.1/css/v4-shims.css
IP 172.64.133.15:0
File type ASCII text, with very long lines (26516)
Hash 5b8f10389a046f3de8a100fde93b53f2
c22c35da463727f0a9fb0498b613fa1d0f3be2a2
7a146420e8daea93c2a7ce5ddabe4a8fd7ffd4dbbc39c76e2e9b796099ebd038
GET /releases/v5.15.1/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:19 GMT
content-type: text/css
x-amz-id-2: yTnebNE84iryAVsRPwdSIBvf1u3IBLImQFHD+wnTQNSvTg1vN86JseYPpV8fKhfNtZuCp/ujBlc=
x-amz-request-id: Z81P9Y9DYVH0T85T
last-modified: Wed, 30 Jun 2021 15:40:30 GMT
etag: W/"0a121a1f354de051316c4fff1ebd1f4d"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 386029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zmm40lQss6iAksSDbkiPGxxjdI8ghMxIwvyFcQXKlslSdXqDywRiku9gCnxfrTlXl4QGrghLOVkZPVHKxhpjnOMp%2F826OITdlK9USdlRezORo8o3a2c7p%2FzBoKehMDUQ%2BPTRykeo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79294bb9cf9876af-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/clients.css
64.20.48.9200 OK 632 B URL HTTP/2 alkadamany.com/css/shortcodes/clients.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (381), with CRLF line terminators
Hash a842356ffd1c58511a7ae4d2f6354f38
773ade195de8e6f7809480c93f6b0aa587608cd3
86e2b67c0a175244917b94df2e3c63dcd917b1fca1c4365ef3c2c06f788ade6c
GET /css/shortcodes/clients.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:33 GMT
accept-ranges: bytes
etag: "6b4f29155cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 632
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/contact-form.css
64.20.48.9200 OK 994 B URL HTTP/2 alkadamany.com/css/shortcodes/contact-form.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 7f69328a7ee65e0feac527c6930625c9
3b240b6abae21af3de10b6b1deace44e81889346
6678fa24d595354a9f6aae19c7890b7e62366e2c1b705eafdab83ac37221142b
GET /css/shortcodes/contact-form.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:34 GMT
accept-ranges: bytes
etag: "0435c155cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 994
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/countdown.css
64.20.48.9200 OK 675 B URL HTTP/2 alkadamany.com/css/shortcodes/countdown.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 5ca5cbb846d9120567a7a916159004bb
d69cc43e3c5d8f240d9afd488f103eda6ec6f636
8b2d6aa9541c8f4b467d48b2742e39eeeb170f300c0de5ebb143f52d014ef8cd
GET /css/shortcodes/countdown.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:34 GMT
accept-ranges: bytes
etag: "614f79155cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 675
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/counter.css
64.20.48.9200 OK 712 B URL HTTP/2 alkadamany.com/css/shortcodes/counter.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 88ff5b0e7d79504d0825894845ed7e26
229e279fea726102499bd6c8a7c2f6c818300072
7fbf7a0f08158d92ee44de6d55a7ddba60af84bca9bf039e12f446d84e9a7a1b
GET /css/shortcodes/counter.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:34 GMT
accept-ranges: bytes
etag: "81cdb8155cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 712
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/divider.css
64.20.48.9200 OK 667 B URL HTTP/2 alkadamany.com/css/shortcodes/divider.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash f9d559587f5a3682239336476c0d4272
dc960d2544c8f436b9598690350f012cbeaafdd2
dc5a76b35f9d4f61054cf1fc4adfa99ade105e691bcf81747eb6ed39b376dc7b
GET /css/shortcodes/divider.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:34 GMT
accept-ranges: bytes
etag: "914fcd155cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 667
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/dropcap.css
64.20.48.9200 OK 462 B URL HTTP/2 alkadamany.com/css/shortcodes/dropcap.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 7175f9a073b36fd7ea76f6860348293d
534ecc91bc7efc97b20b25daa3e0361a23ce78cd
601fd2bef70cfdd85f1c3f61b6bf559102bc5353f158ade4a34f32306bbf49f3
GET /css/shortcodes/dropcap.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:35 GMT
accept-ranges: bytes
etag: "d24cb165cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 462
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/feature-text.css
64.20.48.9200 OK 1.2 kB URL HTTP/2 alkadamany.com/css/shortcodes/feature-text.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (377), with CRLF line terminators
Hash fbdd278fb7c043706bf4cdc658270ebf
6b2d8e6b297f0f8e1422be324a96be3a0b37c586
6dd891e87a148f56bb5dc0239cb614e2d3a5b5785f89a6e80bfd6f60ecf71735
GET /css/shortcodes/feature-text.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:35 GMT
accept-ranges: bytes
etag: "80d9f4155cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 1178
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/list-style.css
64.20.48.9200 OK 586 B URL HTTP/2 alkadamany.com/css/shortcodes/list-style.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash b3862ac3a3b148d7f5c30b27177f0281
18a8715a23f9e80be45ca2f27fc57b9729a94895
591d8661b0c920ea5eedde9b17cbad88584740349a7dd80ff23a54969f825784
GET /css/shortcodes/list-style.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:35 GMT
accept-ranges: bytes
etag: "749c68165cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 586
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/nice-select.css
64.20.48.9200 OK 1.0 kB URL HTTP/2 alkadamany.com/css/shortcodes/nice-select.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (692), with CRLF line terminators
Hash 1100702ef8636a4955046f303a6fa2c6
7a3b89bbe3998fe6101ccbde1ed455d702676527
f1e32aad0af0d890e31f75e7853f11e232f680ea0255e15d85a74e38e8cc131d
GET /css/shortcodes/nice-select.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:35 GMT
accept-ranges: bytes
etag: "80d9f4155cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 1026
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/owl-carousel.css
64.20.48.9200 OK 743 B URL HTTP/2 alkadamany.com/css/shortcodes/owl-carousel.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (352), with CRLF line terminators
Hash e48a0e28302683c03546edb8db4fefeb
abcc7b2e081364e3ff0c81786bbfe67932120745
3fd1f10040abf49fc06172589c22cf7f247e1372cb83792392ee47c31bc613b5
GET /css/shortcodes/owl-carousel.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:36 GMT
accept-ranges: bytes
etag: "0708d165cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 743
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/page-title.css
64.20.48.9200 OK 763 B URL HTTP/2 alkadamany.com/css/shortcodes/page-title.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 6507c92b1ac95d44a7de83956c530d7a
f7082d84265d2a621f68c584ed1bb4fa2009d5b4
eba8efdbebf95b284351936044a27a8f4a50365810ed646671ae45f359a462cb
GET /css/shortcodes/page-title.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:36 GMT
accept-ranges: bytes
etag: "0708d165cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 763
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/pie-chart.css
64.20.48.9200 OK 393 B URL HTTP/2 alkadamany.com/css/shortcodes/pie-chart.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash c0b5ced1b63ac3f3c4be93d4d51abe91
46f383befdf60cd652476963823d825538c285b8
5405842c533cd1956012d44977b03de3e1b22b90d50e76ad630eaa0ec6b65536
GET /css/shortcodes/pie-chart.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:36 GMT
accept-ranges: bytes
etag: "84871a175cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 393
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/pricing.css
64.20.48.9200 OK 1.3 kB URL HTTP/2 alkadamany.com/css/shortcodes/pricing.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 763240a6a6621420390a5447c0df7708
c301faf82c67f1f6c60adffc41d8a6e6e3609ea4
7555aca432578a852b9d4b10044c90e1c41ab6299f9ad09e44a66442c0a1523a
GET /css/shortcodes/pricing.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:37 GMT
accept-ranges: bytes
etag: "80626175cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 1253
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/progress-bar.css
64.20.48.9200 OK 837 B URL HTTP/2 alkadamany.com/css/shortcodes/progress-bar.css
IP 64.20.48.9:0
File type assembler source, ASCII text, with CRLF line terminators
Hash 4bbf95e14740e662a69aef533b8f06c5
15814d6535a92d19f8f9f6923cc1f653de8820db
8121495e0d8715f5e8b9e71e89dfbb91d60cb9667e2726a3d613886c501e2e09
GET /css/shortcodes/progress-bar.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:37 GMT
accept-ranges: bytes
