r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 517693963cc46e7a35a054296d0edfd5
11dfcd7e118e5f8d31e664e56ac29c57f973b8b3
ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18892
Expires: Thu, 01 Sep 2022 00:46:56 GMT
Date: Wed, 31 Aug 2022 19:32:04 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 31 Aug 2022 19:21:50 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lWZhZwc2MptnFW4h_VpsC-SVZ-tgDpe18cO2HiI4va2F0d4RTT6AnQ==
Age: 614
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 31 Aug 2022 02:27:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6sxvLMHxH1FiaCrf_3I4Z2FY-As9sm3_uxmBqXCKTY58QFASK92nzw==
age: 61500
X-Firefox-Spdy: h2
www.nahdetmisr.com/
302 Found 207 B IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 75ac77a5dd97baa8b7d68ecd2bd50c1f
ef25131914d445c1a8dee5cecaf9f38eef48944f
f196eccc244ecb0cb8a9bbe2d576bd3d0a2459a35550ad68ae831b1b0a1cb668
GET / HTTP/1.1
Host: www.nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Wed, 31 Aug 2022 19:32:04 GMT
Server: nginx/1.21.6
Content-Type: text/html; charset=iso-8859-1
Content-Length: 207
Content-Security-Policy: upgrade-insecure-requests
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
Permissions-Policy:
Expect-CT: max-age=7776000, enforce
X-Frame-Options: SAMEORIGIN
Location: https://nahdetmisr.com/
X-Server-Cache: true
X-Proxy-Cache: HIT
X-Accel-Expires: 10800
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 19:32:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 31 Aug 2022 19:17:12 GMT
Cache-Control: max-age=3600
Expires: Wed, 31 Aug 2022 19:47:29 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -n3tmJYxE1gi0iMMmIidoqRtwf1TJNNck9FK4M0TOETdvYMIGo2Eug==
Age: 892
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f9e35916ab62a186eaa78c218f7fbf08
68bb38b9fc1581bd6143d0eee4df2e79de81158d
f6d2ea3c7a32c95b4f8b6a52dc5ba7e5a2f018bd0b65103652dacb5681b3f0f6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6D2EA3C7A32C95B4F8B6A52DC5BA7E5A2F018BD0B65103652DACB5681B3F0F6"
Last-Modified: Wed, 31 Aug 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 01 Sep 2022 01:32:05 GMT
Date: Wed, 31 Aug 2022 19:32:05 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 83be4ca2ebb87af44323dd073807bc9e
3ef0ca2b0c351c7d1eb1b7f4daeba6453a632fc6
1ba9c4dbdbd577bf443bc6499ab1edb2e0ea3b382f529fdc2d98021276a3158b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3398
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:05 GMT
Last-Modified: Wed, 31 Aug 2022 18:35:27 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cXrJnyjLuvf5K5WwMTPVUQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: d4swWqhaWXVEN4VrbfNYcOfDXBs=
nahdetmisr.com/wp-content/cache/wpfc-minified/kp6ptahs/7psz3.css
200 OK 114 B URL HTTP/2 nahdetmisr.com/wp-content/cache/wpfc-minified/kp6ptahs/7psz3.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (374), with no line terminators
Hash 63ecd0b9d0039d22763d6526bd5555c5
926cb312ec6e571b8a42b72b42111c8dc876f714
9d571ac2a214ea38ccb4386c9df34269159a2a4c254586e14b6eb20dfd13fe1c
GET /wp-content/cache/wpfc-minified/kp6ptahs/7psz3.css HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Thu, 25 Aug 2022 06:52:13 GMT
accept-ranges: bytes
cache-control: max-age=10368000
expires: max-age=A10368000, public
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 114
content-type: text/css
date: Wed, 31 Aug 2022 19:32:05 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/cache/wpfc-minified/g3aiuays/7psz3.css
200 OK 3.1 kB URL HTTP/2 nahdetmisr.com/wp-content/cache/wpfc-minified/g3aiuays/7psz3.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (17906)
Hash cfe6ede033d880ed6efdba22da711f5a
88cce98bdeb4a137b2dd1385046bf807939c28e0
00175e84cf5dab1ff076bb45948726755b5525e6f46229838b20fad4231818fd
GET /wp-content/cache/wpfc-minified/g3aiuays/7psz3.css HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Thu, 25 Aug 2022 06:52:13 GMT
accept-ranges: bytes
cache-control: max-age=10368000
expires: max-age=A10368000, public
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 3142
content-type: text/css
