urlquery - report: support.uoh.sa/

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	Sent bytes	Received bytes	IP
fonts.gstatic.com (2)	0	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1003	82518	142.250.74.35
ocsp.sectigo.com (3)	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1020	2889	104.18.32.68
sw-themes.com (7)	369168	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2929	50146	162.144.217.30
ocsp.digicert.com (2)	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682	1594	93.184.220.29
content-signature-2.cdn.mozilla.net (1)	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413	5844	34.160.144.191
firefox.settings.services.mozilla.com (2)	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782	2374	34.102.187.140
push.services.mozilla.com (1)	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606	127	54.148.84.125
ocsp.pki.goog (5)	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1715	3500	142.250.74.131
img-getpocket.cdn.mozilla.net (4)	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2164	33046	34.120.237.76
support.uoh.sa (64)	0	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	27782	562497	40.114.227.126
r3.o.lencr.org (6)	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2028	5322	23.36.77.32
contile.services.mozilla.com (1)	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333	229	34.117.237.239
fonts.googleapis.com (1)	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	505	746	142.250.74.106

Scan Date	Severity	Indicator	Comment
2022-12-03	medium	support.uoh.sa/	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/themes/porto/fonts/fontawesome/fa-brands-400.woff2	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/themes/porto/fonts/fontawesome/fa-regular-400.woff2	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/themes/porto/fonts/fontawesome/fa-solid-900.woff2	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/themes/porto/js/libs/popper.min.js?ver=1.12.5	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/themes/porto/inc/lib/live-search/live-search.js?v (...)	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/themes/porto/js/bootstrap.js?ver=4.1.3	Phishing
2022-12-03	medium	support.uoh.sa/index.php?rest_route=/contact-form-7/v1/contact-forms/93/fee (...)	Phishing
2022-12-03	medium	support.uoh.sa/index.php?rest_route=/contact-form-7/v1/contact-forms/93/refill	Phishing
2022-12-03	medium	support.uoh.sa/	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/plugins/contact-form-7/includes/css/styles.css?ve (...)	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4	Phishing
2022-12-03	medium	support.uoh.sa/index.php?rest_route=/contact-form-7/v1/contact-forms/44/fee (...)	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/plugins/revslider/public/assets/js/rbtools.min.js (...)	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/uploads/porto_styles/bootstrap_rtl.css?ver=6.1.6	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/themes/porto/style_rtl.css?ver=6.1.1	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/themes/porto/js/libs/jquery.cookie.min.js?ver=1.4.1	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/plugins/contact-form-7/includes/swv/js/index.js?v (...)	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/themes/porto/style.css?ver=6.1.1	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/themes/porto/js/libs/owl.carousel.min.js?ver=2.3.4	Phishing
2022-12-03	medium	support.uoh.sa/index.php?rest_route=/contact-form-7/v1/contact-forms/155/refill	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/themes/porto/js/libs/kute.min.js	Phishing
2022-12-03	medium	support.uoh.sa/wp-includes/css/dist/block-library/style-rtl.min.css?ver=6.1.1	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/plugins/js_composer/assets/js/dist/js_composer_fr (...)	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/plugins/js_composer/assets/lib/bower/skrollr/dist (...)	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/plugins/js_composer/assets/css/js_composer.min.cs (...)	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/themes/porto/js/libs/jquery.magnific-popup.min.js (...)	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/plugins/wysija-newsletters/css/validationEngine.j (...)	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/plugins/contact-form-7/includes/css/styles-rtl.cs (...)	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/themes/porto/js/libs/jquery.matchHeight.min.js	Phishing
2022-12-03	medium	support.uoh.sa/index.php?rest_route=/contact-form-7/v1/contact-forms/155/fe (...)	Phishing
2022-12-03	medium	support.uoh.sa/index.php?rest_route=/contact-form-7/v1/contact-forms/44/refill	Phishing
2022-12-03	medium	support.uoh.sa/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/themes/uoh-child/style.css?ver=6.1.1	Phishing
2022-12-03	medium	support.uoh.sa/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.4	Phishing

Date	UQ / IDS / BL	URL	IP
2023-05-29 15:07:21 UTC	0 - 0 - 46	ipo.uoh.sa/	40.114.227.126
2023-05-06 05:07:20 UTC	0 - 0 - 46	ipo.uoh.sa/	40.114.227.126
2023-05-04 21:06:39 UTC	0 - 0 - 1	forms.uoh.sa/	40.114.227.126
2023-05-03 10:06:34 UTC	0 - 0 - 1	forms.uoh.sa/	40.114.227.126
2023-05-02 19:07:17 UTC	0 - 0 - 37	ipo.uoh.sa/	40.114.227.126

Date	UQ / IDS / BL	URL	IP
2023-06-02 02:17:55 UTC	0 - 1 - 0	store.jbhrah.org.sa/?a=ali	104.211.225.167
2023-06-02 02:08:56 UTC	0 - 1 - 0	updates.macrium.com/reflect/v5.0/reflectdl.exe	52.136.198.85
2023-06-02 01:47:09 UTC	0 - 1 - 0	your-google-tv.com/down/ke.exe	104.42.225.122
2023-06-02 01:15:28 UTC	0 - 0 - 2	dd365w.com/	20.205.118.3
2023-06-02 01:00:47 UTC	0 - 0 - 0	secure.smartroom.com/	20.41.39.188