etag: "d4f96d175cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 837
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/section-title.css
64.20.48.9200 OK 771 B URL HTTP/2 alkadamany.com/css/shortcodes/section-title.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 0edf8150dfed739ca8b1554e02bcdca6
0e60ee0cfa10b8c03ae5f66be5d32cab157ba466
66435b7d8b38353e9901ccb6a2635a5fdd008d77136f012612c2e94b722345f1
GET /css/shortcodes/section-title.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:38 GMT
accept-ranges: bytes
etag: "09dbe175cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 771
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/social-icons.css
64.20.48.9200 OK 1.7 kB URL HTTP/2 alkadamany.com/css/shortcodes/social-icons.css
IP 64.20.48.9:0
File type assembler source, ASCII text, with very long lines (307), with CRLF line terminators
Hash 072750af7a6655ca1818436d1bc78563
08a2903bf766bceccd4e858bde9bec221a534001
2d465f83addc7729825168fb71ef38c0f01ee849af31a4aad27e9bdc5b1d5115
GET /css/shortcodes/social-icons.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:38 GMT
accept-ranges: bytes
etag: "09dbe175cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 1667
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/tabs.css
64.20.48.9200 OK 902 B URL HTTP/2 alkadamany.com/css/shortcodes/tabs.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 5ccc7af848128b38b8ac6ca0a6138ffe
ffc7086e9815c7f6550315b3d25835d466134939
752038fe3bf32a6b12ef466c1ca321e68d0584e5f613235b107dff5050181ea8
GET /css/shortcodes/tabs.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:39 GMT
accept-ranges: bytes
etag: "803357185cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 902
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/team.css
64.20.48.9200 OK 1.3 kB URL HTTP/2 alkadamany.com/css/shortcodes/team.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (664), with CRLF line terminators
Hash 9d3d1ed939aae04829926d085f228667
dac5ce25b2b8cb1dca7baf18b7b15f9ad7934f3d
28811d97d9213e526e5a1da42acaa3a8758cc91719e3be567ca6d5c1496698e0
GET /css/shortcodes/team.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:39 GMT
accept-ranges: bytes
etag: "803357185cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 1264
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/testimonial.css
64.20.48.9200 OK 819 B URL HTTP/2 alkadamany.com/css/shortcodes/testimonial.css
IP 64.20.48.9:0
File type assembler source, ASCII text, with CRLF line terminators
Hash 47e1a54141105d18022fbd1c06e74b25
9042afcedf3ad7e810161d46bedd80525bc3d5db
560d3c1a09ca77b06f7aecb68eae4064fc7637c44651a80ea19c8f0bcffa333d
GET /css/shortcodes/testimonial.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:39 GMT
accept-ranges: bytes
etag: "803357185cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 819
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/side-panel.css
64.20.48.9200 OK 2.4 kB URL HTTP/2 alkadamany.com/css/shortcodes/side-panel.css
IP 64.20.48.9:0
File type ASCII text, with very long lines (913)
Hash bea5ba5f5c4de87612e7007a7aaf3d1a
2e436993e261f11c945981658c66b640142f085f
16587e475cbd12aef77d8014204466f7a9f95d8513eba8a912281cced931c40f
GET /css/shortcodes/side-panel.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:38 GMT
accept-ranges: bytes
etag: "09dbe175cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 2447
X-Firefox-Spdy: h2
alkadamany.com/css/shortcodes/onload-modal.css
64.20.48.9200 OK 987 B URL HTTP/2 alkadamany.com/css/shortcodes/onload-modal.css
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 50bedfe093f09fb1bfafcd43c0af770e
04b14d547e80c1f6e258dbfd7da4ed6ef3f5c2e8
47e77b4fb7864e6efbe40322a8f8aa5ea9e95874f98efa6823c0e62d8496031b
GET /css/shortcodes/onload-modal.css HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/shortcodes/shortcodes.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:05:36 GMT
accept-ranges: bytes
etag: "1eeebf165cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:19 GMT
content-length: 987
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 422555f3d65895a2cc669a80874c8c3f
3b4b47a66a4e7faff233927455e3c6882b946b78
b11de21783ba362903793472c124699f92ab2f595e7f724666158e040b69badd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5365
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:20 GMT
Last-Modified: Wed, 01 Feb 2023 06:55:55 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-font-face.min.css?token=1bf9c843e5
172.64.169.22200 OK 8.5 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-font-face.min.css?token=1bf9c843e5
IP 172.64.169.22:0
File type ASCII text, with very long lines (1560)
Hash 5f092b9f561cca48b2fec7be59902d5d
817b32d5ed6e3bbe4bab2f637153e3f12780bec3
956f7505937d74c1663a8dcdd3d2c8bf8de30c101dd1a6ae63eaaff8759a6d7a
GET /releases/v6.2.1/css/free-v4-font-face.min.css?token=1bf9c843e5 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alkadamany.com/
Origin: https://alkadamany.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:20 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:07 GMT
etag: W/"075b2106ba08d32bc88fff3724503b1e"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f25261ba016233f0454d8943ca7e6eda.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: nemDdlgWLvxk2RkGDuXUQ0cjnFvK2c_yAryfXldOZwfHHq9sjb7dMg==
age: 97287
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EnCXEK3oG9iXiMFqqm6A%2F60nMx%2Fw0pVvgxLAmrt%2FVaLDe19FKwOkHs7IFNIKZ7Fr49AgKaPc8tQDooUj1H6x9cLdbaCa5%2FjiWkh0LbsuIaWTHR3ILOgE2MBnWcWUpy5FpMFHYeIMjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79294bbc3ce5889e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a327176edf538c07784f9b0da660c22d
4a56cfcac291dfe1cc177bd3eff976f106731834
aae92a95f747be0bca6982ed7e3e58af8ac74ff69c799b55046ab38474e149dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
216.58.207.227200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://alkadamany.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 14:34:21 GMT
expires: Fri, 26 Jan 2024 14:34:21 GMT
cache-control: public, max-age=31536000
age: 496259
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://alkadamany.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 436631
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
216.58.207.227200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://alkadamany.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:20:24 GMT
expires: Sun, 28 Jan 2024 10:20:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 338696
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
alkadamany.com/config/counter/mycounter.asp
64.20.48.9200 OK 872 B URL HTTP/2 alkadamany.com/config/counter/mycounter.asp
IP 64.20.48.9:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash e6771abb5cef49bc31b989343115ef4f
89549f2b17c9c242c0fcccf078d6e3d39a60193d
68df9647961091301ccfdffecb705a793aafe8ce243c810e4070019e29a67a7a
Analyzer Verdict Alert fortinet Phishing
GET /config/counter/mycounter.asp HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
content-type: text/html
content-encoding: br
vary: Accept-Encoding
server: Microsoft-IIS/10.0
set-cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; secure; path=/
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:20 GMT
content-length: 872
X-Firefox-Spdy: h2
kit.fontawesome.com/1bf9c843e5.js
104.18.22.52200 OK 12 kB URL HTTP/2 kit.fontawesome.com/1bf9c843e5.js
IP 104.18.22.52:0
Hash 891bae9fdac16eea1b4d0333b17346fd
a5db9aee2c9aecd58765514147f8e113d9b5989a
814a55385cf065915d20a09e3dab22a3bea95dff90b0b3475d89e90f5320dfb9
GET /1bf9c843e5.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alkadamany.com
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:19 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fz-fvFok4NFAymsBnc8C
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 79294bb9d8c20b39-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
alkadamany.com/images/skylimit.jpg
64.20.48.9200 OK 667 kB URL HTTP/2 alkadamany.com/images/skylimit.jpg
IP 64.20.48.9:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=2], baseline, precision 8, 1920x1000, components 3\012- data
Size 667 kB (666816 bytes)
Hash f1c677e7d8e5c6de0c7148d1b7c42e70
c7a2aa7709362d06e523343105fab14c7c944f04
96861a24139fcc3ccb7171c395c42aa9e84e0c88048210a8f4647d64adcaf41b
GET /images/skylimit.jpg HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Thu, 16 Dec 2021 09:04:18 GMT