date: Wed, 31 Aug 2022 19:32:05 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/cache/wpfc-minified/9asz6m6t/7psz3.css
200 OK 14 kB URL HTTP/2 nahdetmisr.com/wp-content/cache/wpfc-minified/9asz6m6t/7psz3.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (63812)
Hash 551b97e59843f3eb48713bc5d7264179
ec7684d4039723b4ce2426d75d5648109c1738f8
0eb04ce4da77d4a3b1953f3c4c750a11e56df5e77e44fe0982c918ad2ee0eed7
GET /wp-content/cache/wpfc-minified/9asz6m6t/7psz3.css HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Thu, 25 Aug 2022 06:52:13 GMT
accept-ranges: bytes
cache-control: max-age=10368000
expires: max-age=A10368000, public
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 13579
content-type: text/css
date: Wed, 31 Aug 2022 19:32:05 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/cache/wpfc-minified/epchpcmv/7psz3.css
200 OK 1.3 kB URL HTTP/2 nahdetmisr.com/wp-content/cache/wpfc-minified/epchpcmv/7psz3.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7042), with no line terminators
Hash ce474c412e560471c547d2d1acad70d0
5362f2acb7c547a119dcdaca88ce52d578cadc2c
679bad42ea0792b2f13a7c23cbbec5f00947842b61fb8c4a765c9f5532363f0f
GET /wp-content/cache/wpfc-minified/epchpcmv/7psz3.css HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Thu, 25 Aug 2022 06:52:13 GMT
accept-ranges: bytes
cache-control: max-age=10368000
expires: max-age=A10368000, public
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 1293
content-type: text/css
date: Wed, 31 Aug 2022 19:32:05 GMT
server: Apache
X-Firefox-Spdy: h2
cdn-images.mailchimp.com/embedcode/horizontal-slim-10_7.css
200 OK 856 B URL HTTP/1.1 cdn-images.mailchimp.com/embedcode/horizontal-slim-10_7.css
IP
File type ASCII text, with very long lines (388)
Hash cb175ee4d7aa640eaa19adadda4d63f2
03596b1634b0a35bffb7a462b6e420246f77518a
dccfe278db28a72fb40b506e12840df6a2773f287ed56174ef9b799b0123e047
GET /embedcode/horizontal-slim-10_7.css HTTP/1.1
Host: cdn-images.mailchimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nahdetmisr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Dec 2015 16:21:55 GMT
x-amz-version-id: null
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 31 Aug 2022 16:08:37 GMT
ETag: W/"bd21b0313fe7dc2b8ac08955a7ef1209"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uq9zsUy_-9xhVfqZX6TNecfUazvsN_-vO44eKedW-7THHiY_Sj3Reg==
Age: 12210
nahdetmisr.com/wp-content/cache/wpfc-minified/d2nmke2r/7psz3.css
200 OK 14 kB URL HTTP/2 nahdetmisr.com/wp-content/cache/wpfc-minified/d2nmke2r/7psz3.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12661)
Hash 9bc967a9c52f2b7e6befa097cc2d7335
444f1b608aa952d4b988755ed18307d2d9260c95
1c7c3bc5c6fa81b80ede7a172b7c26a25f9a8421e4ba70100da62230210cc63d
GET /wp-content/cache/wpfc-minified/d2nmke2r/7psz3.css HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Thu, 25 Aug 2022 06:52:13 GMT
accept-ranges: bytes
cache-control: max-age=10368000
expires: max-age=A10368000, public
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 13743
content-type: text/css
date: Wed, 31 Aug 2022 19:32:05 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/plugins/wp-fastest-cache-premium/pro/images/blank.gif
200 OK 35 B URL HTTP/2 nahdetmisr.com/wp-content/plugins/wp-fastest-cache-premium/pro/images/blank.gif
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 87a, 1 x 1\012- data
Hash 8f8244c83aed8614d3933d435b01ba6e
50ab95353cb8abc5110ab9fee2b00456e578b4e8
62b658bca472f4eb438c6384ed624f42a08b19472b29f34cedaad0e2a6372ace
GET /wp-content/plugins/wp-fastest-cache-premium/pro/images/blank.gif HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Tue, 18 May 2021 12:48:18 GMT
accept-ranges: bytes
content-length: 35
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/gif
date: Wed, 31 Aug 2022 19:32:06 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/cache/wpfc-minified/ladptwlw/7psz3.js
200 OK 126 kB URL HTTP/2 nahdetmisr.com/wp-content/cache/wpfc-minified/ladptwlw/7psz3.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
Size 126 kB (126023 bytes)
Hash 26562dc8008f92fc450eec6fba678294
adb7507aed593d2fd07541ec242f31ce6b8aac6a
019ca5fd94beeb93fd932d83d0779adb1aa2af82184a2109ff775bb14d56da4b
