r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9678
Expires: Thu, 01 Dec 2022 12:51:36 GMT
Date: Thu, 01 Dec 2022 10:10:18 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1715
Cache-Control: max-age=89376
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:10:18 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 10:59:54 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12655
Expires: Thu, 01 Dec 2022 13:41:13 GMT
Date: Thu, 01 Dec 2022 10:10:18 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 09:18:08 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3131
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: S+xbjKMmgxUvQZLlWRDl5Jhl0R2ug/gyBgdsBP72NXVEgluprJMMdFu60og8VMSG6mNy3Zx/2PQ=
x-amz-request-id: 0FXN26HAQ6B2BN0W
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 09:45:37 GMT
age: 1482
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
thedome.sa/
170.10.161.235302 Found 203 B IP 170.10.161.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0c45e241b6f0cc5f1b8dde0402ca8d43
cb364c002d1cf46fa53a03b4df0e0c062a840790
1c6ecb474ffda3553a129d7c0f57570f26c05977e93cc9d54c6d6cd2ba45d7f6
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Thu, 01 Dec 2022 10:10:18 GMT
Server: Apache
Location: https://thedome.sa/
Content-Length: 203
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 10:10:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 53ab31ed8ae2aab8c39762968d462ba6
f6ea49ad54280ee8b8aafcfb5bfaa2ef1edeb54c
56acf1fe5c1e75108081f31f1f91d9442ba0d588510e34c82e5bcd816770649e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 10:10:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 16:01:14 GMT
Expires: Tue, 06 Dec 2022 16:01:13 GMT
Etag: "f6ea49ad54280ee8b8aafcfb5bfaa2ef1edeb54c"
Cache-Control: max-age=452453,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 772b0846e9abb50c-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 09:11:15 GMT
cache-control: public,max-age=3600
age: 3544
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1710
Cache-Control: max-age=170700
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:10:19 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:35:19 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:10:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:10:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:10:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
thedome.sa/assets/css/plugins.min.css
170.10.161.235200 OK 8.9 kB URL HTTP/2 thedome.sa/assets/css/plugins.min.css
IP 170.10.161.235:0
File type ASCII text, with very long lines (25915)
Hash 9cba1ab3fc9c1459115944514a340507
2dadf9d05598b59fc95d26329c8cf124471b6537
b1138073acdbc9281f7cbf97a3af77c29f8aee1ecc3dfcb9c066b2cf4bf4c670
GET /assets/css/plugins.min.css HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:43:59 GMT
etag: "10aff-57fff98b5e9c0-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 8918
content-type: text/css
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jqueryui/1.10.4/jquery-ui.min.js
142.250.74.106200 OK 61 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jqueryui/1.10.4/jquery-ui.min.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (64560)
Hash 45eb5ca2675d433e4b1bd361b684cdca
3194791975f93e8be941a6dd6f5828a437677b72
09e90ed27d9f5bedc2992c1c2e5ed7ccce4fe7f86a1f39ffd32e2dbfa00b40b9
GET /ajax/libs/jqueryui/1.10.4/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 61441
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 12:03:36 GMT
expires: Sun, 26 Nov 2023 12:03:36 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 425203
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-145017801-2
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-145017801-2
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 91cd4e0ea8a596ea8d29d0e93043b43e
f2e3c7ea23b2fc1d38b9073b306c32e26a6e2281
c30195b7ac28fbe65e250466f1eb054062946a6a259ce32b5ca66136e703e00f
GET /gtag/js?id=UA-145017801-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 10:10:19 GMT
expires: Thu, 01 Dec 2022 10:10:19 GMT
cache-control: private, max-age=900
last-modified: Thu, 01 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43596
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
142.250.74.106200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (32058)
Hash fc3fc31e5e7c0933dc18e562c1c071bf
a44c31323f6bd29e583cc585036e6eb39f7014a6
ddad766fb94b23efeb5574cdedc5e8446d496fb91bd0b08cd80be212e001055d
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 18:54:48 GMT
expires: Thu, 30 Nov 2023 18:54:48 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 54931
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
thedome.sa/assets/css/image-map-pro.css
170.10.161.235200 OK 1.8 kB URL HTTP/2 thedome.sa/assets/css/image-map-pro.css
IP 170.10.161.235:0
File type ASCII text, with very long lines (9411), with no line terminators
Hash 12a5b268225158363909d243f163649c
2df2f1220eb377429024c90ccb6d2a3935475183
9823d1f4c67532e947dabc614aef7d5afecfc6034a07181f391d90336aef91c2
GET /assets/css/image-map-pro.css HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:43:59 GMT
etag: "24c3-57fff98b5e9c0-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 1825
content-type: text/css
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/css/unite-gallery.css
170.10.161.235200 OK 4.8 kB URL HTTP/2 thedome.sa/assets/css/unite-gallery.css
IP 170.10.161.235:0
File type ASCII text, with very long lines (303)
Hash 30a5a979f533bd186b843ac916947ceb
db0b7181dcd0fdc244e4295cf5f7f09be12ef466
daaee59da3fb7de5f93061efeeb6ebeb1b77a2ada060239ab1718a88d2b21f7a
GET /assets/css/unite-gallery.css HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:43:59 GMT
etag: "7964-57fff98b5e9c0-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 4808
content-type: text/css
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/css/alexis.css
170.10.161.235200 OK 1.3 kB URL HTTP/2 thedome.sa/assets/css/alexis.css
IP 170.10.161.235:0
Hash 81a57d73618e644c27afa5eba04c79cf
63420d1e7e9f4d5a7403ad32ac611a6e95e32566
ab0335ff0bbfaaac01bcfe80f10e77fff298159f990e36debe077fbcb0d630e8
GET /assets/css/alexis.css HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:43:59 GMT
etag: "2940-57fff98b5e9c0-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 1300
content-type: text/css
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/css/audio3_html5.css