accept-ranges: bytes
etag: "cbec1de85bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:20 GMT
content-length: 666816
X-Firefox-Spdy: h2
alkadamany.com/revolution/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
64.20.48.9200 OK 77 kB URL HTTP/2 alkadamany.com/revolution/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 64.20.48.9:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /revolution/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://alkadamany.com/revolution/fonts/font-awesome/css/font-awesome.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/x-woff2
last-modified: Thu, 16 Dec 2021 09:08:45 GMT
accept-ranges: bytes
etag: "d5cf47875cf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:20 GMT
content-length: 77160
X-Firefox-Spdy: h2
alkadamany.com/fonts/themify.woff?-fvbane
64.20.48.9200 OK 56 kB URL HTTP/2 alkadamany.com/fonts/themify.woff?-fvbane
IP 64.20.48.9:0
File type Web Open Font Format, CFF, length 56108, version 1.0\012- data
Hash a1ecc3b826d01251edddf29c3e4e1e97
9394f35bd2addd24666b79bfc36d4f9d247cb01d
0db5c5a1475eb7a3e5028983ea1e642d1b2c00faff6a250a37502b0f3832a4a7
Analyzer Verdict Alert fortinet Phishing
GET /fonts/themify.woff?-fvbane HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://alkadamany.com/css/plugins/themify-icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/x-woff
last-modified: Thu, 16 Dec 2021 09:03:31 GMT
accept-ranges: bytes
etag: "b55c27cc5bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:20 GMT
content-length: 56108
X-Firefox-Spdy: h2
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d1983.5785077274152!2d125.13878248521603!3d6.109551073650839!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xff2e04508440cbf5!2zNsKwMDYnMzMuOSJOIDEyNcKwMDgnMjMuNSJF!5e0!3m2!1sen!2sph!4v1654327361656!5m2!1sen!2sph
142.250.74.164200 OK 757 B URL HTTP/2 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d1983.5785077274152!2d125.13878248521603!3d6.109551073650839!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xff2e04508440cbf5!2zNsKwMDYnMzMuOSJOIDEyNcKwMDgnMjMuNSJF!5e0!3m2!1sen!2sph!4v1654327361656!5m2!1sen!2sph
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1020)
Hash 8677ea1afd7368d700415ee7b8b8a775
d3db6d98f10e383e2da9ebf357f972bfb94e6fc2
f2ab45660d0d647db4634ce713aa28303acafea1bfa4a2ef0cac5768a637fbee
GET /maps/embed?pb=!1m18!1m12!1m3!1d1983.5785077274152!2d125.13878248521603!3d6.109551073650839!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xff2e04508440cbf5!2zNsKwMDYnMzMuOSJOIDEyNcKwMDgnMjMuNSJF!5e0!3m2!1sen!2sph!4v1654327361656!5m2!1sen!2sph HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 01 Jan 1990 00:00:00 GMT
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-C4-_UGqlMeULkzdRDNn6ug' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
cache-control: no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 01 Feb 2023 08:25:20 GMT
server: scaffolding on HTTPServer2
content-length: 757
x-xss-protection: 0
x-content-type-options: nosniff
server-timing: gfet4t7; dur=182
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e0bc98d03057dabba1334b62bea0975b
b358a8123908fe4b1c94a1273cac45c4e23b212e
10ef320ba825ca0e17d039b66fd2f321f4d2c687a8734d226fa25e9b45e109d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alkadamany.com/config/counter/1.gif
64.20.48.9200 OK 100 B URL HTTP/2 alkadamany.com/config/counter/1.gif
IP 64.20.48.9:0
File type GIF image data, version 89a, 15 x 20\012- data
Hash 2fade3fa0c7944c1de0c5b3e864d67a4
ef0039c4a13135c0ef0fcf0ede5231c7e5e2ebd1
d49ce6ef0e42be110e5229569ad719f17cf1d0573f4e737bb83a0608a2240e53
GET /config/counter/1.gif HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/config/counter/mycounter.asp
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
last-modified: Thu, 16 Dec 2021 09:05:19 GMT
accept-ranges: bytes
etag: "eacb6bc5cf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:20 GMT
content-length: 100
X-Firefox-Spdy: h2
alkadamany.com/config/counter/7.gif
64.20.48.9200 OK 105 B URL HTTP/2 alkadamany.com/config/counter/7.gif
IP 64.20.48.9:0
File type GIF image data, version 89a, 15 x 20\012- data
Hash 10b2552419961306c657cee2d689a759
9703532750b4c94fd0555d2d7787bcc65fc63c6b
e8507afb797c86da8c20f02747e81ffc8ed80b6b48470364862f106f45ae0103
GET /config/counter/7.gif HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/config/counter/mycounter.asp
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
last-modified: Thu, 16 Dec 2021 09:05:20 GMT
accept-ranges: bytes
etag: "a62266d5cf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:20 GMT
content-length: 105
X-Firefox-Spdy: h2
alkadamany.com/config/counter/6.gif
64.20.48.9200 OK 128 B URL HTTP/2 alkadamany.com/config/counter/6.gif
IP 64.20.48.9:0
File type GIF image data, version 89a, 15 x 20\012- data
Hash 93c2614fa67abae42145e1d3fe26693d
229447e98334ca78ad50d2c62e9f4816dbae637b
b35282ec020f8a0ac64ad49f8916b26d474adb38a0920543a06cde7b1298f49a
GET /config/counter/6.gif HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/config/counter/mycounter.asp
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
last-modified: Thu, 16 Dec 2021 09:05:20 GMT
accept-ranges: bytes
etag: "8fad50d5cf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:20 GMT
content-length: 128
X-Firefox-Spdy: h2
alkadamany.com/config/counter/8.gif
64.20.48.9200 OK 125 B URL HTTP/2 alkadamany.com/config/counter/8.gif
IP 64.20.48.9:0
File type GIF image data, version 89a, 15 x 20\012- data
Hash 5d682fff313173e962233990f5cbd441
8fb8c47e975883d8fb21d8cc815c7d3b43aac4af
8ade5cb2dcfba6ce25dabe3994def619d6d59cbd9bf71ce1e2874e6ad3040017
GET /config/counter/8.gif HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/config/counter/mycounter.asp
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
last-modified: Thu, 16 Dec 2021 09:05:21 GMT
accept-ranges: bytes
etag: "8bbda1d5cf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:20 GMT
content-length: 125
X-Firefox-Spdy: h2
alkadamany.com/config/counter/0.gif
64.20.48.9200 OK 125 B URL HTTP/2 alkadamany.com/config/counter/0.gif
IP 64.20.48.9:0
File type GIF image data, version 89a, 15 x 20\012- data
Hash 38c69469883f18e72e00e49f7689d590
86bb8abeeda5e41f7023c16e09c5d140352044ca
871f3f68662a4816b1a2732c14cb046a536be9d7cfb933279689ff4a2bf9faa0
GET /config/counter/0.gif HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/config/counter/mycounter.asp
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
last-modified: Thu, 16 Dec 2021 09:05:18 GMT
accept-ranges: bytes
etag: "545656c5cf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:20 GMT
content-length: 125
X-Firefox-Spdy: h2
alkadamany.com/config/counter/3.gif
64.20.48.9200 OK 119 B URL HTTP/2 alkadamany.com/config/counter/3.gif
IP 64.20.48.9:0
File type GIF image data, version 89a, 15 x 20\012- data
Hash 9d57c087bf70c4079300b0bc0cf59800
78e0429265c8e0133ce3a0f587fc85eb0072f008
20ca0a6189e3b157aec6baf63054273a3e28f176d89816a2d0cf871f5eac3b6f
GET /config/counter/3.gif HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/config/counter/mycounter.asp
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
last-modified: Thu, 16 Dec 2021 09:05:19 GMT
accept-ranges: bytes
etag: "c3ebfc5cf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:20 GMT
content-length: 119
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash da34247886a819b5c06b9cea278ff119
11905928680c2bf412b54e7150b4b6e6e86c9649
3b5c59349e05faee78cfa196e82e553b326a9462333a2fbb2f1d6c5771a6281d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 08:25:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 22:05:31 GMT
Expires: Tue, 07 Feb 2023 22:05:30 GMT
Etag: "11905928680c2bf412b54e7150b4b6e6e86c9649"
Cache-Control: max-age=567008,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79294bc23a37b515-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2538
Expires: Wed, 01 Feb 2023 09:07:39 GMT
Date: Wed, 01 Feb 2023 08:25:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2538
Expires: Wed, 01 Feb 2023 09:07:39 GMT
Date: Wed, 01 Feb 2023 08:25:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2538
Expires: Wed, 01 Feb 2023 09:07:39 GMT
Date: Wed, 01 Feb 2023 08:25:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2538
Expires: Wed, 01 Feb 2023 09:07:39 GMT