GET /wp-content/cache/wpfc-minified/ladptwlw/7psz3.js HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Thu, 25 Aug 2022 06:52:13 GMT
accept-ranges: bytes
cache-control: max-age=10368000
expires: max-age=A10368000, public
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-type: application/javascript
date: Wed, 31 Aug 2022 19:32:06 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10158
Expires: Wed, 31 Aug 2022 22:21:24 GMT
Date: Wed, 31 Aug 2022 19:32:06 GMT
Connection: keep-alive
nahdetmisr.com/wp-content/cache/wpfc-minified/6ne0fzrl/7psz3.css
200 OK 242 kB URL HTTP/2 nahdetmisr.com/wp-content/cache/wpfc-minified/6ne0fzrl/7psz3.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
Size 242 kB (242103 bytes)
Hash b14faa9baf3f20b43efdcd4a98c616f9
9de25a88ecc0c6add777bd1eb5c880a760bb6ca7
76be10a239408eee0f6658b402ed1576fb4292849efd948e2028cf624efe4d59
GET /wp-content/cache/wpfc-minified/6ne0fzrl/7psz3.css HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Thu, 25 Aug 2022 06:52:13 GMT
accept-ranges: bytes
cache-control: max-age=10368000
expires: max-age=A10368000, public
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-type: text/css
date: Wed, 31 Aug 2022 19:32:05 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10158
Expires: Wed, 31 Aug 2022 22:21:24 GMT
Date: Wed, 31 Aug 2022 19:32:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10158
Expires: Wed, 31 Aug 2022 22:21:24 GMT
Date: Wed, 31 Aug 2022 19:32:06 GMT
Connection: keep-alive
nahdetmisr.com/wp-content/cache/wpfc-minified/f585g7bf/7psz3.js
200 OK 47 kB URL HTTP/2 nahdetmisr.com/wp-content/cache/wpfc-minified/f585g7bf/7psz3.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 26bc6c4b05685ed40de5a89e7ef7d781
39afbd68b1f3c4a28ce4432ffaa3af163107a1b5
962965c648793d350df49387cd6684e1fff9ac6f158dd569d999112f719fe73f
GET /wp-content/cache/wpfc-minified/f585g7bf/7psz3.js HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Thu, 25 Aug 2022 06:52:13 GMT
accept-ranges: bytes
cache-control: max-age=10368000
expires: max-age=A10368000, public
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-type: application/javascript
date: Wed, 31 Aug 2022 19:32:06 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6b2c036e67f8c39c136f6c69b0922eb1
98e27f0dafd7b1b49e159ee038b41a811096a2d0
9dc9e00e6f63a22dd85f54ba26326a9733f6c1d7a19c7b1636f14fca2722e6eb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8009
x-amzn-requestid: 6d716dae-efa3-449a-a505-fb5f3d99c2df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XsvlaFEaoAMFwDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e92ef-708228ce7e1fb3cb770cb490;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 22:45:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 03y3JoF38R7gjBYS3gHyOsivob68ykKlwvAIFEwiat2FjYfKWh-afA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 00:33:08 GMT
age: 68338
etag: "98e27f0dafd7b1b49e159ee038b41a811096a2d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb21182a7-c320-4c58-9822-7605821e65a5.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb21182a7-c320-4c58-9822-7605821e65a5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7dcb5acc5186b678254184c5dac12079
d7c84b42a0dd5b86a0668127698fd5f25b647fcb
8173103eda58bf2f1af2d077fc90c2c1b6d2a93265092a9c3152b686e05a4f9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb21182a7-c320-4c58-9822-7605821e65a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5910
x-amzn-requestid: 935b97da-1473-4863-bad2-a732709de9d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslNHEfTIAMFWrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e8253-150847db7280350c19e2e464;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4aUTNIPL-Pl5Vz-xh4gI21QtLwdmMMrc7NJGLWRJPz0oJtvnFPfk8w==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:45:06 GMT
age: 78420
etag: "d7c84b42a0dd5b86a0668127698fd5f25b647fcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
nahdetmisr.com/
200 OK 55 kB IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 1105dbb39fc3bf87c85562a73e9cab10
982c9ca411823c3a38fa9f4ba7bc7c1364193d23