170.10.161.235200 OK 2.3 kB URL HTTP/2 thedome.sa/assets/css/audio3_html5.css
IP 170.10.161.235:0
File type ASCII text, with CRLF line terminators
Hash 2c00dfa934152b199c9bb4c984daafa1
8f3ae28c49410817ebde2b84551e25352ef2c339
1d3eafe19c4230a8e170d4fb4a34a03f71809d9c1ffc5a9699cba6c87dd49ebe
GET /assets/css/audio3_html5.css HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:43:59 GMT
etag: "4928-57fff98b5e9c0-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 2327
content-type: text/css
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:10:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.41.91.37101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.91.37:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: F4zlSnxKGfNLSJDeZZXamg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dp3MO7trf8wLzIUyY7vvLtOHOGk=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:10:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
thedome.sa/assets/css/modal_style.css
170.10.161.235200 OK 17 kB URL HTTP/2 thedome.sa/assets/css/modal_style.css
IP 170.10.161.235:0
Hash 93a008c1a2981a9ef1ad8bb58d7d4299
26bfcd51a519c50fa031d5935a9a53ac7f1de3b8
741e488866a0142046754f4786d1767b9e5a54c78106f67939c2167ef7fa66cc
GET /assets/css/modal_style.css HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Dec 2020 05:15:36 GMT
etag: "1d689-5b74303b66694-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 16784
content-type: text/css
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/ug-slider.js
170.10.161.235200 OK 14 kB URL HTTP/2 thedome.sa/assets/js/ug-slider.js
IP 170.10.161.235:0
Hash e769c5c127860f21cb4f3c8f00ecb5ce
ee89520556fbbc4d650bb70b4315223ca09f5640
5ca73094b7c0e102180bccfdca58767898b8664b05e51d9b64d4203c9ea6dae0
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/ug-slider.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jun 2019 07:55:36 GMT
etag: "10107-58c85d636ae00-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 13870
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/ug-theme-slider.js
170.10.161.235200 OK 987 B URL HTTP/2 thedome.sa/assets/js/ug-theme-slider.js
IP 170.10.161.235:0
Hash 16945e4da36e90aef26df5b2ec523545
213515d054a0a8ebe4d15637fae992e516163c24
47165aaddb765b9a5c60dd4658d6e2ee1030369b4251231389d6d5952f81482c
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/ug-theme-slider.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jun 2019 07:55:37 GMT
etag: "a1f-58c85d645f040-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 987
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/jquery.mousewheel.min.js
170.10.161.235200 OK 716 B URL HTTP/2 thedome.sa/assets/js/jquery.mousewheel.min.js
IP 170.10.161.235:0
File type ASCII text, with very long lines (1020)
Hash 1bb069d9e3a8d110eaf5319b82b26e9b
25921fb49b922ecc44a40550587df5ace5e9a9a9
6975d1b270a0cbbcd4f0a652d6b32bce9eb2344944e1ccde88e5588bf51e71d4
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/jquery.mousewheel.min.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jun 2019 07:55:46 GMT
etag: "570-58c85d6cf4480-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 716
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/jquery.touchSwipe.min.js
170.10.161.235200 OK 5.0 kB URL HTTP/2 thedome.sa/assets/js/jquery.touchSwipe.min.js
IP 170.10.161.235:0
File type ASCII text, with very long lines (20018)
Hash a8037239ad7652663826e415fa181187
c6f1b9360a7cbd46f5efd106365b206918d32c2f
a71a5542ca22cd54fc6d3a5c0791425cc632b88cf156d940ac3c970d0b7494c6
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/jquery.touchSwipe.min.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jun 2019 07:55:47 GMT
etag: "4fce-58c85d6de86c0-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 5038
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/audio3_html5.js
170.10.161.235200 OK 6.4 kB URL HTTP/2 thedome.sa/assets/js/audio3_html5.js
IP 170.10.161.235:0
File type ASCII text, with very long lines (797), with CRLF line terminators
Hash d9b6e21d93862b62962db75d4df3729e
992f7a8af113e1c350fddbe698460a267a7a2765
183dd5295e546e59866ec048c0c633349236ead5a9eda0bf85a03c8bc5f0161d
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/audio3_html5.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jun 2019 07:55:40 GMT
etag: "67f0-58c85d673b700-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 6403
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/image-map-pro-defaults.js
170.10.161.235200 OK 1.3 kB URL HTTP/2 thedome.sa/assets/js/image-map-pro-defaults.js
IP 170.10.161.235:0
File type ASCII text, with very long lines (3080), with no line terminators
Hash b6023738121b7a04ded99dc1ce08039c
b4141746a7edadceacc52dee8ec4262c9caeb5c9
4582bac6eff81d782cdabd9512a55d77493e750579106ee320e74ddaeb336756
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/image-map-pro-defaults.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jun 2019 07:55:42 GMT
etag: "c08-58c85d6923b80-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 1315
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/image-map-pro-editor.js
170.10.161.235200 OK 22 kB URL HTTP/2 thedome.sa/assets/js/image-map-pro-editor.js
IP 170.10.161.235:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6e71bd662781c370390db30845fceeef
11f16f8deb8dbcc9dedda7ac5b4ec4559098c202
bcc226050e75c4703bc11401cc685256737aac076364c1f37edccd48511a5032
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/image-map-pro-editor.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jun 2019 07:55:44 GMT
etag: "1b238-58c85d6b0c000-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 22190
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/image-map-pro-editor-content.js
170.10.161.235200 OK 1.9 kB URL HTTP/2 thedome.sa/assets/js/image-map-pro-editor-content.js
IP 170.10.161.235:0
File type ASCII text, with very long lines (11536), with no line terminators
Hash ca03b28dff4a0023650b8048a3bc26c9
a954bca30c017e9de2db1259f79f5ac719c9b5d4
3c7f5d4f0c75514e37717381ac75eeeb9ef9c79dc64a83fe192243dc7d88dadf
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/image-map-pro-editor-content.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jun 2019 07:55:44 GMT
etag: "2d10-58c85d6b0c000-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 1900
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/image-map-pro-editor-storage-jquery.js
170.10.161.235200 OK 469 B URL HTTP/2 thedome.sa/assets/js/image-map-pro-editor-storage-jquery.js