Date: Wed, 01 Feb 2023 08:25:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec7e808a5e82552c46c3417a5b32b836
f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd
f16d982224dfeb0753eaf9d4eb87d80fd1111f682fd8fa36f3177aad5bf926a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6819
x-amzn-requestid: a0368695-4182-40bd-9a28-c50ae783a7a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaRHGnoAMF0Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-624285eb16110b8c2360dec5;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: daAf58GNG6Oy-ov_8TUeXnTcvZyW5eL_qwWz7dapr2Sy_5XSiS-3Mw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:42:56 GMT
age: 38545
etag: "f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XtqfgDxskGIUmZdRj2nrGDpo9KvECk528eLZV29xNx3h7CLOu49mnQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:42:19 GMT
age: 38582
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 21323
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
api.ipify.org/?format=jsonp&callback=getIP
173.231.16.76200 OK 29 B URL HTTP/2 api.ipify.org/?format=jsonp&callback=getIP
IP 173.231.16.76:0
File type ASCII text, with no line terminators
Hash 90a39389063c7c5716745c3b3bb4fba1
a0903c9a7e90fa3c6ddb04d0ce36abbd4c7a004f
eaa6745d9d0a7698235cd6af53aad1551d975506c8405d8303282fb6d2f7ab69
GET /?format=jsonp&callback=getIP HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: *
content-type: application/javascript
date: Wed, 01 Feb 2023 08:25:21 GMT
vary: Origin
content-length: 29
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a7557cc-bf07-438f-8710-ba1b44e30270.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a7557cc-bf07-438f-8710-ba1b44e30270.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fec00239dceb510f051645ae93dac5f2
6524837e65b070341f9c8f4589492876ae293f17
d00272557742c57d084ab7e46b9b1722b28b869ae9c63e2169e7124e5107c009
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a7557cc-bf07-438f-8710-ba1b44e30270.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5583
x-amzn-requestid: f37b4455-c9fb-46e4-a287-f40c1138a77a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fflQWGqCIAMFvjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61c02-01d34b0d3a9a0101555081f5;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:10:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: B6h-UbN1ZGshwcCuhhT82vu8ApQHq2E-5IybV31s1Enq2jXM_dd42A==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 06:33:50 GMT
age: 6691
etag: "6524837e65b070341f9c8f4589492876ae293f17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c0a4094-de1e-41f3-9e75-80a725d23095.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c0a4094-de1e-41f3-9e75-80a725d23095.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c4ef3610dcd19f46f763e313d46e9df6
3cdf187d3923ec5084192adf2b0f73f8c9534a56
e67f0cf265912e3bebfa296cf4c71be24e619efb396d74432a8ff912bf6998ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c0a4094-de1e-41f3-9e75-80a725d23095.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9841
x-amzn-requestid: 26093f6c-900b-425d-827c-4d70a2fa225a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGMFHOeIAMF-4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e6-29d957942dda79d0723d9e8f;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Chs87A3OGCMyp250Sz8F-sPoiOmDmlj8kUBrSrUtuEbYeD6we39KQg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:26:24 GMT
age: 3537
etag: "3cdf187d3923ec5084192adf2b0f73f8c9534a56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pU_436f27nMZKPxZZWqZekERHFTvcG5NT5p_CYEXHRPtIWjDtSA-uA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:27:41 GMT
age: 3460
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
maps.gstatic.com/maps-api-v3/embed/js/51/7/init_embed.js
142.250.74.99200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/7/init_embed.js
IP 142.250.74.99:0
File type ASCII text, with very long lines (2599)
Hash fd4867728783671f13b38d1f073e7be9
ff5ba304ce5b2838e4b49b6cff833dede37e1098
52a398663110b5dc50e72094c287b049ec5ed33a2b639418e4e1a9c3d313b82c
GET /maps-api-v3/embed/js/51/7/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69373
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 18:33:57 GMT
expires: Thu, 25 Jan 2024 18:33:57 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 21:48:16 GMT
content-type: text/javascript
age: 568284
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
secure.trust-provider.com/trustlogo/javascript/trustlogo.js
91.199.212.148200 OK 14 kB URL HTTP/2 secure.trust-provider.com/trustlogo/javascript/trustlogo.js
IP 91.199.212.148:0
ASN #48447 Sectigo Limited
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (14088)
Hash e46d5528af29f4224a927291166d2ddc
b8bb9695e47f7370db2dea4884e0efcbd86a4dca
1ba30b444f0489b7da1ca80092c7879835ba96404751aabbdb2647de4261fa05
GET /trustlogo/javascript/trustlogo.js HTTP/1.1
Host: secure.trust-provider.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:21 GMT
content-type: application/javascript
content-length: 14089
last-modified: Thu, 26 Jan 2023 09:48:09 GMT
etag: "63d24c59-3709"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 422555f3d65895a2cc669a80874c8c3f
3b4b47a66a4e7faff233927455e3c6882b946b78
b11de21783ba362903793472c124699f92ab2f595e7f724666158e040b69badd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5366
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:21 GMT
Last-Modified: Wed, 01 Feb 2023 06:55:55 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
secure.trust-provider.com/trustlogo/images/popup/seal_bg.gif
91.199.212.148200 OK 4.9 kB URL HTTP/2 secure.trust-provider.com/trustlogo/images/popup/seal_bg.gif
IP 91.199.212.148:0
ASN #48447 Sectigo Limited
File type GIF image data, version 89a, 204 x 80\012- data
Hash 3792ee5fc810dbbbc0497d925d9800d9
80b1d6d9fd6db6bd42223d8097fb67f372ab08ef
6a8d73fd166e03d8e1c024ac60d01d9110c4ac56b45f5bb402739e4095d4a95b
GET /trustlogo/images/popup/seal_bg.gif HTTP/1.1
Host: secure.trust-provider.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:21 GMT
content-type: image/gif
content-length: 4851
last-modified: Thu, 26 Jan 2023 09:48:10 GMT
etag: "63d24c5a-12f3"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
alkadamany.com/images/ssl-seal1.png
64.20.48.9200 OK 7.9 kB URL HTTP/2 alkadamany.com/images/ssl-seal1.png
IP 64.20.48.9:0
File type PNG image data, 124 x 48, 8-bit/color RGB, interlaced\012- data
Hash 25657034be17f40df1e6cb83b518890a
b16cf3767ac523e9bb08cbf9f75b7a2489db909f
12bd27e1fe48a6140ad4344184942d1cc7bc0b8179795c096cf002d1706483c5
GET /images/ssl-seal1.png HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Thu, 16 Dec 2021 09:04:17 GMT
accept-ranges: bytes
etag: "16af9ae75bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:21 GMT
content-length: 7862
X-Firefox-Spdy: h2
secure.trust-provider.com/trustlogo/images/popup/warranty_level.gif
91.199.212.148200 OK 713 B URL HTTP/2 secure.trust-provider.com/trustlogo/images/popup/warranty_level.gif
IP 91.199.212.148:0
ASN #48447 Sectigo Limited
File type GIF image data, version 89a, 77 x 24\012- data
Hash 642b0ef0750283724b9210755e693b78
bc9c18f7d529d166a6019e085a8d6b7fc649c5c7
e45902c0c28d8a669a37a61914c1eb760b093f7cc2d41693d52f82327329218d
GET /trustlogo/images/popup/warranty_level.gif HTTP/1.1
Host: secure.trust-provider.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:21 GMT
content-type: image/gif
content-length: 713
last-modified: Thu, 26 Jan 2023 09:49:05 GMT
etag: "63d24c91-2c9"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
alkadamany.com/images/mylogo50.png
64.20.48.9200 OK 7.6 kB URL HTTP/2 alkadamany.com/images/mylogo50.png
IP 64.20.48.9:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash b97bc2a86e1750ef43cb9059dfe868a1
688313c5c55eb16184dadfdd320aaf6a90935514
484fb1fb9aab2d87d656f10e66db7ecc6cbf5448f4721ebc2ab4413a535d1356
GET /images/mylogo50.png HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/css/typography.css
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Thu, 16 Dec 2021 09:04:08 GMT
accept-ranges: bytes
etag: "ffd797e25bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:21 GMT
content-length: 7596
X-Firefox-Spdy: h2
alkadamany.com/green/ajax.php?callback=jQuery34106647624950595151_1675239941943&action=lepopup-remote-init&inline-slugs=&preview=off&hostname=alkadamany.com&_=1675239941944