Date	UQ / IDS / BL	URL	IP
2023-05-29 15:07:21 UTC	0 - 0 - 46	ipo.uoh.sa/	40.114.227.126
2023-05-06 05:07:20 UTC	0 - 0 - 46	ipo.uoh.sa/	40.114.227.126
2023-05-04 21:06:39 UTC	0 - 0 - 1	forms.uoh.sa/	40.114.227.126
2023-05-03 10:06:34 UTC	0 - 0 - 1	forms.uoh.sa/	40.114.227.126
2023-05-02 19:07:17 UTC	0 - 0 - 37	ipo.uoh.sa/	40.114.227.126

Date	UQ / IDS / BL	URL	IP
2023-04-04 08:06:53 UTC	0 - 0 - 35	support.uoh.sa/	40.114.227.126
2023-03-29 18:06:50 UTC	0 - 0 - 32	support.uoh.sa/	40.114.227.126
2023-03-23 19:06:47 UTC	0 - 0 - 31	support.uoh.sa/	40.114.227.126
2022-09-16 19:06:12 UTC	0 - 0 - 37	support.uoh.sa/	40.114.227.126
2022-09-09 21:06:08 UTC	0 - 0 - 33	support.uoh.sa/	40.114.227.126

HTTP Transactions (99)

Request	Response
GET / HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	40.114.227.126 HTTP/1.1 301 Moved Permanently Content-Type: text/html Server: nginx Date: Sat, 03 Dec 2022 22:06:39 GMT Content-Length: 162 Connection: keep-alive Location: https://support.uoh.sa/ --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 162 Md5: 4f8e702cc244ec5d4de32740c0ecbd97 Sha1: 3adb1f02d5b6054de0046e367c1d687b6cdf7aff Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a Blocklists: - fortinet: Phishing
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950" Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12407 Expires: Sun, 04 Dec 2022 01:33:26 GMT Date: Sat, 03 Dec 2022 22:06:39 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 3bbb845b153026fc5332dd4506585b57 Sha1: 3cad200fac28fd00f34ce6ef79373e661e188743 Sha256: 6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 6331 Cache-Control: max-age=137404 Date: Sat, 03 Dec 2022 22:06:39 GMT Etag: "638b2570-1d7" Expires: Mon, 05 Dec 2022 12:16:43 GMT Last-Modified: Sat, 03 Dec 2022 10:31:12 GMT Server: ECS (ska/F708) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 67e9370f1bf3e4946a01f346eeae8966 Sha1: aaab391d1134302d718de7a0d5edbedf884633e6 Sha256: 27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3" Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18013 Expires: Sun, 04 Dec 2022 03:06:52 GMT Date: Sat, 03 Dec 2022 22:06:39 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1ea206ac3c440825741687351f8c6e4e Sha1: 2f38dafd8c43dcce2411a0590bc5c02cd6286735 Sha256: 7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: s9h633rh8Ij99qYeDA+AQP1axWTbPpWGYeb27hbfsfaXELGWKIQuCdqQBQGhV/54BTgIoupZHHA= x-amz-request-id: H7J030W52R8SSKZ4 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sat, 03 Dec 2022 21:47:17 GMT age: 1162 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 9ebddc2b260d081ebbefee47c037cb28 Sha1: 492bad62a7ca6a74738921ef5ae6f0be5edebf39 Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sat, 03 Dec 2022 21:18:17 GMT cache-control: public,max-age=3600 age: 2902 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 30db107dcf4380cef05efea409c2e6a3 Sha1: 96e6a306fbc07299aba64e5c14e2bfca35872fa9 Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Sat, 03 Dec 2022 22:06:39 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sat, 03 Dec 2022 21:11:18 GMT cache-control: public,max-age=3600 age: 3322 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 6268 Cache-Control: max-age=132279 Date: Sat, 03 Dec 2022 22:06:40 GMT Etag: "638b11ab-1d7" Expires: Mon, 05 Dec 2022 10:51:19 GMT Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT Server: ECS (ska/F708) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: a151c326c67e1abb747847c1427db76f Sha1: 80885d30ef8ba867bf33c40b861976958a27493a Sha256: de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 1eWlZWNpkqkOsLlFjBZXbQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	54.148.84.125 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: /7EZ4BQsnmr1Yth4R8RmxYySv3g= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2019/05/icon-1.png HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/png server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 483 x-accel-version: 0.01 last-modified: Wed, 11 Aug 2021 10:40:52 GMT etag: "1e3-5c94640a4eb66" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 70 x 60, 8-bit colormap, non-interlaced\012- data Size: 483 Md5: b3d21032997f702bbaea6b898d003eda Sha1: 90c5189ac81d2b4af9c78ca58b0fd0e86ebfbc92 Sha256: 55427dea65168bdf095c594b85c9c6a3fcd61703e711c2195595d6694f42c48a
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Dec 2022 22:06:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 98fe7e5fd6b778bcdcc63028c3a49fbd Sha1: 06b34160c344526fbe14ce41445b9fe76c0a878d Sha256: d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
GET /wp-content/themes/porto/images/logo/logo_black.png HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/png server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 3437 last-modified: Tue, 03 Aug 2021 22:36:16 GMT etag: "6109c4e0-d6d" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 111 x 54, 8-bit/color RGBA, non-interlaced\012- data Size: 3437 Md5: e2474737387de11ed767cfb2761546a2 Sha1: ac943adb78174e88b2ea7c80362ffc6b096c8552 Sha256: 79b3ff251b07aae4ac9223e56448458401e2a0f4619cf6a28213795f7cf6730a
GET /wp-content/themes/uoh-child/style_rtl.css?ver=6.1.1 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 0 x-accel-version: 0.01 last-modified: Wed, 11 Aug 2021 09:00:14 GMT etag: "0-5c944d8b7e6eb" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2019/05/icon-3.png HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/png server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 662 x-accel-version: 0.01 last-modified: Wed, 11 Aug 2021 10:40:53 GMT etag: "296-5c94640b1ad0c" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 70 x 60, 8-bit colormap, non-interlaced\012- data Size: 662 Md5: 797df4733e9a5c86affc673f0b934b30 Sha1: 57fc680e71c092b70a746d27b6e0cc0a924cafa2 Sha256: f2f690c10b022b34a223cc01878acc34d1968ade48ef67958b9a46d23214281f