IP 170.10.161.235:0
File type ASCII text, with very long lines (1339), with no line terminators
Hash b72509a12c5b7171f0359ff5d8bad815
f7f4b7e036f1974c285e0206f85d41ece286a7df
f3fbce14b1472ae008d952591fb6b410e9d1236a531ab621bb1e867cba06bf93
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/image-map-pro-editor-storage-jquery.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jun 2019 07:55:45 GMT
etag: "53b-58c85d6c00240-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 469
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/main.js
170.10.161.235200 OK 4.2 kB URL HTTP/2 thedome.sa/assets/js/main.js
IP 170.10.161.235:0
Hash e597652efd0a962b8f16e22d923ca3c1
ad71e5ee7df9d2400ea412df9d75e7e322dae950
bdd7219501572236971a81d47ffb8ad3e9e3527bc09f5b087b57fd9df2e9850b
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/main.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 05 Oct 2019 10:50:56 GMT
etag: "461b-5942797e1277c-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 4206
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/modal_jquery.js
170.10.161.235200 OK 20 kB URL HTTP/2 thedome.sa/assets/js/modal_jquery.js
IP 170.10.161.235:0
File type ASCII text, with very long lines (3997), with CRLF line terminators
Hash c06bd74177e41aec520ef543370c673e
484243ae64924f8c6c9b63ad57c74ff8a35798be
c08d9afe46a0b3033caae6960889b4590dcbd0646bd1058931434279a2d64909
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/modal_jquery.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 05 Sep 2019 12:22:48 GMT
etag: "20535-591cd61360fd9-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 19525
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/ENGLISH.png
170.10.161.235200 OK 2.8 kB URL HTTP/2 thedome.sa/assets/images/ENGLISH.png
IP 170.10.161.235:0
File type PNG image data, 40 x 27, 8-bit/color RGB, non-interlaced\012- data
Hash 03fcf4efcc05594b8e9051b4b025b4e4
7cae819567383522ae0a182bb241362d0458d2f7
89dbe559355ee81d6b890e0dbe63115356598f947a8dd6f7ec8cf35a9df9bb6a
GET /assets/images/ENGLISH.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "ad4-57fff98c52c00"
accept-ranges: bytes
content-length: 2772
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/image-map-pro.js
170.10.161.235200 OK 12 kB URL HTTP/2 thedome.sa/assets/js/image-map-pro.js
IP 170.10.161.235:0
File type ASCII text, with very long lines (60911), with no line terminators
Hash d2cbb59e1a86b208b1fc473006ce4d34
deb79bdc8a4c1a600c67ab630a0b06100ef07846
7120d3e49cacc05032356767f5cc014a3f3e2c9c4b7cf2f0f5e008fc10042f42
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/image-map-pro.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jun 2019 07:55:42 GMT
etag: "edef-58c85d6923b80-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 11873
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/logo_white.png
170.10.161.235200 OK 5.8 kB URL HTTP/2 thedome.sa/assets/images/logo_white.png
IP 170.10.161.235:0
File type PNG image data, 250 x 88, 8-bit/color RGBA, non-interlaced\012- data
Hash 9c08a31b7e9c8ddbfc2fe5f182002580
54edf2242236681526c10c261190ca0b70c3dc80
a5de88a49255d0b57bca91526ad7fa81ad85fea06ef2228cae7436f9951fa644
GET /assets/images/logo_white.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Aug 2019 21:21:29 GMT
etag: "16a7-5910bbd3f711d"
accept-ranges: bytes
content-length: 5799
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/icon_shower.png
170.10.161.235200 OK 27 kB URL HTTP/2 thedome.sa/assets/images/icon_shower.png
IP 170.10.161.235:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash f621782a94704cb0cfe777c30d4eb27e
0635bf9eab6e695d1348b7468517b9af10d46ba8
5edb9efcb58ace1c2bf20358c8acbd37479556c56a6788baa8937c7f15304e57
GET /assets/images/icon_shower.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Feb 2019 09:51:12 GMT
etag: "67f0-58213f2bcc400"
accept-ranges: bytes
content-length: 26608
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/icon_wc.png
11 kB URL thedome.sa/assets/images/icon_wc.png
IP :0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 9dc1b77fe5eecc8ef3b65d17dde6deb8
f0cc5257a066191280e80bbb5d124da59caa6f7e
db498cc80a03fd2ca4ffa61b1f35183bbf28af95efe6b099851e872b3049ab47
GET /assets/images/icon_wc.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
thedome.sa/assets/images/icon_aid.png
170.10.161.235200 OK 20 kB URL HTTP/2 thedome.sa/assets/images/icon_aid.png
IP 170.10.161.235:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 5a486f6a8d41f1b5ad810b2c3c43724a
996e57d23193a31ec2cdb83aafeb2bb003f41cc0
726a3d278d9507212ac367cc8d50b9e8d5c0d5e1f3dc8b5e9262977f7d2e24be
GET /assets/images/icon_aid.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Feb 2019 09:51:04 GMT
etag: "4e6f-58213f242b200"
accept-ranges: bytes
content-length: 20079
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/icon_atm.png
170.10.161.235200 OK 32 kB URL HTTP/2 thedome.sa/assets/images/icon_atm.png
IP 170.10.161.235:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 33b1cef9e00bd45e706257c8e98f8360
26d3b8cfe2196952e06cee911c709aee2b883bd8
1b3696d52de21c2dc3b13073f43e2fd40f6204faa837f1445a7b82c1e8769a90
GET /assets/images/icon_atm.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Feb 2019 09:51:07 GMT
etag: "7d08-58213f27078c0"
accept-ranges: bytes
content-length: 32008
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/tilt_left_altima.gif
170.10.161.235200 OK 37 kB URL HTTP/2 thedome.sa/assets/images/tilt_left_altima.gif
IP 170.10.161.235:0
File type GIF image data, version 89a, 500 x 500\012- data
Hash de0d7bff70147a84ec5c092a01416468
d7e60baa87ceb6ee845c85b3500d992122044627
eff371128f47d35d1a265641f83a4579b5d0380985de60d314e2705fc78276d4
GET /assets/images/tilt_left_altima.gif HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "9229-57fff98c52c00"
accept-ranges: bytes
content-length: 37417
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/gif
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:10:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
thedome.sa/assets/fonts/ge_dinar_one_medium.otf
170.10.161.235200 OK 21 kB URL HTTP/2 thedome.sa/assets/fonts/ge_dinar_one_medium.otf
IP 170.10.161.235:0
File type gzip compressed data, max compression\012- data
Hash 23eb522a85411ce079e2b501f47895d4
7042b4956c296b88683c3672ccd25e741e9b3b21
8ff77b81cedbcf2760ac345bb513d8ac8e23cebf4ad49c556edbaf2a65be0264
Analyzer Verdict Alert fortinet Phishing