64.20.48.9200 OK 889 B URL HTTP/2 alkadamany.com/green/ajax.php?callback=jQuery34106647624950595151_1675239941943&action=lepopup-remote-init&inline-slugs=&preview=off&hostname=alkadamany.com&_=1675239941944
IP 64.20.48.9:0
File type ASCII text, with very long lines (2626), with no line terminators
Hash c0a6d7a24c563f4dc76c05cfbe0f6dd4
56dd0fe70130508cb537c6e85678cc233e1cf335
a0a62cd6bb3b96f53fc1d2e63fd1a3bbc68f2f2a2bad95279657d12b3aeb3c0f
GET /green/ajax.php?callback=jQuery34106647624950595151_1675239941943&action=lepopup-remote-init&inline-slugs=&preview=off&hostname=alkadamany.com&_=1675239941944 HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/javascript;charset=UTF-8
content-encoding: br
expires: Thu, 19 Nov 1981 08:52:00 GMT
vary: Accept-Encoding
server: Microsoft-IIS/10.0
set-cookie: PHPSESSID=j7tpfladg928lgmv6u26gq7f77; path=/; secure; SameSite=None
access-control-allow-origin: *
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:21 GMT
content-length: 889
X-Firefox-Spdy: h2
alkadamany.com/fonts/fontawesome-webfont.woff2?v=4.7.0
64.20.48.9200 OK 77 kB URL HTTP/2 alkadamany.com/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 64.20.48.9:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://alkadamany.com/css/plugins/font-awesome.min.css
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/x-woff2
last-modified: Thu, 16 Dec 2021 09:03:22 GMT
accept-ranges: bytes
etag: "70a71ac75bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:21 GMT
content-length: 77160
X-Firefox-Spdy: h2
tawk.to/chat/5722b6c35c0d38673819ee04/default
172.67.38.66200 OK 1.1 kB URL HTTP/2 tawk.to/chat/5722b6c35c0d38673819ee04/default
IP 172.67.38.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0a37409ff41c9958af9925ab1fce049e
2793961db6c758528a4fd907570c55a50644e333
3639f29a5906e0575be850bc8d14126785293b67c21b567b4a7952311824a949
GET /chat/5722b6c35c0d38673819ee04/default HTTP/1.1
Host: tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:21 GMT
content-type: text/html
x-served-by: candice-servers-c7w5
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79294bc459e9b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 717cf52cfdc9e790ae36f7a4e1d19d16
03b71415f75565d67d059f1046fa363be72245e5
f76f4406c8796751e4b51ecff884ff3b3ea2bff4c60b6a8941d68b31951b4541
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2575
Cache-Control: max-age=156620
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:22 GMT
Etag: "63d9d8af-1d7"
Expires: Fri, 03 Feb 2023 03:55:42 GMT
Last-Modified: Wed, 01 Feb 2023 03:12:47 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
embed.tawk.to/5722b6c35c0d38673819ee04/default
104.22.25.131200 OK 2.3 kB URL HTTP/2 embed.tawk.to/5722b6c35c0d38673819ee04/default
IP 104.22.25.131:0
Hash 1fe41b432ecc96cb30c480f120dd4ac0
0d351eb91b6135463092c2747c9c354ea4501c46
34a2b6a877db6d580538e1c2a34e7a56a7d507e1920f88151756a79f4352607c
GET /5722b6c35c0d38673819ee04/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alkadamany.com
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:21 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-63b77dcd282"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79294bc47c8fb511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tawk.to/chat/5722b6c35c0d38673819ee04/default
172.67.38.66200 OK 19 kB URL HTTP/2 tawk.to/chat/5722b6c35c0d38673819ee04/default
IP 172.67.38.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 32560b8cdcda0adc0a9a34537407eccf
1cddf35be3f19b1f7a4a12861e905382b9fda423
2ae2979e61e2ff2e91729f278a37f5d06682d54f6f2a667e7ef8fe39a2523553
GET /chat/5722b6c35c0d38673819ee04/default HTTP/1.1
Host: tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:21 GMT
content-type: text/html
x-served-by: candice-servers-c7w5
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79294bc08b45b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
alkadamany.com/images/favicon.ico
64.20.48.9200 OK 6.4 kB URL HTTP/2 alkadamany.com/images/favicon.ico
IP 64.20.48.9:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash b54283016ced1cc28d6b1e4a903858b9
5d21eb37bbfb5270f359ee4aeaf0d10155f89e28
12b2b51f0c0c6ee9abd817b26782e06b19d4cd50576a20074929006dfacc0a01
GET /images/favicon.ico HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
last-modified: Thu, 16 Dec 2021 09:03:51 GMT
accept-ranges: bytes
etag: "f1f73d85bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:21 GMT
content-length: 6391
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 717cf52cfdc9e790ae36f7a4e1d19d16
03b71415f75565d67d059f1046fa363be72245e5
f76f4406c8796751e4b51ecff884ff3b3ea2bff4c60b6a8941d68b31951b4541
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2575
Cache-Control: max-age=156620
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:22 GMT
Etag: "63d9d8af-1d7"
Expires: Fri, 03 Feb 2023 03:55:42 GMT
Last-Modified: Wed, 01 Feb 2023 03:12:47 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js?hash=16cd20fad417b11edd9d837faae71f41
31.13.72.12200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=16cd20fad417b11edd9d837faae71f41
IP 31.13.72.12:0
File type ASCII text, with very long lines (13192)
Hash d96aaac1f0f2f3e942388bee6d1dfdbe
d28755b64e041b947bb1191b049b8340a902a9ca
148a57fe3f33ee17b2a2ab8b08f1b91f6dccaca690f3798e2400d19eadc935b5
GET /en_US/sdk.js?hash=16cd20fad417b11edd9d837faae71f41 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alkadamany.com
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ba6eb2b4a5ea75ec2f9180c6f242554e
etag: "d6583c84ce23e9a9f7efd2767b4aafa6"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 01 Feb 2024 06:53:42 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 2WqqwfDy8+lCOIvubR39vg==
x-fb-debug: wMIRRLISYBqu3/p94R2gf36HY82BqpsX7yRWyvVJcQ90fYUNf1SoXY8ZDCZ/RLWBE5bwYSmSTv/1EVroVqVSPQ==
priority: u=3,i
content-length: 86980
x-fb-trip-id: 2074150462
date: Wed, 01 Feb 2023 08:25:22 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
alkadamany.com/js/counter/jquery.countTo.js
64.20.48.9200 OK 1.0 kB URL HTTP/2 alkadamany.com/js/counter/jquery.countTo.js
IP 64.20.48.9:0
File type ASCII text, with CRLF line terminators
Hash 41030200d5274fa7c8fac4e7d99c252d
14834006c4dfa1bb2597fd8d4a15f92cc1e3a242
b94ab26db4df8fe1bb56e8992dc82e0bdda7c8a9cf575cd9b116ecc87813aa54
Analyzer Verdict Alert fortinet Phishing
GET /js/counter/jquery.countTo.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:06:56 GMT
accept-ranges: bytes
etag: "0783c465cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:22 GMT
content-length: 1029
X-Firefox-Spdy: h2
www.clarity.ms/eus/s/0.7.1/clarity.js
13.107.237.53200 OK 22 kB URL HTTP/2 www.clarity.ms/eus/s/0.7.1/clarity.js
IP 13.107.237.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (56646)
Hash 9bbc9a0f599681392868dfeae99633c9
c0a444358accbf6846fade300b61ce5ba847adcd
8b166c915e6176a6055441c6b3eef77022f1c05a0948f4b7a183689bde1b4e1b
GET /eus/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d933d16af8439e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-azure-ref-originshield: 07xvZYwAAAABDnR8Wssi/Q6TExoZf+DzYRlJBMjMxMDUwNDE4MDI5ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
x-azure-ref: 08iHaYwAAAAC8zQOvUhMhS6xpr7xCTwRbQ1BIMzBFREdFMDQwOQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 01 Feb 2023 08:25:21 GMT
X-Firefox-Spdy: h2
alkadamany.com/js/nicescroll/jquery.nicescroll.js
64.20.48.9200 OK 57 kB URL HTTP/2 alkadamany.com/js/nicescroll/jquery.nicescroll.js
IP 64.20.48.9:0
File type ASCII text, with very long lines (65466)
Hash efb822e681f4e60aebaf8f110fd5a241
2af4ac37424766396137ffbf436da7d1f3914bbc
7af682ab348f3bca69897c505510f00d143bdd9c805eea6b005d5a8a2a973792
Analyzer Verdict Alert fortinet Phishing
GET /js/nicescroll/jquery.nicescroll.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:07:07 GMT
accept-ranges: bytes
etag: "80efca4c5cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:22 GMT
content-length: 15911
X-Firefox-Spdy: h2
alkadamany.com/js/isotope/isotope.pkgd.min.js
64.20.48.9200 OK 11 kB URL HTTP/2 alkadamany.com/js/isotope/isotope.pkgd.min.js
IP 64.20.48.9:0
File type ASCII text, with very long lines (2306), with no line terminators
Hash 9b26e30ef7c7c742b85cf5f4fe84e9aa
38128855860e88ad780f24a70c3928cf5a55071d
e967425f663e5ec43e280d7d613dc17e88c34ecf22076810243d2ae5da44135d
Analyzer Verdict Alert fortinet Phishing