GET /wp-content/uploads/2019/05/icon-4.png HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/png server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 556 x-accel-version: 0.01 last-modified: Wed, 11 Aug 2021 10:40:54 GMT etag: "22c-5c94640b72b4e" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 70 x 60, 8-bit colormap, non-interlaced\012- data Size: 556 Md5: 88b7d6502597a4beced1e7c95b1180c4 Sha1: e67cdfd084425cee233bd01e5970eeef4119312a Sha256: 65410c245a35231d07fc9a6d6d539605a0cc31fca99a4345b1e5865982b6cbbd
GET /wp-content/uploads/2019/05/icon-2.png HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/png server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 834 x-accel-version: 0.01 last-modified: Wed, 11 Aug 2021 10:40:53 GMT etag: "342-5c94640ac55d9" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 70 x 60, 8-bit colormap, non-interlaced\012- data Size: 834 Md5: 99c265a9b9d57147a30ee88877577984 Sha1: 2e76a6dd11446d8d4d19128054c7158b95801523 Sha256: 5c77690d2e0872c84b897b46d5575f4a3f0fcd411bf8bb4ec2763494fdad39f0
GET /wp-content/uploads/2019/05/client-1.jpg HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 3398 last-modified: Wed, 11 Aug 2021 10:40:59 GMT etag: "6113a93b-d46" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x120, components 3\012- data Size: 3398 Md5: dab9966956adf3e4d48ed67e1ee83f04 Sha1: 6aae57d8aa3d5a151f2566111cdd480eec39cdb5 Sha256: bc08ff8ca8312e0f79b2e76cca804f08b7c6603d62042354aa44137523652f6c
GET /wp-content/uploads/2019/05/client-2.jpg HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 3994 last-modified: Wed, 11 Aug 2021 10:40:59 GMT etag: "6113a93b-f9a" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x120, components 3\012- data Size: 3994 Md5: 2d823a2e2979921452fe643e92c01eb1 Sha1: 09d86d5c2c6b3e60f7e3b965c19425c161d60f1d Sha256: ffa998bcf94db0d87d7a814c4481cdba29bb251028371c56c2d905fc32bf00a3
GET /wp-content/uploads/2019/05/blog-1-450x231.jpg HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 17360 last-modified: Wed, 11 Aug 2021 10:41:04 GMT etag: "6113a940-43d0" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1], baseline, precision 8, 450x231, components 3\012- data Size: 17360 Md5: 902cb7baaeaf0589d0587c5ac0e8ca61 Sha1: ae67ee20de04094dc24ed25faa81997dac262f4d Sha256: 1cbbc3cd5c6821ea1145cf8bf6b0ba2e7e80869558b4944650bf3452cbd75082
GET /wp-content/uploads/2019/05/icon-5.png HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/png server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 810 x-accel-version: 0.01 last-modified: Wed, 11 Aug 2021 10:40:54 GMT etag: "32a-5c94640bc8280" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 70 x 60, 8-bit colormap, non-interlaced\012- data Size: 810 Md5: 3d2b9e59c6665b6d7757fc79d7f28d83 Sha1: f8e33f33d1dcfaa09d1bbe6bb4805c09e76c0cde Sha256: 46bd431513d520b35a79bc05ade9d7788e44f402ca7c0132033f8dc6b3ad6018
GET /wp-content/uploads/2019/05/icon-6.png HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/png server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 1080 last-modified: Wed, 11 Aug 2021 10:40:54 GMT etag: "6113a936-438" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 70 x 60, 8-bit colormap, non-interlaced\012- data Size: 1080 Md5: 226a5a259efb7903b2b1d9ceec1f876d Sha1: 3481f642f365e8098d489543abf237a68696b3ef Sha256: 584d01e1acca6511b2a62809ba41ae2613b23c7ce81a1f515461c2af23777a6a
GET /wp-content/uploads/2019/05/blog-2-450x231.jpg HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 21259 last-modified: Wed, 11 Aug 2021 10:41:06 GMT etag: "6113a942-530b" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1], baseline, precision 8, 450x231, components 3\012- data Size: 21259 Md5: 75ee256c2511749bd175c81beb525ab5 Sha1: b2c6494414fb2d081862cea3a42b4386454ad814 Sha256: 59a554af1d6b0e5c29019583fbdb96087be81dc5de733112defaef60e528eaf2
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Dec 2022 22:06:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 98fe7e5fd6b778bcdcc63028c3a49fbd Sha1: 06b34160c344526fbe14ce41445b9fe76c0a878d Sha256: d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Dec 2022 22:06:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: baaba92c2ccd740f080a25a9ea5cb3ad Sha1: 3322d5a9fb0b3a2ec83247eac9865234cbcefece Sha256: 5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
GET /wp-content/themes/porto/fonts/fontawesome/fa-brands-400.woff2 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://support.uoh.sa/wp-content/themes/porto/css/plugins_rtl.css?ver=6.1.1 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: font/woff2 server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 77400 last-modified: Tue, 03 Aug 2021 22:36:16 GMT etag: "6109c4e0-12e58" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 77400, version 331.17301\012- data Size: 77400 Md5: cac68c831145804808381a7032fdc7c2 Sha1: 62584b9868428fd75af3fc5ee2f9918dda428be5 Sha256: 1c87d2b26de7d55c66037916bbb4cba6c791da0e2adfa378332678ff13e12d9d Blocklists: - fortinet: Phishing
GET /wp-content/themes/porto/fonts/fontawesome/fa-regular-400.woff2 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://support.uoh.sa/wp-content/themes/porto/css/plugins_rtl.css?ver=6.1.1 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: font/woff2 server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 13600 last-modified: Tue, 03 Aug 2021 22:36:16 GMT etag: "6109c4e0-3520" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 13600, version 331.17301\012- data Size: 13600 Md5: 3a3398a6ef60fc64eacf45665958342e Sha1: 5e4d45052f43e55aaad7f14d13280215e39aa45b Sha256: 245818b22d1ec4892fcb722437e32888e97f63a0316bd22aaf9f44cde01f4c91 Blocklists: - fortinet: Phishing