GET /assets/fonts/ge_dinar_one_medium.otf HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/style-rtl.css
Cookie: lang_code=ar
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:43:59 GMT
etag: "5030-57fff98b5e9c0"
accept-ranges: bytes
content-length: 20528
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:10:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:10:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/yantramanav/v11/flU8Rqu5zY00QEpyWJYWN5fzXeY.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/yantramanav/v11/flU8Rqu5zY00QEpyWJYWN5fzXeY.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16688, version 1.0\012- data
Hash 27ce541a76cc87e82c51d5e15d8b8441
450eb543081e93f8e176ef4f978e47b6ec424307
a6feaec1d2336b09ed856ca514fe88a68f59903a7d7fabdd137509fdb19848ea
GET /s/yantramanav/v11/flU8Rqu5zY00QEpyWJYWN5fzXeY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://thedome.sa
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16688
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:50:41 GMT
expires: Wed, 29 Nov 2023 15:50:41 GMT
cache-control: public, max-age=31536000
age: 152379
last-modified: Wed, 27 Apr 2022 15:46:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/yantramanav/v11/flUhRqu5zY00QEpyWJYWN59IePNeKBM.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/yantramanav/v11/flUhRqu5zY00QEpyWJYWN59IePNeKBM.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16972, version 1.0\012- data
Hash 29ccb6ca19d4ea2a5b10c8ab04802954
6922ccd129ba880a43a792769962cdb4a03922ac
569c2d7dac23c593b4abaa3bea4be7be22be6c44439684f73117d9209e52c296
GET /s/yantramanav/v11/flUhRqu5zY00QEpyWJYWN59IePNeKBM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://thedome.sa
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16972
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 12:36:20 GMT
expires: Fri, 24 Nov 2023 12:36:20 GMT
cache-control: public, max-age=31536000
age: 596040
last-modified: Wed, 27 Apr 2022 15:53:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:10:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
thedome.sa/assets/images/sportwear.jpg
170.10.161.235200 OK 144 kB URL HTTP/2 thedome.sa/assets/images/sportwear.jpg
IP 170.10.161.235:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1440x810, components 3\012- data
Size 144 kB (143957 bytes)
Hash 731f502e6fcc1bb7336a60e7f748dd37
3e549ee9b87bbe523d2f86f4c278358b1d5f9a08
433b48c3a4b12197804042638b40c31ca0ac64d00f8d1ef0b933a003292d5519
GET /assets/images/sportwear.jpg HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "23255-57fff98c52c00"
accept-ranges: bytes
content-length: 143957
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/jpeg
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/soccer_field.jpg
170.10.161.235200 OK 214 kB URL HTTP/2 thedome.sa/assets/images/soccer_field.jpg
IP 170.10.161.235:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1440x960, components 3\012- data
Size 214 kB (214478 bytes)
Hash 822ec30bbf35c62176303593a19c2eb4
949bcb17b762752c1e373cac970468c5dec97c3a
f44484ff810fabc3302094ce5fd1a5fed96056370cda44abd567523cec631a73
GET /assets/images/soccer_field.jpg HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "345ce-57fff98c52c00"
accept-ranges: bytes
content-length: 214478
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/jpeg
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d1840.8294797731683!2d50.167766523207284!3d26.298984978268823!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3e49e7bfbddca815%3A0xc1fa4eb47435add0!2sGlobal+Sport+Park!5e0!3m2!1sen!2ssa!4v1531035046464
142.250.74.164200 OK 1.3 kB URL HTTP/2 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d1840.8294797731683!2d50.167766523207284!3d26.298984978268823!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3e49e7bfbddca815%3A0xc1fa4eb47435add0!2sGlobal+Sport+Park!5e0!3m2!1sen!2ssa!4v1531035046464
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2693)
Hash e3dc9ff8450bcdc8f291f8cf8bfd474d
213612127b7f2947022d3bc7d5d17b3de546c6d2
763642e0186ab935ba3dafa1660ede198ee13c476fba942e2d313304b9504c8d
GET /maps/embed?pb=!1m18!1m12!1m3!1d1840.8294797731683!2d50.167766523207284!3d26.298984978268823!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3e49e7bfbddca815%3A0xc1fa4eb47435add0!2sGlobal+Sport+Park!5e0!3m2!1sen!2ssa!4v1531035046464 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Thu, 01 Dec 2022 10:10:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-emA-8autCXSjY0J5xhiK2g' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1319
x-xss-protection: 0
server-timing: gfet4t7; dur=193
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
thedome.sa/assets/images/mobile2.jpg
170.10.161.235200 OK 131 kB URL HTTP/2 thedome.sa/assets/images/mobile2.jpg
IP 170.10.161.235:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1440x933, components 3\012- data
Size 131 kB (130842 bytes)
Hash a86a8c90e8361adabfd8b0b488f74011
9f9bcf57229bee8a96ab1315c6d200ae3e25b503
edbd93507a2ed6ce602554dcff696aae3e0e1a876b496cd77b9b779971354aef
GET /assets/images/mobile2.jpg HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jan 2020 12:02:06 GMT
etag: "1ff1a-59bdc02d8d935"
accept-ranges: bytes
content-length: 130842
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/jpeg
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/food_court2.jpg
170.10.161.235200 OK 215 kB URL HTTP/2 thedome.sa/assets/images/food_court2.jpg
IP 170.10.161.235:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1440x960, components 3\012- data
Size 215 kB (214732 bytes)
Hash 3cd4fa0cc3701cfa2818d0b575026471
e787cce024365230ad0639632ead76b3f6e53422
06c5c0b9037eee58c95a837ef340736283b1e7b0f1623750cc502e9651df34f7
GET /assets/images/food_court2.jpg HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "346cc-57fff98c52c00"
accept-ranges: bytes
content-length: 214732
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/jpeg
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/gallery.jpg
170.10.161.235200 OK 243 kB URL HTTP/2 thedome.sa/assets/images/gallery.jpg
IP 170.10.161.235:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1440x814, components 3\012- data
Size 243 kB (242699 bytes)
Hash 78ebc249505840ca323664e0d1bbc4ec
accc55d7c3efa6362e9a91e99a58905ae3dbf6bc
5fada65fc5f93722bc03d768d2387a47e632acf823ed7297f856c34432e580e7