GET /js/isotope/isotope.pkgd.min.js HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Thu, 16 Dec 2021 09:07:01 GMT
accept-ranges: bytes
etag: "806837495cf2d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:22 GMT
content-length: 9531
X-Firefox-Spdy: h2
alkadamany.com/green/content/plugins/halfdata-green-popups/css/style.min.css?ver=7.4
64.20.48.9200 OK 9.7 kB URL HTTP/2 alkadamany.com/green/content/plugins/halfdata-green-popups/css/style.min.css?ver=7.4
IP 64.20.48.9:0
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash bc1983b8400305a12561f191a3c32f23
ff0850a9ce9fa8ad48c918deb38b61122908210d
5064affd14b3a439d12eb1f7dd87e566d2dcf42d6887e100cd64894a1e53f2a3
Analyzer Verdict Alert fortinet Phishing
GET /green/content/plugins/halfdata-green-popups/css/style.min.css?ver=7.4 HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77; _clck=ogrcgd|1|f8r|0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Sat, 14 Jan 2023 02:49:20 GMT
accept-ranges: bytes
etag: "0b8f6ccc227d91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:22 GMT
content-length: 9713
X-Firefox-Spdy: h2
alkadamany.com/green/content/plugins/halfdata-green-popups/css/fontawesome-all.min.css?ver=7.4
64.20.48.9200 OK 11 kB URL HTTP/2 alkadamany.com/green/content/plugins/halfdata-green-popups/css/fontawesome-all.min.css?ver=7.4
IP 64.20.48.9:0
File type ASCII text, with very long lines (54402), with no line terminators
Hash 3a5f1eae7e2d1a39046e382c91154c95
16ca74b2ab7d117478a4f2654aa1c5900074645c
8d40c4cf982ecd4704e5e8d04e33a4a01472eb355e1c1b38f75b0f0f73872adf
GET /green/content/plugins/halfdata-green-popups/css/fontawesome-all.min.css?ver=7.4 HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77; _clck=ogrcgd|1|f8r|0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Sat, 14 Jan 2023 02:49:13 GMT
accept-ranges: bytes
etag: "809acac8c227d91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:22 GMT
content-length: 11323
X-Firefox-Spdy: h2
alkadamany.com/green/content/plugins/halfdata-green-popups/css/lepopup-if.min.css?ver=7.4
64.20.48.9200 OK 547 B URL HTTP/2 alkadamany.com/green/content/plugins/halfdata-green-popups/css/lepopup-if.min.css?ver=7.4
IP 64.20.48.9:0
File type ASCII text, with very long lines (1461), with no line terminators
Hash 9416afb9e4b890d34cc410e05db2a451
1fab2495abeb1a2e2c03f63fc0ba759cf20e4b56
4a02b923e73662d31644a48b85dfbed6f605796ee282c45082222e5b03b95f55
Analyzer Verdict Alert fortinet Phishing
GET /green/content/plugins/halfdata-green-popups/css/lepopup-if.min.css?ver=7.4 HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77; _clck=ogrcgd|1|f8r|0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Sat, 14 Jan 2023 02:49:16 GMT
accept-ranges: bytes
etag: "ab4d1ecbc227d91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:22 GMT
content-length: 547
X-Firefox-Spdy: h2
alkadamany.com/green/content/plugins/halfdata-green-popups/css/airdatepicker.min.css?ver=7.4
64.20.48.9200 OK 2.2 kB URL HTTP/2 alkadamany.com/green/content/plugins/halfdata-green-popups/css/airdatepicker.min.css?ver=7.4
IP 64.20.48.9:0
File type ASCII text, with very long lines (17258), with no line terminators
Hash d96e1b036e694c01e9cd95dec08710c2
88bdf3b54b2cea7f4b1b0e3c233cfc2ba94dcffa
b724bef8cef5ec69ea57b69fd49e0e5efc9a7d564c0d7d3ef872be3de2c5789c
Analyzer Verdict Alert fortinet Phishing
GET /green/content/plugins/halfdata-green-popups/css/airdatepicker.min.css?ver=7.4 HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77; _clck=ogrcgd|1|f8r|0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
last-modified: Sat, 14 Jan 2023 02:49:10 GMT
accept-ranges: bytes
etag: "0d70c7c227d91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:22 GMT
content-length: 2206
X-Firefox-Spdy: h2
www.clarity.ms/tag/duguulw3sk
13.107.237.53200 OK 3.0 kB URL HTTP/2 www.clarity.ms/tag/duguulw3sk
IP 13.107.237.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 39e0dca632524d24cb5dfbb434111904
1892fe2ea2b8f829bbd1d70bab8d9e36ea74f834
2dca47a1966b510d623071e33b35d47b43f852171f947bd64304eb4e78d71be5
GET /tag/duguulw3sk HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=a1179b8aa84546f895d4bb643ba2b164.20230201.20240201; expires=Thu, 01 Feb 2024 08:25:22 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:9c7c879b-c51a-427e-9701-218438da5f81
x-cache: CONFIG_NOCACHE
x-azure-ref: 08iHaYwAAAACAjAYpKs6ST4gU4Rr8/8SGQ1BIMzBFREdFMDQwOQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 01 Feb 2023 08:25:21 GMT
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=2B5BDAB6857B4600938B17830433B91D&RedC=c.clarity.ms&MXFR=1F3CD64944616229380AC4E240616CFF
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=1F3CD64944616229380AC4E240616CFF; domain=.clarity.ms; expires=Mon, 26-Feb-2024 08:25:22 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Wed, 01 Feb 2023 08:25:21 GMT
content-length: 0
X-Firefox-Spdy: h2
alkadamany.com/green/content/plugins/halfdata-green-popups/js/signature_pad.min.js?ver=7.4
64.20.48.9200 OK 2.5 kB URL HTTP/2 alkadamany.com/green/content/plugins/halfdata-green-popups/js/signature_pad.min.js?ver=7.4
IP 64.20.48.9:0
File type ASCII text, with very long lines (7378), with no line terminators
Hash 39f2d690dd282d531432ec428221a0cc
85ce3cd179b4e0dcba98152ab67c1bffe2f66db3
2d897ddb58d66ee8d956fca85dd4bafb459287a7dd92d9a7386a73470ce8aaa5
Analyzer Verdict Alert fortinet Phishing
GET /green/content/plugins/halfdata-green-popups/js/signature_pad.min.js?ver=7.4 HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77; _clck=ogrcgd|1|f8r|0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 14 Jan 2023 02:48:15 GMT
accept-ranges: bytes
etag: "808138a6c227d91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:22 GMT
content-length: 2517
X-Firefox-Spdy: h2
alkadamany.com/green/content/plugins/halfdata-green-popups/js/airdatepicker.min.js?ver=7.4
64.20.48.9200 OK 11 kB URL HTTP/2 alkadamany.com/green/content/plugins/halfdata-green-popups/js/airdatepicker.min.js?ver=7.4
IP 64.20.48.9:0
File type Unicode text, UTF-8 text, with very long lines (43066), with no line terminators
Hash 15c2476626849d9049a6d44f75869b36
709d72ebd25ed120fa45f5994e3bf4e9abc7b507
e1fd48664880231f9f78797c326e2129ee11171a9aaf3071e5e2875aa6bbf994
Analyzer Verdict Alert fortinet Phishing
GET /green/content/plugins/halfdata-green-popups/js/airdatepicker.min.js?ver=7.4 HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77; _clck=ogrcgd|1|f8r|0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Sat, 14 Jan 2023 02:48:06 GMT
accept-ranges: bytes
etag: "037dba0c227d91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:22 GMT
content-length: 11400
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=2B5BDAB6857B4600938B17830433B91D&RedC=c.clarity.ms&MXFR=1F3CD64944616229380AC4E240616CFF
204.79.197.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=2B5BDAB6857B4600938B17830433B91D&RedC=c.clarity.ms&MXFR=1F3CD64944616229380AC4E240616CFF
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=2B5BDAB6857B4600938B17830433B91D&RedC=c.clarity.ms&MXFR=1F3CD64944616229380AC4E240616CFF HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alkadamany.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=2B5BDAB6857B4600938B17830433B91D&MUID=03653AF08CDF6A841810285B8D2A6BAB
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=03653AF08CDF6A841810285B8D2A6BAB; domain=c.bing.com; expires=Mon, 26-Feb-2024 08:25:23 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C1FFD7421B0643BC88E24458434D37B9 Ref B: OSL30EDGE0506 Ref C: 2023-02-01T08:25:23Z
date: Wed, 01 Feb 2023 08:25:22 GMT
content-length: 0
X-Firefox-Spdy: h2
alkadamany.com/green/content/plugins/halfdata-green-popups/js/ion.rangeSlider.min.js?ver=7.4
64.20.48.9200 OK 8.4 kB URL HTTP/2 alkadamany.com/green/content/plugins/halfdata-green-popups/js/ion.rangeSlider.min.js?ver=7.4
IP 64.20.48.9:0
File type Unicode text, UTF-8 text, with very long lines (41023)
Hash c9e21986658fc914a3a904e0bdef82f0
1c58444dfdb2134223dbfa3a7e89511e864d54a9
5e7c01ed3d45a4eec1c77c730e16d097c3547ae94345643b14c2040b0ad6a857
Analyzer Verdict Alert fortinet Phishing
GET /green/content/plugins/halfdata-green-popups/js/ion.rangeSlider.min.js?ver=7.4 HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77; _clck=ogrcgd|1|f8r|0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Sat, 14 Jan 2023 02:48:08 GMT
accept-ranges: bytes
etag: "064ca2c227d91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:22 GMT