GET /wp-content/themes/porto/fonts/fontawesome/fa-solid-900.woff2 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://support.uoh.sa/wp-content/themes/porto/css/plugins_rtl.css?ver=6.1.1 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: font/woff2 server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT content-length: 80148 last-modified: Tue, 03 Aug 2021 22:36:16 GMT etag: "6109c4e0-13914" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 80148, version 331.17301\012- data Size: 80148 Md5: c500da19d776384ba69573ae6fe274e7 Sha1: 6290834672aba86d5b6c1c73b30b57c9c53996f7 Sha256: cfe3b7382e477059da11be2099914b94f0e2a4f08240c60542c376957b8d9658 Blocklists: - fortinet: Phishing
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Dec 2022 22:06:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: baaba92c2ccd740f080a25a9ea5cb3ad Sha1: 3322d5a9fb0b3a2ec83247eac9865234cbcefece Sha256: 5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://support.uoh.sa Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	142.250.74.35 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 44856 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 28 Nov 2022 18:52:41 GMT expires: Tue, 28 Nov 2023 18:52:41 GMT cache-control: public, max-age=31536000 age: 443639 last-modified: Mon, 15 Aug 2022 18:20:18 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Size: 44856 Md5: 565ce506190ad3af920b40baf1794cec Sha1: ad3cba5d06100e09449a864d3b5e58403b478b3d Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://support.uoh.sa Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	142.250.74.35 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 35764 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 02 Dec 2022 06:53:43 GMT expires: Sat, 02 Dec 2023 06:53:43 GMT cache-control: public, max-age=31536000 age: 141177 last-modified: Mon, 18 Jul 2022 19:06:36 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data Size: 35764 Md5: 60f23230f1a8d5c3b7d25b73f5b5ce23 Sha1: ed08ada85d017893b9bcb8224e99154c6708f5d2 Sha256: 22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Dec 2022 22:06:41 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: baaba92c2ccd740f080a25a9ea5cb3ad Sha1: 3322d5a9fb0b3a2ec83247eac9865234cbcefece Sha256: 5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
GET /wp-content/uploads/2019/05/seo-charts.png HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/png server: nginx date: Sat, 03 Dec 2022 22:06:41 GMT content-length: 15241 last-modified: Wed, 11 Aug 2021 10:40:50 GMT etag: "6113a932-3b89" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 496 x 403, 8-bit colormap, non-interlaced\012- data Size: 15241 Md5: 9867f28f39803f1a881ad6e51d1d31f7 Sha1: 048642a11b1c6364e28a48a0cbc828b9e603459c Sha256: 3605a6ed5849a23f2adb31e2a7863f69896f1a9719b5d767eba0c9b183c6c876
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	104.18.32.68 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Dec 2022 22:06:41 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Sat, 03 Dec 2022 19:12:54 GMT Expires: Sat, 10 Dec 2022 19:12:53 GMT Etag: "7ed273d589ac4c1f83baac118804d6a32d230be5" Cache-Control: max-age=593771,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb1 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 773f9c638dc2b517-OSL --- Additional Info --- Magic: data Size: 471 Md5: bb60bf0dfaa8d011c275ee94447b7db2 Sha1: 7ed273d589ac4c1f83baac118804d6a32d230be5 Sha256: b4ea14a02678a1ad9d4f5871dddc1c3af6eaa05325adca18751c2a6b4e51d288
GET /wp-content/themes/porto/js/libs/jquery.fitvids.min.js?ver=1.1 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:36:18 GMT etag: W/"6109c4e2-5e5" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (1509), with no line terminators Size: 1037 Md5: 2b2fffd59738e6245a3753058c149f63 Sha1: 8589922a8b8b44e4b7d0622606190a5197f65c2f Sha256: b740b3eac9e616018ae414743452a8f1d7654d37411e2c5e40f5f2fe888a598e
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	104.18.32.68 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Dec 2022 22:06:41 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Sat, 03 Dec 2022 19:12:54 GMT Expires: Sat, 10 Dec 2022 19:12:53 GMT Etag: "7ed273d589ac4c1f83baac118804d6a32d230be5" Cache-Control: max-age=593771,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb6 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 773f9c63bc23b521-OSL --- Additional Info --- Magic: data Size: 471 Md5: bb60bf0dfaa8d011c275ee94447b7db2 Sha1: 7ed273d589ac4c1f83baac118804d6a32d230be5 Sha256: b4ea14a02678a1ad9d4f5871dddc1c3af6eaa05325adca18751c2a6b4e51d288
GET /wp-content/uploads/2019/05/background-1.jpg HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/jpeg server: nginx date: Sat, 03 Dec 2022 22:06:41 GMT content-length: 223432 last-modified: Wed, 11 Aug 2021 10:40:56 GMT etag: "6113a938-368c8" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1970x641, components 3\012- data Size: 223432 Md5: 8150cff105de1a1f47f91c7f98aaef0b Sha1: 65b9730496f77692af924752a8041ac5676815c5 Sha256: 19dbb61d6e0589da594d2ccfb5b9355ceafcd5d7274516c75c09228b8d929ae7
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	104.18.32.68 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Dec 2022 22:06:41 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Sat, 03 Dec 2022 19:12:54 GMT Expires: Sat, 10 Dec 2022 19:12:53 GMT Etag: "7ed273d589ac4c1f83baac118804d6a32d230be5" Cache-Control: max-age=593771,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb6 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 773f9c637a26b4ed-OSL --- Additional Info --- Magic: data Size: 471 Md5: bb60bf0dfaa8d011c275ee94447b7db2 Sha1: 7ed273d589ac4c1f83baac118804d6a32d230be5 Sha256: b4ea14a02678a1ad9d4f5871dddc1c3af6eaa05325adca18751c2a6b4e51d288