GET /assets/images/gallery.jpg HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "3b40b-57fff98c52c00"
accept-ranges: bytes
content-length: 242699
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/jpeg
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/slide_facilities.jpg
170.10.161.235200 OK 210 kB URL HTTP/2 thedome.sa/assets/images/slide_facilities.jpg
IP 170.10.161.235:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2560x1440, components 3\012- data
Size 210 kB (210223 bytes)
Hash 18b9a63371226ade54f211847accdf0d
1fc68201bca00566b241fd17c1b688e67e03605e
d82b11d9e7cd1f713da1a3a11f46003746c1283b421bd7ef18460cd57d86ac6a
GET /assets/images/slide_facilities.jpg HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Feb 2019 10:27:14 GMT
etag: "3352f-58214739a4480"
accept-ranges: bytes
content-length: 210223
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/jpeg
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/the-ball.jpg
170.10.161.235200 OK 291 kB URL HTTP/2 thedome.sa/assets/images/the-ball.jpg
IP 170.10.161.235:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1440x960, components 3\012- data
Size 291 kB (291394 bytes)
Hash 3ea6bf65a4127d07887a7050a62b30e6
f099475873deaaac24709ad38d7e96daf951ee21
4d4e47b2530a6fde72a10463ab725532205b0727bfa889d3d54d02d84ef1216e
GET /assets/images/the-ball.jpg HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "47242-57fff98c52c00"
accept-ranges: bytes
content-length: 291394
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/jpeg
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/video_image_mbc.jpg
170.10.161.235200 OK 28 kB URL HTTP/2 thedome.sa/assets/images/video_image_mbc.jpg
IP 170.10.161.235:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Hash a5e6580f4b632fb7548396f3563e4898
9a70d15fe2cca6204bce7ee9267f974b4259fe09
8cb13b34ebc0357736807918a39cb0a63fe26fece94a33c53031a7fb020b7a9c
GET /assets/images/video_image_mbc.jpg HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 27 Jan 2019 07:12:36 GMT
etag: "6cc9-5806b48df4100"
accept-ranges: bytes
content-length: 27849
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/jpeg
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/video_image_ready.jpg
170.10.161.235200 OK 77 kB URL HTTP/2 thedome.sa/assets/images/video_image_ready.jpg
IP 170.10.161.235:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Hash f54d1a3caa64858a0d30f44d783488b9
42d2f661de13d87bc6d361f7ab7e4f3ba7d0de7b
5b10840c7af7a36a5947fdc2a60f01cd48d0af23ba01d948f548479fbf597297
GET /assets/images/video_image_ready.jpg HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 27 Jan 2019 07:12:31 GMT
etag: "12d37-5806b4892f5c0"
accept-ranges: bytes
content-length: 77111
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/jpeg
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/air_dome.jpg
170.10.161.235200 OK 270 kB URL HTTP/2 thedome.sa/assets/images/air_dome.jpg
IP 170.10.161.235:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1440x1080, components 3\012- data
Size 270 kB (270230 bytes)
Hash e4e2662c94397dfbdb298063116a9c94
3bd6665b872b0d6edb47cca585dad36c6b5d7af2
5b0f89522d9ef2075992e2e489f7ac018dff40e1e59948fe558b7bf749aac4ac
GET /assets/images/air_dome.jpg HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "41f96-57fff98c52c00"
accept-ranges: bytes
content-length: 270230
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/jpeg
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:10:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
thedome.sa/assets/images/video_image_qadsiah.jpg
170.10.161.235200 OK 113 kB URL HTTP/2 thedome.sa/assets/images/video_image_qadsiah.jpg
IP 170.10.161.235:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size 113 kB (113225 bytes)
Hash 0c15c7963685abe66d1f839ff9f147d4
8686737d7d263c433480208dc4b28ed002a85821
e0b415bd2093d17adb66a89445ffed93b42afefe784db6d0f452a78b00b7eccf
GET /assets/images/video_image_qadsiah.jpg HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 27 Jan 2019 07:12:19 GMT
etag: "1ba49-5806b47dbdac0"
accept-ranges: bytes
content-length: 113225
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/jpeg
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/video_image_event.jpg
170.10.161.235200 OK 96 kB URL HTTP/2 thedome.sa/assets/images/video_image_event.jpg
IP 170.10.161.235:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Hash 8da4e43105d53d8e389f67182075970e
87dcee6605aafb34d52d5b44790eba324c327152
42db82b1765e96782a479b15856955db5026858441e1dc784761da61453522e9
GET /assets/images/video_image_event.jpg HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 27 Jan 2019 07:12:39 GMT
etag: "17784-5806b490d07c0"
accept-ranges: bytes
content-length: 96132
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/jpeg
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/video_image_saudi_players.jpg
170.10.161.235200 OK 196 kB URL HTTP/2 thedome.sa/assets/images/video_image_saudi_players.jpg
IP 170.10.161.235:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size 196 kB (196525 bytes)
Hash 310e3df00fc0054eb98eb448f918ff69
c28c1b88b1626a946423d759c2a62ae1dca88b52
c3130a0b8553266a5afaa3b8eea9f364f8de4cb5391f289a3d55b7815b1a3f78
GET /assets/images/video_image_saudi_players.jpg HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 27 Jan 2019 07:12:34 GMT
etag: "2ffad-5806b48c0bc80"
accept-ranges: bytes
content-length: 196525
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/jpeg
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/loader-white1.gif
170.10.161.235200 OK 2.5 kB URL HTTP/2 thedome.sa/assets/images/loader-white1.gif
IP 170.10.161.235:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /assets/images/loader-white1.gif HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/unite-gallery.css
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "9f1-57fff98c52c00"
accept-ranges: bytes
content-length: 2545
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/gif
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/css/images/slider_arrow_left.png
170.10.161.235200 OK 1.8 kB URL HTTP/2 thedome.sa/assets/css/images/slider_arrow_left.png
IP 170.10.161.235:0
File type PNG image data, 35 x 105, 8-bit/color RGBA, interlaced\012- data
Hash d9853aec7393053b6410730670ed0abc
d0d9e292d743af1b196c3db004d5849514082319
15a6ce094e72446d996e5d2c1fe1b47ac71465d977d8b0f21e1de7b5defb0784
GET /assets/css/images/slider_arrow_left.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/alexis.css