d14574075adafc5d3c35c10997637b4bbf56ac5d90b21062f74fecbafa6eb595
GET / HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:32:05 GMT
server: Apache
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
vary: User-Agent,Accept-Encoding
last-modified: Thu, 25 Aug 2022 06:52:14 GMT
accept-ranges: bytes
content-encoding: gzip
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 29 Oct 1923 20:30:00 GMT
x-server-cache: true
x-proxy-cache: EXPIRED
x-accel-expires: 10800
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg
200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9843fcd5eb49c75b942e3dd042f3a931
ff6de19656bc0ee5649c1367448116a9576a690a
8e9679e05e1b2194e44a962a19f226793b5d7fc2334df64f8dd560498532ad3a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6266
x-amzn-requestid: 82231f45-328a-479a-b346-108fe6a0c190
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjU6bEP5IAMFaGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630acea8-6545154a39b44bb04d3bc18c;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 02:10:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P_a-E2SVJUpYrlOzoX9kDtHoAeyEpcqEXau-5wDupR-9AAk3gQgaHQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 06:17:12 GMT
age: 47694
etag: "ff6de19656bc0ee5649c1367448116a9576a690a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F136de3c9-bb24-461a-b29f-fe7b7336b28c.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F136de3c9-bb24-461a-b29f-fe7b7336b28c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db8548465788b6e73fc19c63575f7d32
0502c55da685e6a5bd3506b55cd96d639346ed82
c125a0828629e46996832fd04555f503e62c0dc0e8506f069487ba8ebb2db4a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F136de3c9-bb24-461a-b29f-fe7b7336b28c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7582
x-amzn-requestid: 65712628-13c0-42e2-a090-b21fde8bd026
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xg0rgE_hIAMF1ng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309ce49-5feadfad6c342ae96a5a26d7;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 07:56:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: AaCY2PsUVPfvdDwb7itAqcRV9NZPkDxFs1QEiYZ_FjTNp9sH4bn5rg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 05:43:06 GMT
age: 49740
etag: "0502c55da685e6a5bd3506b55cd96d639346ed82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/themes/bebostore/asset/images/book-after.png
200 OK 201 B URL HTTP/2 nahdetmisr.com/wp-content/themes/bebostore/asset/images/book-after.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 345 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 7322766fec8e2244c0bffd233dcc8013
3ccf668a4eee4aa363d092b8ac829a12090785b7
122927c7fb01609cdb2e3bff44866a77668e97301a68942d36f4503d900959ae
GET /wp-content/themes/bebostore/asset/images/book-after.png HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/wp-content/cache/wpfc-minified/6ne0fzrl/7psz3.css
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Tue, 18 May 2021 11:26:09 GMT
accept-ranges: bytes
content-length: 201
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/png
date: Wed, 31 Aug 2022 19:32:06 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/themes/bebostore/asset/images/nav-slider.png
200 OK 316 B URL HTTP/2 nahdetmisr.com/wp-content/themes/bebostore/asset/images/nav-slider.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 40 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash db8c7547e53b8a7ab44ee93fe9853c74
8ca1ee6ee4eff7dd032f29fbb14ea48db8406163
540422f47340e3311ceb1e32c2c3bd7f899c55e5a6b511f00a899547bb38581c
GET /wp-content/themes/bebostore/asset/images/nav-slider.png HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/wp-content/cache/wpfc-minified/6ne0fzrl/7psz3.css
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Tue, 18 May 2021 11:26:45 GMT
accept-ranges: bytes
content-length: 316
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/png
date: Wed, 31 Aug 2022 19:32:06 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/uploads/2016/10/newsletter.jpg?id=4228
200 OK 34 kB URL HTTP/2 nahdetmisr.com/wp-content/uploads/2016/10/newsletter.jpg?id=4228