content-length: 8382
X-Firefox-Spdy: h2
va.tawk.to/v1/widget-settings?propertyId=5722b6c35c0d38673819ee04&widgetId=default&sv=undefined
104.22.25.131200 OK 1.6 kB URL HTTP/2 va.tawk.to/v1/widget-settings?propertyId=5722b6c35c0d38673819ee04&widgetId=default&sv=undefined
IP 104.22.25.131:0
File type ASCII text, with very long lines (4161), with no line terminators
Hash 80ed6871150a247c5f3b1500bd68f461
588b9e5ce6fa1b01b617fadc003f4e69e769ac0d
9eeb71b54da4343bb7d80da5b228419267ad574d5b3449af9def5bfc17d41728
GET /v1/widget-settings?propertyId=5722b6c35c0d38673819ee04&widgetId=default&sv=undefined HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tawk.to/
Origin: https://tawk.to
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:22 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-dzp8
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-421-1"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79294bcaadd5b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 67941f47260307426cab75fe57a67558
0f25cdd6043f84288d054cf54f50fc45f0d2a122
311c606f9adcdacf28aa98410633e18706d246a0f93531034f8b3899f699aeb8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 08:25:23 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 09:46:08 GMT
Expires: Sun, 05 Feb 2023 09:46:07 GMT
Etag: "0f25cdd6043f84288d054cf54f50fc45f0d2a122"
Cache-Control: max-age=349843,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79294bbbd9600b45-OSL
alkadamany.com/green/content/plugins/halfdata-green-popups/js/jquery.mask.min.js?ver=7.4
64.20.48.9200 OK 3.3 kB URL HTTP/2 alkadamany.com/green/content/plugins/halfdata-green-popups/js/jquery.mask.min.js?ver=7.4
IP 64.20.48.9:0
File type ASCII text, with very long lines (537)
Hash 62cacb763df0eb118804b76fd24ef970
607fb3e541b39f84c68dd4a58e383bb39f5928a7
58cc866c6e68d0aa4c1cf7f832e8361ab57d602e3cc078e5c82cca1bfde09c9a
GET /green/content/plugins/halfdata-green-popups/js/jquery.mask.min.js?ver=7.4 HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77; _clck=ogrcgd|1|f8r|0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
last-modified: Sat, 14 Jan 2023 02:48:12 GMT
accept-ranges: bytes
etag: "0be6ea4c227d91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:22 GMT
content-length: 3250
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bf0b4a1326381ca6600115125549d110
b9547df16eac627e61d68ae7e7443c415d586c8c
fa023ed4c9db20484d6a2c144647a4c763c43efae8bac1f561ec71f058d86b8c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 08:12:52 GMT
expires: Wed, 01 Feb 2023 08:27:52 GMT
cache-control: public, max-age=900
age: 751
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bf0b4a1326381ca6600115125549d110
b9547df16eac627e61d68ae7e7443c415d586c8c
fa023ed4c9db20484d6a2c144647a4c763c43efae8bac1f561ec71f058d86b8c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 08:25:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alkadamany.com/images/180x40_b397d-203.jpg
64.20.48.9200 OK 1.1 kB URL HTTP/2 alkadamany.com/images/180x40_b397d-203.jpg
IP 64.20.48.9:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 180x40, components 3\012- data
Hash 721417e5467f49ea626e5b4f4e7f67d7
d9f980ed687cadb832fe5b3268c9dfb67e9c95d3
5e037f4847a3f13c54e1b102173709351bffabe3f9e5233afee3526f2e158308
GET /images/180x40_b397d-203.jpg HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77; _clck=ogrcgd|1|f8r|0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Thu, 16 Dec 2021 09:03:35 GMT
accept-ranges: bytes
etag: "36fc89ce5bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:23 GMT
content-length: 1134
X-Firefox-Spdy: h2
alkadamany.com/images/180x40_0ecee-205.jpg
64.20.48.9200 OK 1.9 kB URL HTTP/2 alkadamany.com/images/180x40_0ecee-205.jpg
IP 64.20.48.9:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 180x40, components 3\012- data
Hash e1470149fc98c4654d9eadf33a9943d0
4b1ad1f7a2636697c8c385e82053d13af978144a
6c70aebba72746a1eb25f326eb53ba969894eafa9535b009e83ca5f701cc16f9
GET /images/180x40_0ecee-205.jpg HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77; _clck=ogrcgd|1|f8r|0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Thu, 16 Dec 2021 09:03:35 GMT
accept-ranges: bytes
etag: "2af9dce5bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:23 GMT
content-length: 1909
X-Firefox-Spdy: h2
alkadamany.com/images/180x40_ed832-204.jpg
64.20.48.9200 OK 1.5 kB URL HTTP/2 alkadamany.com/images/180x40_ed832-204.jpg
IP 64.20.48.9:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 180x40, components 3\012- data
Hash 70f26cc403963f1b19630eabe4cc81c3
97715d9ba7af89b06bb5b4e0b749ce8a7ed36928
d2f2f59dd65b1f29de96652e7a51943dec32e21dc5319f0301fcc3e04698c817
GET /images/180x40_ed832-204.jpg HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77; _clck=ogrcgd|1|f8r|0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Thu, 16 Dec 2021 09:03:35 GMT
accept-ranges: bytes
etag: "541feece5bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:23 GMT
content-length: 1460
X-Firefox-Spdy: h2
alkadamany.com/images/180x40_ee185-206.jpg
64.20.48.9200 OK 468 B URL HTTP/2 alkadamany.com/images/180x40_ee185-206.jpg
IP 64.20.48.9:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 180x40, components 3\012- data
Hash 85f405547edac18d2cfe6652fff2d510
f8b5858b14a341d7f2aa9ce7d465f171214a9c36
3c966e1ab73dd95fad31b6a13cda88f23234126e7d0f3cd60dd40b35c5818c3b
GET /images/180x40_ee185-206.jpg HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77; _clck=ogrcgd|1|f8r|0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Thu, 16 Dec 2021 09:03:36 GMT
accept-ranges: bytes
etag: "8b7e2ecf5bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:23 GMT
content-length: 468
X-Firefox-Spdy: h2
alkadamany.com/images/180x40_c5cfd-207.jpg
64.20.48.9200 OK 938 B URL HTTP/2 alkadamany.com/images/180x40_c5cfd-207.jpg
IP 64.20.48.9:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 180x40, components 3\012- data
Hash 2b56eb0a4d72ec4f7003215ef5724a4e
818f4f3db12d62c3f4f71815c111ad1918d93322
999d870d411fdcdb785ca3d87021a1999fc7ec3e7c7caa0f638f7de2e9e84435
GET /images/180x40_c5cfd-207.jpg HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77; _clck=ogrcgd|1|f8r|0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Thu, 16 Dec 2021 09:03:35 GMT
accept-ranges: bytes
etag: "9cdbce5bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:23 GMT
content-length: 938
X-Firefox-Spdy: h2
www.facebook.com/v14.0/plugins/comments.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df33eeb426bdd024%26domain%3Dalkadamany.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Falkadamany.com%252Ff1f45ccc9d02658%26relation%3Dparent.parent&container_width=1140&height=100&href=https%3A%2F%2Falkadamany.com%2Findex.php&locale=en_US&numposts=10&sdk=joey&version=v14.0&width=550
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/v14.0/plugins/comments.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df33eeb426bdd024%26domain%3Dalkadamany.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Falkadamany.com%252Ff1f45ccc9d02658%26relation%3Dparent.parent&container_width=1140&height=100&href=https%3A%2F%2Falkadamany.com%2Findex.php&locale=en_US&numposts=10&sdk=joey&version=v14.0&width=550
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v14.0/plugins/comments.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df33eeb426bdd024%26domain%3Dalkadamany.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Falkadamany.com%252Ff1f45ccc9d02658%26relation%3Dparent.parent&container_width=1140&height=100&href=https%3A%2F%2Falkadamany.com%2Findex.php&locale=en_US&numposts=10&sdk=joey&version=v14.0&width=550 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: bDZJzzISPMvT7bQwAwwnCXkENYTXkvHQX/UwVNZH2bWx9KYcMabJF94Buf0uXBslsmDO7IICPsioSEBPcKk96w==
content-length: 0
date: Wed, 01 Feb 2023 08:25:23 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
alkadamany.com/images/b397d-203.jpg
64.20.48.9200 OK 916 kB URL HTTP/2 alkadamany.com/images/b397d-203.jpg
IP 64.20.48.9:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size 916 kB (916411 bytes)
Hash 936ac107e3131cbefb5c2d6ed3b26579
e454c12ad940e3ee1aeeb8b3c0d80aec777d30bb
233ca64cf0dee86489e2004bd6b88f3633ad9e88844469583862bc7e58f145ab
GET /images/b397d-203.jpg HTTP/1.1