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:43:59 GMT
etag: "723-57fff98b5e9c0"
accept-ranges: bytes
content-length: 1827
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/css/images/slider_arrow_right.png
170.10.161.235200 OK 1.9 kB URL HTTP/2 thedome.sa/assets/css/images/slider_arrow_right.png
IP 170.10.161.235:0
File type PNG image data, 35 x 105, 8-bit/color RGBA, interlaced\012- data
Hash d3717b53c2c72e98ee97dc4b627fe1a0
b0af91d0d1779e00328e1c21a530f190da10141f
7f9f24a255830689fe8f512a758c654d0332805742755107e3676fc69daef1cf
GET /assets/css/images/slider_arrow_right.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/alexis.css
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:43:59 GMT
etag: "763-57fff98b5e9c0"
accept-ranges: bytes
content-length: 1891
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/loader-black1.gif
170.10.161.235200 OK 5.9 kB URL HTTP/2 thedome.sa/assets/images/loader-black1.gif
IP 170.10.161.235:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 6cd50ea1545c86de5510467dd91706e8
117ff7b3a5eb15d27f863db5a262711481a82920
3acce3eab6d188fd2831148afa5be33e85be213f3608307be2227999e16a1fcf
GET /assets/images/loader-black1.gif HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/unite-gallery.css
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Feb 2019 09:51:07 GMT
etag: "16df-58213f27078c0"
accept-ranges: bytes
content-length: 5855
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/gif
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/button-close.png
170.10.161.235200 OK 9.9 kB URL HTTP/2 thedome.sa/assets/images/button-close.png
IP 170.10.161.235:0
File type PNG image data, 64 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash fcf53d4d1818343938dbdab19baa4bbe
922bd9557171222ae21a96445c7569920355b998
91f16a948b402e0c1d092bcca1c3d49c30161e28db3ba9067df6a6e1bf98d702
GET /assets/images/button-close.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/unite-gallery.css
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "269e-57fff98c52c00"
accept-ranges: bytes
content-length: 9886
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/play-button-square.png
170.10.161.235200 OK 4.6 kB URL HTTP/2 thedome.sa/assets/images/play-button-square.png
IP 170.10.161.235:0
File type PNG image data, 86 x 132, 8-bit/color RGBA, non-interlaced\012- data
Hash 7bd68082fddf247f4d9ee7bad7a9eae2
244df54b710bca4cdb5734e3d85c2e75ca52720e
0451a9460d328f3408a63b9e94654b4469dc378fe58b1fbcd2db782bf5c8aa8a
GET /assets/images/play-button-square.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/unite-gallery.css
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "121d-57fff98c52c00"
accept-ranges: bytes
content-length: 4637
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/css/images/button_fullscreen.png
170.10.161.235200 OK 1.4 kB URL HTTP/2 thedome.sa/assets/css/images/button_fullscreen.png
IP 170.10.161.235:0
File type PNG image data, 35 x 140, 8-bit/color RGBA, interlaced\012- data
Hash 13520af3741c4d49fed321a5b2f66722
13898e1d2d09a347301168a512741178f5b1fad9
83c2d247a39d12ed724656d1f72d40eac671a4c0a02a0baa13d5d8a6e00ee4c6
GET /assets/css/images/button_fullscreen.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/alexis.css
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:43:59 GMT
etag: "55f-57fff98b5e9c0"
accept-ranges: bytes
content-length: 1375
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/css/controllers/whiteControllers/prev-off.png
170.10.161.235200 OK 1.2 kB URL HTTP/2 thedome.sa/assets/css/controllers/whiteControllers/prev-off.png
IP 170.10.161.235:0
File type PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 307e30ed227f80e4f3baaf25d8e78086
c6e012abfd0476f57efedee4f52bfe5364cade07
dfb6ab85defbd0ce172a059d2752a57977943af9f9b29f3891ada535e2af5b57
GET /assets/css/controllers/whiteControllers/prev-off.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/audio3_html5.css
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "4df-57fff98c52c00"
accept-ranges: bytes
content-length: 1247
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/css/controllers/whiteControllers/play-off.png
170.10.161.235200 OK 1.2 kB URL HTTP/2 thedome.sa/assets/css/controllers/whiteControllers/play-off.png
IP 170.10.161.235:0
File type PNG image data, 25 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 123f588c6999c7af4143ddb81ea2db62
eb009f84cc13d878150dcee68bfc04c2d6c546b4
c63b03fe1639488dc5531e421d360f83f23ba308f6b559685ba45a5fd0aafe1f
GET /assets/css/controllers/whiteControllers/play-off.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/audio3_html5.css
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "4a6-57fff98c52c00"
accept-ranges: bytes
content-length: 1190
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/css/controllers/whiteControllers/next-off.png
170.10.161.235200 OK 1.2 kB URL HTTP/2 thedome.sa/assets/css/controllers/whiteControllers/next-off.png
IP 170.10.161.235:0
File type PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ed532cf76c8ea678acff28d4199262b
9fd6071816eabd82a6dc35a5ebbeee25e38a00d2
5fa92ef8f0ad6d126124585e646b3ddfe2c91467bac7fef4b711e411e086ce6b
GET /assets/css/controllers/whiteControllers/next-off.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/audio3_html5.css
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "4d6-57fff98c52c00"
accept-ranges: bytes
content-length: 1238
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/css/controllers/whiteControllers/closeButOFF.png
170.10.161.235200 OK 1.0 kB URL HTTP/2 thedome.sa/assets/css/controllers/whiteControllers/closeButOFF.png
IP 170.10.161.235:0
File type PNG image data, 19 x 13, 8-bit/color RGBA, non-interlaced\012- data
Hash aa7dcea3c59e7bb4236ae5fa10d77d60
d2ee49dfebfdf560b9ca5ffdf91b0e844ce6b0d6
2e288b75669f48fe1345066683adc7f1b3b2c41c9cc0b38f1b330ffc83208589
GET /assets/css/controllers/whiteControllers/closeButOFF.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/audio3_html5.css
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "408-57fff98c52c00"
accept-ranges: bytes
content-length: 1032
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/css/controllers/whiteControllers/openButOFF.png
170.10.161.235200 OK 1.0 kB URL HTTP/2 thedome.sa/assets/css/controllers/whiteControllers/openButOFF.png
IP 170.10.161.235:0
File type PNG image data, 21 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 6d86ccabeb3c977ca5542e58fbdf3558