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x310, components 3\012- data
Hash 16d18271e44b60bb831d81f0fad3d103
d113d14b0da494bb2f97bfe9faa0a7430ce3476f
4114d79ded98899cbc686402d071e5b8a63d262aa11b7c076855da322581bda0
GET /wp-content/uploads/2016/10/newsletter.jpg?id=4228 HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
vary: Accept
last-modified: Tue, 18 May 2021 02:35:21 GMT
accept-ranges: bytes
content-length: 34331
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/webp
date: Wed, 31 Aug 2022 19:32:06 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/themes/bebostore/asset/images/subcribe-mail.png
200 OK 294 B URL HTTP/2 nahdetmisr.com/wp-content/themes/bebostore/asset/images/subcribe-mail.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 30 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash b5045b8ffe6b9400333576b61ff77131
f7fecea0a443e2de6d04d4805d190aa3077029bd
22835db51de1dad277b2ef06dbd3ff5ae28c0500f96b9f84dbde065b1888252c
GET /wp-content/themes/bebostore/asset/images/subcribe-mail.png HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/wp-content/cache/wpfc-minified/6ne0fzrl/7psz3.css
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Tue, 18 May 2021 11:26:48 GMT
accept-ranges: bytes
content-length: 294
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/png
date: Wed, 31 Aug 2022 19:32:06 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/themes/bebostore/asset/fonts/fontawesome-webfont.woff2?v=4.3.0
200 OK 77 kB URL HTTP/2 nahdetmisr.com/wp-content/themes/bebostore/asset/fonts/fontawesome-webfont.woff2?v=4.3.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/bebostore/asset/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nahdetmisr.com/wp-content/cache/wpfc-minified/6ne0fzrl/7psz3.css
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Wed, 26 Oct 2016 10:48:38 GMT
accept-ranges: bytes
content-length: 77160
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: application/font-woff2
date: Wed, 31 Aug 2022 19:32:06 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/uploads/2020/08/englidh.jpg
200 OK 151 kB URL HTTP/2 nahdetmisr.com/wp-content/uploads/2020/08/englidh.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1349x650, components 3\012- data
Size 151 kB (151169 bytes)
Hash 95f6570710929950a0153b77f32c535d
3b8729a92ae7f5d9a93f2288e4c910bdbaec4b39
c5bcee59d3dfabca1e73af1f803ae0b75539ec2bcebdee3c25013ccf7855d7d8
GET /wp-content/uploads/2020/08/englidh.jpg HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
vary: Accept
last-modified: Tue, 18 May 2021 00:07:09 GMT
accept-ranges: bytes
content-length: 151169
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/webp
date: Wed, 31 Aug 2022 19:32:06 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d540bb36b9dd961eb542506943f01784
fc85b89327b75d3d6643766a70f343f6ea0b7a30
1bcfead20bfe1a9677f25dbcec756dbb3244f6e53069b2a830529fd991baabce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 888b942029507a51149d121a3240e9d6
93590a3ac3a943506798dba597335cb144a5795d
7d358a347c38b06733ae7e7eae5a02f583d0d3db2a241bf427dff2588d7c6c1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 162103fea2d2770a892523dda40eb8d3
18fdbf868daac86329ddd87b5d70794108888c1f
6ef5338f6861732e340a5bbb77948cbc56fff65861dab47485e2aade1c3f94bb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 162103fea2d2770a892523dda40eb8d3
18fdbf868daac86329ddd87b5d70794108888c1f
6ef5338f6861732e340a5bbb77948cbc56fff65861dab47485e2aade1c3f94bb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nahdetmisr.com/wp-content/uploads/2021/05/Slider-etklm-araby-4.jpg
200 OK 433 kB URL HTTP/2 nahdetmisr.com/wp-content/uploads/2021/05/Slider-etklm-araby-4.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1349x650, components 3\012- data
Size 433 kB (432980 bytes)
Hash 7cf1f89bacfe19b9fdfde13f3d213f08
c8f36eed6b19d34dbc424d11934229b45aa1a84d
f86762c3559729e7a83cb1d1e85f516140038c475d665d0528de9ff3c2e522d5
GET /wp-content/uploads/2021/05/Slider-etklm-araby-4.jpg HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
vary: Accept
last-modified: Mon, 24 May 2021 14:55:51 GMT
accept-ranges: bytes