GET /wp-content/themes/porto/js/libs/popper.min.js?ver=1.12.5 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:36:18 GMT etag: W/"6109c4e2-4a36" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (18998), with no line terminators Size: 6984 Md5: 9be23c4db52aaeeb014ca4184ed647f2 Sha1: 0a67e131b44bfb9006e121202649f45201e6a12d Sha256: a4a768f1381d46c61b385194550824f6887bd682530c850d51fc1c691329a68f Blocklists: - fortinet: Phishing
GET /porto_dummy/wp-content/uploads/images/logo-2.png HTTP/1.1 Host: sw-themes.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	162.144.217.30 HTTP/1.1 200 OK Content-Type: image/png Date: Sat, 03 Dec 2022 21:49:24 GMT Server: Apache Last-Modified: Mon, 12 Sep 2022 12:13:30 GMT Accept-Ranges: bytes Content-Length: 4116 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 390 x 73, 8-bit colormap, non-interlaced\012- data Size: 4116 Md5: 9f22eba61d7bf761e9374dd16ecfe68c Sha1: e8bdf423e9c3a4019cb9dd8901959dae53d24ae3 Sha256: 7597c3752fadb6843fa5326c1ba5edbe52e456d9daee84ce5c10d47e97b019b8
GET /porto_dummy/wp-content/uploads/images/logo-4.png HTTP/1.1 Host: sw-themes.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	162.144.217.30 HTTP/1.1 200 OK Content-Type: image/png Date: Sat, 03 Dec 2022 21:49:24 GMT Server: Apache Last-Modified: Mon, 12 Sep 2022 12:13:30 GMT Accept-Ranges: bytes Content-Length: 3207 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 390 x 73, 8-bit colormap, non-interlaced\012- data Size: 3207 Md5: 2caa60c78e0397515340a4afa4567c3f Sha1: 42a5bc2a26d1ff092d3284d0e209102f2f17536c Sha256: 43f0b3e7920f6370b89ecc2b2430b528907a4f46540d8f446f05cbb5ae43e67d
GET /porto_dummy/wp-content/uploads/images/logo-1.png HTTP/1.1 Host: sw-themes.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	162.144.217.30 HTTP/1.1 200 OK Content-Type: image/png Date: Sat, 03 Dec 2022 21:49:24 GMT Server: Apache Last-Modified: Mon, 12 Sep 2022 12:13:30 GMT Accept-Ranges: bytes Content-Length: 2305 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 390 x 73, 8-bit colormap, non-interlaced\012- data Size: 2305 Md5: 77c653a43330171f9d4f4f9d48a58980 Sha1: bec006bfec0e8b350dbfc90f9ea2e8981d9be7d0 Sha256: 09690163479325ff6cd27ae61dd48dd407c88d71b5307594812c6d6bc7e79e44
GET /porto_dummy/wp-content/uploads/images/logo-5.png HTTP/1.1 Host: sw-themes.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	162.144.217.30 HTTP/1.1 200 OK Content-Type: image/png Date: Sat, 03 Dec 2022 21:49:24 GMT Server: Apache Last-Modified: Mon, 12 Sep 2022 12:13:30 GMT Accept-Ranges: bytes Content-Length: 1699 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 390 x 73, 8-bit colormap, non-interlaced\012- data Size: 1699 Md5: d851c614b6ef945f7ee470120a541645 Sha1: 2d7e2557d99cba82ea35d354129f52eaa48432e9 Sha256: dd16e3444a65148bbe866df9eb60558d6d34ca09b0dc64341ecc8cb4f56b9de1
GET /porto_dummy/wp-content/uploads/images/logo-6.png HTTP/1.1 Host: sw-themes.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	162.144.217.30 HTTP/1.1 200 OK Content-Type: image/png Date: Sat, 03 Dec 2022 21:49:24 GMT Server: Apache Last-Modified: Mon, 12 Sep 2022 12:13:30 GMT Accept-Ranges: bytes Content-Length: 2316 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 390 x 73, 8-bit colormap, non-interlaced\012- data Size: 2316 Md5: 57822199eafcc60a75858999a4a1f529 Sha1: b5e05cdbefd2a139911f582b031dd3454fea2d1b Sha256: 82472b275d666e3f70757e03706bc0c8a2c81b7f7bc4769bed1c97b0596b7453
GET /porto_dummy/wp-content/uploads/images/logo-3.png HTTP/1.1 Host: sw-themes.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	162.144.217.30 HTTP/1.1 200 OK Content-Type: image/png Date: Sat, 03 Dec 2022 21:49:24 GMT Server: Apache Last-Modified: Mon, 12 Sep 2022 12:13:30 GMT Accept-Ranges: bytes Content-Length: 1766 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 390 x 73, 8-bit colormap, non-interlaced\012- data Size: 1766 Md5: 0e490640b2ec988d914d0e4f03b84c2c Sha1: 3a4127f91a35e407d86a409ef38f000f30ecc841 Sha256: 151b4a913bd33207443352f0b3243f6181710069a0cd9f285c70bc004bbbaab8
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC" Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13506 Expires: Sun, 04 Dec 2022 01:51:47 GMT Date: Sat, 03 Dec 2022 22:06:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: ecab83d593cc540b02689be5be7abc8a Sha1: 81cda579b7b9b22332b85266b0126585f3d3f73f Sha256: d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
GET /wp-content/themes/porto/inc/lib/live-search/live-search.js?ver=6.1.6 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:36:17 GMT etag: W/"6109c4e1-3bb4" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (12697) Size: 5303 Md5: b9ecc2434304bd65f333dcd4ba3bb852 Sha1: 65809c36aae5d856fac99eaa02a9b0858d1e2e50 Sha256: 65a266b1c9b9bc8c0efcd5207c87b96c23628a725b74bf65852b79781db69e92 Blocklists: - fortinet: Phishing
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC" Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13506 Expires: Sun, 04 Dec 2022 01:51:47 GMT Date: Sat, 03 Dec 2022 22:06:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: ecab83d593cc540b02689be5be7abc8a Sha1: 81cda579b7b9b22332b85266b0126585f3d3f73f Sha256: d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC" Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13506 Expires: Sun, 04 Dec 2022 01:51:47 GMT Date: Sat, 03 Dec 2022 22:06:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: ecab83d593cc540b02689be5be7abc8a Sha1: 81cda579b7b9b22332b85266b0126585f3d3f73f Sha256: d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC" Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13506 Expires: Sun, 04 Dec 2022 01:51:47 GMT Date: Sat, 03 Dec 2022 22:06:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: ecab83d593cc540b02689be5be7abc8a Sha1: 81cda579b7b9b22332b85266b0126585f3d3f73f Sha256: d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9715 x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ciZO2HQKIAMF8IA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0 x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 57FrgYIGxPf3JevFXHmcqmqp4Uwg9HY13oNUGvt7Be632fyOg4eFyw== via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google date: Sat, 03 Dec 2022 21:51:10 GMT age: 931 etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9715 Md5: 45182367fd4f8b6dd234eef1022acdb1 Sha1: d4b3052021ff3ad1dc4134fa25eb12a98e7c17da Sha256: a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5354 x-amzn-requestid: 3d58ffea-3433-4c5c-a60b-17f6de3a33e5 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cSsnvG44oAMFfyQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-638427ca-63b375f04189b7ce7d84cd5d;Sampled=0 x-amzn-remapped-date: Mon, 28 Nov 2022 03:15:22 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: -AurmlKwF0QgfsWBsV3ZN9ZyDhw1Zo82zUqrpkBbvbCfh0j7evV2Tg== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google date: Sat, 03 Dec 2022 11:01:04 GMT age: 39937 etag: "65c8b4abf957f9b54d99d0f78559e639adb29efb" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5354 Md5: 1e74254b3fdce7d6b84a71a7aff43789 Sha1: 65c8b4abf957f9b54d99d0f78559e639adb29efb Sha256: f278c3cc6734da7188862a8c651c803e7ac1fda82234e191761453cb1359d3ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6174 x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cZ0iyH2WoAMFQdg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0 x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg== via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google date: Sat, 03 Dec 2022 00:57:24 GMT age: 76157 etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6174 Md5: b986f9fcbeca91ed5c8d58fbfaf47d19 Sha1: 6e6c8bd2bce144cc4da1cd7be375b046b60dca79 Sha256: 07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /wp-content/themes/porto/js/bootstrap.js?ver=4.1.3 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:36:18 GMT etag: W/"6109c4e2-1f2b6" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (317), with CRLF line terminators Size: 23774 Md5: 148d32679ec83f60fee0cb2dbfd8ca93 Sha1: 661ccd11d78c4109908ddc24f277e6c67ed70d0a Sha256: 780b06f23c5b94aa7e8f28e289c1ab997e1ab58c0f79caef98d973218b2139d9 Blocklists: - fortinet: Phishing
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7591 x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cfGgMFRZIAMFl7g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0 x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 2pD4fv8j-zQzBZ9Pubo1-6UbvQpWMBb26ft_bn1pq9cWSCXsPXPW3g== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google date: Fri, 02 Dec 2022 22:13:01 GMT age: 86020 etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7591 Md5: d147ccb10bda82b153a596c3c967cd6a Sha1: ffd0763f997e71a8c1458523fc17cafe8849dfdf Sha256: 1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971
GET /index.php?rest_route=/contact-form-7/v1/contact-forms/93/feedback/schema HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, /;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://support.uoh.sa/ Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/json; charset=UTF-8 server: nginx date: Sat, 03 Dec 2022 22:06:41 GMT x-robots-tag: noindex link: <https://support.uoh.sa/index.php?rest_route=/>; rel="https://api.w.org/" x-content-type-options: nosniff access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type allow: GET vary: Origin x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PHP/7.4.33, PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (460), with no line terminators Size: 3252 Md5: 5f617963d88fe696aeef3951ee19bebb Sha1: 898b0a96accf8920862d655b8c252acf2ba2f526 Sha256: 6a25f22f0599d16293927fdf441ff0662570822cecd77947084985ccb7282d44 Blocklists: - fortinet: Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Wed, 25 May 2022 02:25:21 GMT etag: W/"628d9391-48b9" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (15660) Size: 29646 Md5: 5a2e3300e92928a28b2fd9bea7e5b6e9 Sha1: 2ab872552e9b9e30b897161d401156f42783a666 Sha256: dfb8fc155f3687d44bdb4b5d7db1c8b2c579112256ba738844ae5864e0f41c1e
GET /porto_dummy/wp-content/uploads/2019/05/generic-2.jpg?id=47 HTTP/1.1 Host: sw-themes.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	162.144.217.30 HTTP/1.1 200 OK Content-Type: image/jpeg Date: Sat, 03 Dec 2022 21:49:24 GMT Server: Apache Last-Modified: Thu, 10 Nov 2022 03:47:52 GMT Accept-Ranges: bytes Content-Length: 33049 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1], progressive, precision 8, 451x383, components 3\012- data Size: 33049 Md5: e8c928dc5a114c242650df5e3f2c0783 Sha1: 836aec22b5aa9f084a2e26ec8e5b257669748bb0 Sha256: 0a11b5dc25d070dd6daac0d7cd7269de56d808d4f309fc91b4a25c0660cef5c0
GET /wp-content/themes/porto/images/logo/apple-touch-icon_152x152.png HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/png server: nginx date: Sat, 03 Dec 2022 22:06:42 GMT content-length: 4514 last-modified: Tue, 03 Aug 2021 22:36:16 GMT etag: "6109c4e0-11a2" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 152 x 152, 8-bit/color RGBA, non-interlaced\012- data Size: 4514 Md5: aebe22a98c43b6f7c4e6acc8de2ffbfb Sha1: 3767711ccbff607e3f72eb5d43e9ae2244029df9 Sha256: f10dfba89151a5e9fe2d4b03bb71176bbe8981757f5a1ca95a5343cf604ce738
GET /wp-content/themes/porto/images/logo/favicon.ico HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: image/vnd.microsoft.icon server: nginx date: Sat, 03 Dec 2022 22:06:42 GMT content-length: 1150 last-modified: Tue, 03 Aug 2021 22:36:16 GMT etag: "6109c4e0-47e" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Size: 1150 Md5: bc6405f2688f939f65b137d40d044992 Sha1: 0358cb9de4de200194cdf8df6d0e8b06c1197673 Sha256: c4c295f2bc7036baeaf5fd248c48a6ea9653548b1a5fa382f89b253165564aec