4df08fd1b28a25e2e177985df6c6ccc6dda99b39
3630239f2f795c38bc7514acec06aad4bdda742e1a8eecfe7ff0504584d3329d
GET /assets/css/controllers/whiteControllers/openButOFF.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/audio3_html5.css
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "40e-57fff98c52c00"
accept-ranges: bytes
content-length: 1038
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/css/controllers/whiteControllers/shuffle-off.png
170.10.161.235200 OK 1.1 kB URL HTTP/2 thedome.sa/assets/css/controllers/whiteControllers/shuffle-off.png
IP 170.10.161.235:0
File type PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash dac1b09a6c77baf85bed816f3046845d
7210458f0fcc5b7f3dfc571db28863fccf9f70fd
7a70707192fa91bce8c6e6599db740038893e0d1bd2b17614aee250cd6b5ccbc
GET /assets/css/controllers/whiteControllers/shuffle-off.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/audio3_html5.css
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "449-57fff98c52c00"
accept-ranges: bytes
content-length: 1097
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/css/controllers/whiteControllers/pause-off.png
170.10.161.235200 OK 1.0 kB URL HTTP/2 thedome.sa/assets/css/controllers/whiteControllers/pause-off.png
IP 170.10.161.235:0
File type PNG image data, 25 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash d4eceb4ba57918370f5c820f44f45143
ae50bb4044c9b31dc0ef45d49a7488189b5ce455
7bd2475467338e327d8258db3730b2aeca08260c9730baa78a08abacd1081a1e
GET /assets/css/controllers/whiteControllers/pause-off.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/audio3_html5.css
Cookie: lang_code=ar; cookie_current_img_no=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "411-57fff98c52c00"
accept-ranges: bytes
content-length: 1041
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12104
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 10:10:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12104
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 10:10:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12104
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 10:10:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12104
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 10:10:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12104
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 10:10:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: c6c3e3dc-c9a2-4fda-a83b-cdd6ae81166b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uyE9CoAMF6Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc4-2c8940405044071a082ee678;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qykE_oaoqqPTgqGnfUo74mH29IOS97b5sZb_3VmB9yW7KUiJ1a7dnA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 18:58:06 GMT
age: 54735
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jM-fTqLsmU3c_gc9Wle-lvCwXelA9Sid9axtzJQDsfOHv23yUbKsBw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:43:35 GMT
age: 41206
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
maps.gstatic.com/maps-api-v3/embed/js/51/2/init_embed.js
142.250.74.3200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/2/init_embed.js
IP 142.250.74.3:0
File type ASCII text, with very long lines (2669)
Hash ed2723b79bc5eab77a130d1494114fc3
868e33258f37face8b5d0fe4420632505c1d25be
4707d296c9f44bffe17c3b0a98ea5ce6f0e83cf700ba691ede674daf6f6b4443
GET /maps-api-v3/embed/js/51/2/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69315
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 21:46:01 GMT
expires: Thu, 30 Nov 2023 21:46:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 22:32:00 GMT
content-type: text/javascript
age: 44660
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80EHboAMFtmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
age: 44301
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash acffcb88ce68b2d70c9c046a7b5a4aa8
cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1
692d782ac1d812de6dadbcfe46034b6b5d8bbd586e56beedd96dc4d65445dd4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12035
x-amzn-requestid: 2711a135-b390-43ef-9e95-92438058bc27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz81FIpIAMFs9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-742f7f293df074340ab6a217;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ygs-Qd7UU_k4t4_breZTyqkHqGjJzlH1UMa9ncww5_IGpJ1n781jfg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:51:55 GMT
age: 44306
etag: "cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
thedome.sa/audio/website_bg_music.mp3
170.10.161.235206 Partial Content 1.4 MB URL HTTP/2 thedome.sa/audio/website_bg_music.mp3
IP 170.10.161.235:0
File type Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, JntStereo\012- data
Size 1.4 MB (1396074 bytes)
Hash c617102bb0f227b0658a77e976b7d72a
fe47a84f1552c00119eca6f3efa3319f3a85df42
2828ba9a7ca12dbf98fbe5631a32137284787569860bc6f59ca4acfb4d073503
Analyzer Verdict Alert fortinet Phishing
GET /audio/website_bg_music.mp3 HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar; cookie_current_img_no=0
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
last-modified: Mon, 11 Feb 2019 10:33:05 GMT
etag: "1a70ec-5819bd579da40"
accept-ranges: bytes
content-length: 1732844
vary: User-Agent
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
content-range: bytes 0-1732843/1732844
content-type: audio/mpeg
date: Thu, 01 Dec 2022 10:10:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 01 Dec 2022 08:41:08 GMT
expires: Thu, 01 Dec 2022 10:41:08 GMT
cache-control: public, max-age=7200
age: 5353
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:10:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=1744885365&t=pageview&_s=1&dl=https%3A%2F%2Fthedome.sa%2F&ul=en-us&de=UTF-8&dt=TheDome&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=2104981561&gjid=1610926874&cid=1584481276.1669889420&tid=UA-145017801-2&_gid=1332367112.1669889420&_r=1>m=2oubs0&z=1305112364
142.250.74.110200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1744885365&t=pageview&_s=1&dl=https%3A%2F%2Fthedome.sa%2F&ul=en-us&de=UTF-8&dt=TheDome&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=2104981561&gjid=1610926874&cid=1584481276.1669889420&tid=UA-145017801-2&_gid=1332367112.1669889420&_r=1>m=2oubs0&z=1305112364