content-length: 432980
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/webp
date: Wed, 31 Aug 2022 19:32:06 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/uploads/2018/03/NM-Group.png
200 OK 26 kB URL HTTP/2 nahdetmisr.com/wp-content/uploads/2018/03/NM-Group.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 429 x 756, 8-bit/color RGBA, non-interlaced\012- data
Hash be5fede9d5f5ae0b037cadec4279c7fc
608d1333cb7305af1340fffb37bc2f06f82a2bd2
082cb66106bb361782cf2faee296baa7db522ccf0e53c9cacb41c84acb88d5ec
GET /wp-content/uploads/2018/03/NM-Group.png HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
vary: Accept
last-modified: Tue, 18 May 2021 03:50:47 GMT
accept-ranges: bytes
content-length: 26341
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/webp
date: Wed, 31 Aug 2022 19:32:07 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/uploads/2021/05/Untitled-1.jpg
200 OK 18 kB URL HTTP/2 nahdetmisr.com/wp-content/uploads/2021/05/Untitled-1.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 250x123, components 3\012- data
Hash cd15f8547cf90d80829e3dec38425a62
8d603ec2b8866c7bd12490d55be7d6863cf06daa
c88403e662cfa8f53ab671d7500cd01c35af24638db3c6e9a6fe3ee945f55bfa
GET /wp-content/uploads/2021/05/Untitled-1.jpg HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
vary: Accept
last-modified: Tue, 25 May 2021 20:55:09 GMT
accept-ranges: bytes
content-length: 17575
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/webp
date: Wed, 31 Aug 2022 19:32:07 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 162103fea2d2770a892523dda40eb8d3
18fdbf868daac86329ddd87b5d70794108888c1f
6ef5338f6861732e340a5bbb77948cbc56fff65861dab47485e2aade1c3f94bb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/113ca41c/www-player.css
200 OK 49 kB URL HTTP/2 www.youtube.com/s/player/113ca41c/www-player.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash a32f07973dd1a18b547621a3323c21fa
fc3cc9bffbd75c8e8db8aeb21b7f8ebb6f376752
05bdd12ec30aafc7ab2bece86b760e4c40b9cd094f87c5dafe1f2f3e3cd7f6ed
GET /s/player/113ca41c/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/o_hnF225Etk?feature=oembed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49076
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 11:07:32 GMT
expires: Thu, 31 Aug 2023 11:07:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Aug 2022 00:19:41 GMT
content-type: text/css
age: 30275
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A100%2C300%2C400%2C700%2C900&ver=2.0.0
200 OK 98 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A100%2C300%2C400%2C700%2C900&ver=2.0.0
IP
Hash 9cae6f49613e93c368915bdbf93dd118
0824a4f6c18537455b71dccc8df27c8061820a1f
6006075eba4d11e2c501f52ca37cfce643a10077ae6d558efdb9ee1cc01ae08d
GET /css?family=Lato%3A100%2C300%2C400%2C700%2C900&ver=2.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nahdetmisr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 31 Aug 2022 19:32:07 GMT
date: Wed, 31 Aug 2022 19:32:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/113ca41c/fetch-polyfill.vflset/fetch-polyfill.js
200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/113ca41c/fetch-polyfill.vflset/fetch-polyfill.js
IP
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/113ca41c/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/o_hnF225Etk?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 14:51:48 GMT
expires: Tue, 29 Aug 2023 14:51:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Aug 2022 00:19:41 GMT
content-type: text/javascript
age: 189619
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/113ca41c/player_ias.vflset/en_US/base.js
200 OK 587 kB URL HTTP/2 www.youtube.com/s/player/113ca41c/player_ias.vflset/en_US/base.js
IP
File type ASCII text, with very long lines (596)
Size 587 kB (586747 bytes)
Hash 02308cfa7904b51958eee0e1b1d8b0ab
badeb81613d84a798709a8a8aedaddbe2affdcdf
0aced09df2740773ee88bf2b0858b739725396789082a907cee010c759cdad10
GET /s/player/113ca41c/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/o_hnF225Etk?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 586747