GET /index.php?rest_route=/contact-form-7/v1/contact-forms/93/refill HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, /;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://support.uoh.sa/ Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/json; charset=UTF-8 server: nginx date: Sat, 03 Dec 2022 22:06:42 GMT x-robots-tag: noindex link: <https://support.uoh.sa/index.php?rest_route=/>; rel="https://api.w.org/" x-content-type-options: nosniff access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type allow: GET vary: Origin x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PHP/7.4.33, PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET / HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	40.114.227.126 HTTP/2 200 OK content-type: text/html; charset=UTF-8 server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT link: <https://support.uoh.sa/index.php?rest_route=/>; rel="https://api.w.org/", <https://support.uoh.sa/index.php?rest_route=/wp/v2/pages/2>; rel="alternate"; type="application/json", <https://support.uoh.sa/>; rel=shortlink x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PHP/7.4.33, PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Thu, 20 Oct 2022 02:22:11 GMT etag: W/"6350b0d3-aab" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Thu, 20 Oct 2022 02:22:11 GMT etag: W/"6350b0d3-3016" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /index.php?rest_route=/contact-form-7/v1/contact-forms/44/feedback/schema HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, /;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://support.uoh.sa/ Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/json; charset=UTF-8 server: nginx date: Sat, 03 Dec 2022 22:06:41 GMT x-robots-tag: noindex link: <https://support.uoh.sa/index.php?rest_route=/>; rel="https://api.w.org/" x-content-type-options: nosniff access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type allow: GET vary: Origin x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PHP/7.4.33, PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.4 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:22:57 GMT etag: W/"6109c1c1-1e570" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/uploads/porto_styles/shortcodes_rtl.css?ver=6.1.6 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:36:53 GMT etag: W/"6109c505-181ad" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256:
GET /wp-content/uploads/porto_styles/bootstrap_rtl.css?ver=6.1.6 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Wed, 11 Aug 2021 10:40:44 GMT etag: W/"6113a92c-2c3c1" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/themes/porto/style_rtl.css?ver=6.1.1 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT x-accel-version: 0.01 last-modified: Tue, 03 Aug 2021 22:36:19 GMT etag: W/"43-5c8af5087a33b" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Wed, 25 May 2022 02:25:21 GMT etag: W/"628d9391-ba5" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256:
GET /wp-content/themes/porto/js/libs/jquery.waitforimages.min.js?ver=2.0.2 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:36:18 GMT etag: W/"6109c4e2-6e8" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256:
GET /wp-content/themes/porto/js/libs/jquery.cookie.min.js?ver=1.4.1 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:36:18 GMT etag: W/"6109c4e2-4fe" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Thu, 20 Oct 2022 02:22:11 GMT etag: W/"6350b0d3-26d1" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/themes/porto/style.css?ver=6.1.1 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT x-accel-version: 0.01 last-modified: Tue, 03 Aug 2021 22:36:19 GMT etag: W/"335-5c8af50879b6b" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/themes/porto/css/theme_rtl.css?ver=6.1.1 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:36:16 GMT etag: W/"6109c4e0-407a9" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256:
GET /wp-content/uploads/porto_styles/dynamic_style_rtl.css?ver=6.1.6 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Wed, 11 Aug 2021 10:40:44 GMT etag: W/"6113a92c-1aaa1" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256:
GET /wp-content/themes/porto/js/libs/owl.carousel.min.js?ver=2.3.4 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:36:18 GMT etag: W/"6109c4e2-acca" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/themes/porto/js/libs/modernizr.js?ver=2.8.3 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:36:18 GMT etag: W/"6109c4e2-2604" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256:
GET /wp-content/themes/porto/js/theme.js?ver=6.1.6 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:36:18 GMT etag: W/"6109c4e2-2dc2c" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256:
GET /index.php?rest_route=/contact-form-7/v1/contact-forms/155/refill HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, /;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://support.uoh.sa/ Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/json; charset=UTF-8 server: nginx date: Sat, 03 Dec 2022 22:06:42 GMT x-robots-tag: noindex link: <https://support.uoh.sa/index.php?rest_route=/>; rel="https://api.w.org/" x-content-type-options: nosniff access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type allow: GET vary: Origin x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PHP/7.4.33, PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/themes/porto/js/libs/kute.min.js HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:41 GMT last-modified: Tue, 03 Aug 2021 22:36:18 GMT etag: W/"6109c4e2-95fd" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-includes/css/dist/block-library/style-rtl.min.css?ver=6.1.1 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Wed, 16 Nov 2022 02:23:02 GMT etag: W/"63744986-17226" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Wed, 02 Nov 2022 02:22:58 GMT etag: W/"6361d482-15e54" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256:
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.7.0 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Wed, 11 Aug 2021 09:01:01 GMT etag: W/"611391cd-4e9c" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/skrollr/dist/skrollr.min.js?ver=6.7.0 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Wed, 11 Aug 2021 09:01:02 GMT etag: W/"611391ce-3222" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.7.0 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Wed, 11 Aug 2021 09:01:01 GMT etag: W/"611391cd-76878" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT x-accel-version: 0.01 last-modified: Wed, 02 Nov 2022 02:22:57 GMT etag: W/"d9-5ec7384db3f0b" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256:
GET /wp-content/themes/porto/js/libs/jquery.magnific-popup.min.js?ver=1.1.0 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:36:18 GMT etag: W/"6109c4e2-4ef8" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/plugins/wysija-newsletters/css/validationEngine.jquery.css?ver=2.22 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 02 Aug 2022 02:22:33 GMT etag: W/"62e88a69-124d" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles-rtl.css?ver=5.6.4 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT x-accel-version: 0.01 last-modified: Thu, 20 Oct 2022 02:22:11 GMT etag: W/"98-5eb6dfe28ab54" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/themes/porto/js/libs/jquery.matchHeight.min.js HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:36:18 GMT etag: W/"6109c4e2-b4f" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/themes/porto/js/theme-async.js?ver=6.1.6 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:36:18 GMT etag: W/"6109c4e2-9c11" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256:
GET /index.php?rest_route=/contact-form-7/v1/contact-forms/155/feedback/schema HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, /;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://support.uoh.sa/ Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/json; charset=UTF-8 server: nginx date: Sat, 03 Dec 2022 22:06:41 GMT x-robots-tag: noindex link: <https://support.uoh.sa/index.php?rest_route=/>; rel="https://api.w.org/" x-content-type-options: nosniff access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type allow: GET vary: Origin x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PHP/7.4.33, PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /index.php?rest_route=/contact-form-7/v1/contact-forms/44/refill HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, /;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://support.uoh.sa/ Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/json; charset=UTF-8 server: nginx date: Sat, 03 Dec 2022 22:06:42 GMT x-robots-tag: noindex link: <https://support.uoh.sa/index.php?rest_route=/>; rel="https://api.w.org/" x-content-type-options: nosniff access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type allow: GET vary: Origin x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PHP/7.4.33, PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Wed, 18 Nov 2020 09:06:06 GMT etag: W/"5fb4e3fe-2bd8" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /css?family=Open+Sans%3A200%2C300%2C400%2C500%2C600%2C700%2C800%7CShadows+Into+Light%3A400%2C700%7CPlayfair+Display%3A400%2C700&ver=6.1.1 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.106 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 03 Dec 2022 22:06:40 GMT date: Sat, 03 Dec 2022 22:06:40 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256:
GET /wp-content/themes/uoh-child/style.css?ver=6.1.1 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT x-accel-version: 0.01 last-modified: Wed, 11 Aug 2021 09:00:14 GMT etag: W/"303-5c944d8b7db33" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.4 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: application/javascript server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:22:57 GMT etag: W/"6109c1c1-5b56c" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256:
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.4 HTTP/1.1 Host: support.uoh.sa User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.uoh.sa/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	40.114.227.126 HTTP/2 200 OK content-type: text/css server: nginx date: Sat, 03 Dec 2022 22:06:40 GMT last-modified: Tue, 03 Aug 2021 22:22:57 GMT etag: W/"6109c1c1-e6aa" x-cache-status: MISS strict-transport-security: max-age=15768000; includeSubDomains x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256: Blocklists: - fortinet: Phishing

URL	support.uoh.sa/
IP	40.114.227.126 (Netherlands)
ASN	#8075 MICROSOFT-CORP-MSN-AS-BLOCK
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Access
Report completed	2022-12-03 22:06:50 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	35
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (13)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 40.114.227.126

Last 5 reports on ASN: MICROSOFT-CORP-MSN-AS-BLOCK

Last 5 reports on domain: uoh.sa

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (32)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (99)

Overview

Domain Summary (13)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 40.114.227.126

Last 5 reports on ASN: MICROSOFT-CORP-MSN-AS-BLOCK

Last 5 reports on domain: uoh.sa

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (32)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (99)

Network Intrusion Detection Systems