IP 142.250.74.110:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j98&a=1744885365&t=pageview&_s=1&dl=https%3A%2F%2Fthedome.sa%2F&ul=en-us&de=UTF-8&dt=TheDome&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=2104981561&gjid=1610926874&cid=1584481276.1669889420&tid=UA-145017801-2&_gid=1332367112.1669889420&_r=1>m=2oubs0&z=1305112364 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://thedome.sa
Connection: keep-alive
Referer: https://thedome.sa/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://thedome.sa
date: Thu, 01 Dec 2022 10:10:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
thedome.sa/assets/images/main_banner.jpg
170.10.161.235200 OK 258 kB URL HTTP/2 thedome.sa/assets/images/main_banner.jpg
IP 170.10.161.235:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1440x810, components 3\012- data
Size 258 kB (258386 bytes)
Hash e8c2887a7aab15675eb051496bc55399
f89ec57d951095500d44d532aef765f599b92e48
9c0ab17af092aa294ae191b51540b3f7376dc0595cc2aef9559eb846eb534eba
GET /assets/images/main_banner.jpg HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar; cookie_current_img_no=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Jan 2019 22:44:00 GMT
etag: "3f152-57fff98c52c00"
accept-ranges: bytes
content-length: 258386
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/jpeg
date: Thu, 01 Dec 2022 10:10:21 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/ico/favico.png
170.10.161.235200 OK 2.2 kB URL HTTP/2 thedome.sa/assets/images/ico/favico.png
IP 170.10.161.235:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f6478c73bee8b2d6eaa9669272f3c58
6ad70e0ee00bdd3917938358e7dd0714c2576066
3b7f5419202b180ae73bd2fa4564b8029085b7cc96b306055811be6205469d2f
GET /assets/images/ico/favico.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar; cookie_current_img_no=0; cookie_timePlayed=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 09 Jan 2020 13:09:59 GMT
etag: "88c-59bb4b9eecee2"
accept-ranges: bytes
content-length: 2188
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:21 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type gzip compressed data, max compression\012- data
Hash 2c5e576c986fa3babe2c32f4a7ca3f3c
2f9f0aaf63ec000b07fc073c26fddfb6ab4e4466
f560931ec3844307c32fb2b1503925261fc99f30ecd22d27664b104e13e5567c
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 52589
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:56 GMT
expires: Thu, 30 Nov 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 52587
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/player_api
216.58.207.206200 OK 0 B URL HTTP/2 www.youtube.com/player_api
IP 216.58.207.206:0
GET /player_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Thu, 01 Dec 2022 10:10:21 GMT
date: Thu, 01 Dec 2022 10:10:21 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=pK-8GASHm8g; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=xE-QNzICMe8; Domain=.youtube.com; Expires=Tue, 30-May-2023 10:10:21 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+998; expires=Sat, 30-Nov-2024 10:10:21 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
thedome.sa/d1azc1qln24ryf.cloudfront.net/114779/Socicon/style-cf39e1.css?rd5re8
170.10.161.235404 Not Found 0 B URL HTTP/2 thedome.sa/d1azc1qln24ryf.cloudfront.net/114779/Socicon/style-cf39e1.css?rd5re8
IP 170.10.161.235:0
Analyzer Verdict Alert fortinet Phishing
GET /d1azc1qln24ryf.cloudfront.net/114779/Socicon/style-cf39e1.css?rd5re8 HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/assets/css/style-rtl.css
Cookie: lang_code=ar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
vary: accept-language,accept-charset,User-Agent
accept-ranges: bytes
content-type: text/html; charset=utf-8
content-language: en
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/images/logo.png
170.10.161.235200 OK 0 B URL HTTP/2 thedome.sa/assets/images/logo.png
IP 170.10.161.235:0
GET /assets/images/logo.png HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Jan 2019 09:46:41 GMT
etag: "ecf7-58008dab5e240"
accept-ranges: bytes
content-length: 60663
vary: User-Agent
cache-control: max-age=3600, public
pragma: no-cache
expires: 0
content-type: image/png
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
d1azc1qln24ryf.cloudfront.net/114779/Socicon/style-cf.css?9ukd8d
54.230.245.93403 Forbidden 0 B URL HTTP/2 d1azc1qln24ryf.cloudfront.net/114779/Socicon/style-cf.css?9ukd8d
IP 54.230.245.93:0
GET /114779/Socicon/style-cf.css?9ukd8d HTTP/1.1
Host: d1azc1qln24ryf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 01 Dec 2022 10:10:19 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8xu_maBKo8AhApEfKgqx_NHP3IyjdNMbHofQ2l4VYrrghYTv7USI9w==
X-Firefox-Spdy: h2
thedome.sa/
170.10.161.235200 OK 0 B IP 170.10.161.235:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.2.34
set-cookie: lang_code=ar; expires=Sat, 31-Dec-2022 10:10:19 GMT; Max-Age=2592000; path=/
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=10, public
pragma: no-cache
expires: 0
content-type: text/html; charset=UTF-8
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/image-map-pro-editor-init-jquery.js
170.10.161.235200 OK 0 B URL HTTP/2 thedome.sa/assets/js/image-map-pro-editor-init-jquery.js
IP 170.10.161.235:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/image-map-pro-editor-init-jquery.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jun 2019 07:55:45 GMT
etag: "deea-58c85d6c00240-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-length: 18054
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/unitegallery.js
170.10.161.235200 OK 0 B URL HTTP/2 thedome.sa/assets/js/unitegallery.js
IP 170.10.161.235:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/unitegallery.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jun 2019 07:55:40 GMT
etag: "8fac8-58c85d673b700-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2
thedome.sa/assets/js/plugins.min.js
170.10.161.235200 OK 0 B URL HTTP/2 thedome.sa/assets/js/plugins.min.js
IP 170.10.161.235:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/plugins.min.js HTTP/1.1
Host: thedome.sa
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thedome.sa/
Cookie: lang_code=ar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jun 2019 07:55:35 GMT
etag: "642be-58c85d6276bc0-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: max-age=100, public
pragma: no-cache
expires: 0
content-type: application/javascript
date: Thu, 01 Dec 2022 10:10:19 GMT
server: Apache
X-Firefox-Spdy: h2