Host: alkadamany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Cookie: ASPSESSIONIDQWQSATAB=GGJJHJLAGIJEBHOECFLKBDOJ; PHPSESSID=j7tpfladg928lgmv6u26gq7f77; _clck=ogrcgd|1|f8r|0; TawkConnectionTime=1675239944095; twk_idm_key=HadFe2rJXOEvZ_WD_JJMa
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Thu, 16 Dec 2021 09:03:40 GMT
accept-ranges: bytes
etag: "15c596d15bf2d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE
date: Wed, 01 Feb 2023 08:25:23 GMT
content-length: 916411
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 17 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3ce15b2d8cc6b2aabe18fc40aca6b982
ce95a24def27ef90145edb03b2a69b806261521c
dbb680472c850190fc2ebfd172306b0571fbb9d989be9fe3fec52e92fea2a60e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "A1A26E0A56FAAB5D0D3987C8892859231B13DAA06691FB4BFA959CC1037B265D"
Last-Modified: Sun, 29 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15113
Expires: Wed, 01 Feb 2023 12:37:17 GMT
Date: Wed, 01 Feb 2023 08:25:24 GMT
Connection: keep-alive
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1055
Origin: https://alkadamany.com
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://alkadamany.com
access-control-allow-credentials: true
date: Wed, 01 Feb 2023 08:25:23 GMT
X-Firefox-Spdy: h2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
151.101.193.229200 OK 54 kB URL HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP 151.101.193.229:0
File type ASCII text, with very long lines (32014)
Hash ea53ffc3c20542881a2735a62c0426d7
365e24ffd4a54e4c019a47c94204ad90a8538eb5
e4f801f6cd7462489966e441ff53795823a607656497f9d0ce8cbfc08f6c7448
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 01 Feb 2023 08:25:24 GMT
age: 27386280
x-served-by: cache-fra19156-FRA, cache-bma1661-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53889
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.21.226200 OK 48 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.21.226:0
Hash 5ae4c6229e228890a57b93782d6db500
f829055b4b1a40cbce98aac4363d722d051bf36e
db8ed3b2a0517201767bc8e589c3b64b46836805e872d7a072c06a1121d27c0f
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 08:25:24 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "0DE5B853CDF21518B15E75597987DD658AB904A0"
Expires: Wed, 01 Feb 2023 19:00:00 GMT
Last-Modified: Wed, 01 Feb 2023 07:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1702
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79294bd6e8a0b51b-OSL
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash de288c1addb29777fe72ec846382d052
4f41f58cbadd141197763ec2c3204353466163f8
a1a26e0a56faab5d0d3987c8892859231b13daa06691fb4bfa959cc1037b265d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "A1A26E0A56FAAB5D0D3987C8892859231B13DAA06691FB4BFA959CC1037B265D"
Last-Modified: Sun, 29 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15113
Expires: Wed, 01 Feb 2023 12:37:17 GMT
Date: Wed, 01 Feb 2023 08:25:24 GMT
Connection: keep-alive
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 207570
Origin: https://alkadamany.com
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://alkadamany.com
access-control-allow-credentials: true
date: Wed, 01 Feb 2023 08:25:24 GMT
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 55155
Origin: https://alkadamany.com
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://alkadamany.com
access-control-allow-credentials: true
date: Wed, 01 Feb 2023 08:25:26 GMT
X-Firefox-Spdy: h2
va.tawk.to/v1/session/start
104.22.25.131200 OK 0 B URL HTTP/2 va.tawk.to/v1/session/start
IP 104.22.25.131:0
POST /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alkadamany.com/
Content-Type: application/json; charset=utf-8
Origin: https://alkadamany.com
Content-Length: 174
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:23 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-vsw7
access-control-allow-origin: https://alkadamany.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79294bd2d95bb511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-shims.min.css?token=1bf9c843e5
172.64.169.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-shims.min.css?token=1bf9c843e5
IP 172.64.169.22:0
GET /releases/v6.2.1/css/free-v4-shims.min.css?token=1bf9c843e5 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alkadamany.com/
Origin: https://alkadamany.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:20 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:08 GMT
etag: W/"0d00741459c51dd7330d97cd19326a7b"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f25261ba016233f0454d8943ca7e6eda.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: raqf8_FbxPIl_Pa4zSWD49YZ8k62IuzPEy2DfcOr8JmDUGAk5JtejQ==
age: 97287
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DScNG92INddttstz9EDZe0awGmD5jHIcN7XLSwgeWZ0lU%2BgPl1XYiKVQ0YdmBpqXyLq8DHzvTVsyzoxcwfIUtlJkusgvYuAG9upcqE3dMGyyi77kxXxq2ONf4eeqK9df3IUKUgdHJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79294bbc6d1f889e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/css/free.min.css?token=1bf9c843e5
172.64.169.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free.min.css?token=1bf9c843e5
IP 172.64.169.22:0
GET /releases/v6.2.1/css/free.min.css?token=1bf9c843e5 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alkadamany.com/
Origin: https://alkadamany.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:20 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:08 GMT
etag: W/"2dbe34367e935e2684b01124b0860d71"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d2f164bf60a2ab1e57e36b786f7bef8.cloudfront.net (CloudFront)
x-amz-cf-pop: PER50-C1
x-amz-cf-id: tA1D6Cg5eWmIP8FcESDZr4DuLqAlaE7WQmuRg1sO6HFu0lzwbKzNrQ==
age: 97286
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qc8bFuoMNE4ok0nZ9Ndj51qMRIaSOjScX31uprtT7sZHRrf9qirccIkZ93dsS3H54H8FJqd9Fi0%2FE0L%2BFntGgzUSQEHk%2BbmpBdanII4Sx9b7HLM848Xd5NDplcZehbuGs2P1zjpHdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79294bbc1cbe889e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/css/free-v5-font-face.min.css?token=1bf9c843e5
172.64.169.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free-v5-font-face.min.css?token=1bf9c843e5
IP 172.64.169.22:0
GET /releases/v6.2.1/css/free-v5-font-face.min.css?token=1bf9c843e5 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alkadamany.com/
Origin: https://alkadamany.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:20 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:07 GMT
etag: W/"15e2713dff942747406520edde3fd0bf"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 aa5f00ed95fd16b8d894989f7ad491ba.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: gQBxEr_EQ5C3ERAbWlF9gyle4DqGe84k7xQcE9V9H2mflW53eZ3XuQ==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FJ5xl%2Fz9CQ1FWOZgYan1wkzuuu9cKzfoJVJLpg%2BUOithEiw%2Fh1jJzzeS8mbfXmXKblpU34qecQrJKyt070B50mQdvN%2BgvnmamWq1Za1dL4NmqZ%2BO4VaPdM2baA%2F3Nt63z4UwcZvZiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79294bbc5d17889e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
va.tawk.to/v1/session/start
104.22.25.131200 OK 0 B URL HTTP/2 va.tawk.to/v1/session/start
IP 104.22.25.131:0
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://alkadamany.com/
Origin: https://alkadamany.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:23 GMT
x-served-by: visitor-application-preemptive-vsw7
access-control-allow-origin: https://alkadamany.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79294bd1dfacb511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.1/css/all.css
172.64.133.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.15.1/css/all.css
IP 172.64.133.15:0
GET /releases/v5.15.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alkadamany.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 08:25:19 GMT
content-type: text/css
x-amz-id-2: HzL2YX3vnPuCBAN1ovem/CBLmVUCOSHTmZolArN04m7gtZdtrEVeVCWTgPma/e6nbqz5Lk7T/mU=
x-amz-request-id: N15C7S2FWD1KMZ42
last-modified: Wed, 30 Jun 2021 15:40:30 GMT
etag: W/"b227b1617a1763c8bc056772f05482b4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1556250
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nopKDoYIHFlJEKe4jMPvZ7zj1zbo1n%2F6POeYByA%2Bq0ueLpVunLCuWNhXD6OWxDhUwWCKEB5VT5Pnl9x%2BaMY7OJ%2FPTafrRvXhdumY6040IYSvdKuYE1%2BCRoEIhG5iSBOXnhWAw5FG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79294bb9df9b76af-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2