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 14:57:44 GMT
expires: Tue, 29 Aug 2023 14:57:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Aug 2022 00:19:41 GMT
content-type: text/javascript
age: 189263
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d540bb36b9dd961eb542506943f01784
fc85b89327b75d3d6643766a70f343f6ea0b7a30
1bcfead20bfe1a9677f25dbcec756dbb3244f6e53069b2a830529fd991baabce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nahdetmisr.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
200 OK 2.1 kB URL HTTP/2 nahdetmisr.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 24 x 24\012- data
Hash cd393972f3ff9f2ac9c46a0da556f856
b14d41d233bda264d2ff8471fdad172df9999ac5
1f342473e9676e3af37e18ec34a45321c7864047127a4dd044bcc48596276b54
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/wp-content/cache/wpfc-minified/d2nmke2r/7psz3.css
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Tue, 18 May 2021 12:32:00 GMT
accept-ranges: bytes
content-length: 2093
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/gif
date: Wed, 31 Aug 2022 19:32:07 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Merriweather%3A400%2C300italic%2C700italic%2C300%2C700&ver=2.0.0
200 OK 8.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Merriweather%3A400%2C300italic%2C700italic%2C300%2C700&ver=2.0.0
IP
Hash 24ac359c9bc6e0550e15478d85753548
c1eae20768fec875c4074084f8733010e325f2f0
645fb42d76b15ad17e588dc6dc459333ff795ad1fad237842104d708749d6e67
GET /css?family=Merriweather%3A400%2C300italic%2C700italic%2C300%2C700&ver=2.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nahdetmisr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 31 Aug 2022 19:32:07 GMT
date: Wed, 31 Aug 2022 19:32:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 Aug 2022 12:31:58 GMT
expires: Sun, 27 Aug 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 370809
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nahdetmisr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 17:10:21 GMT
expires: Wed, 30 Aug 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 94906
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nahdetmisr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 17:10:21 GMT
expires: Wed, 30 Aug 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 94906
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400
200 OK 24 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400
IP
Hash b893bc209c998e32550677ff83a98df8
e1fd181923ff47a58a946d367b92f47997d4a3a9
e46eb30b8108d78af923f6332dd15c981107dc0c021f515fb88c68b3b2173ca9
GET /css?family=Roboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nahdetmisr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 31 Aug 2022 19:32:07 GMT
date: Wed, 31 Aug 2022 19:32:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9829f3ffea1f304be0e54c722f9d5d40
f9609aa9bc142c1cff0788772b2bb1f9abc1dd70
1dcac98963add83d0646205786f56cc701574b69208cce02bb3ba1b080f8db73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fc8ab005623fccad97ec544c1b7ff472
afb4a818db5137fc07b986aa4e5a62ff0032096b
20e90eaeefc4c5e091fd10088cbd47d7774010d1ec9bfa9e00b023919ff47c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0982b9e784a0a990d6318c92e33860a1
764377c393017e86d98a696da455509cba1806ac
27a19ec4ca0a052faface8ad45dca4d9a4a739c658d10f0e693aea065bdc607f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.hiwoshote.pro/bea458/f265d2bd3ccc.js
200 OK 34 kB URL HTTP/2 www.hiwoshote.pro/bea458/f265d2bd3ccc.js
IP
ASN #61107 Toonbox Studio Ltd
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8433a5ede1249978c6b832fcbc004ed3
caccf01488c6484891f988cffdef127a6b68a7b1
8ad25ef9d1f3dbc649bddab8565ce233f82cc9a8849a81108876acf004837a70
GET /bea458/f265d2bd3ccc.js HTTP/1.1
Host: www.hiwoshote.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://nahdetmisr.com
Connection: keep-alive
Referer: https://nahdetmisr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ucdn/1.22.0
date: Wed, 31 Aug 2022 19:32:07 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315358073, public
x-ureq-id: XDrrrzssYKy7XniAYHDaCxO/1BtQYlPAo1HVcwFLMsr3uaLidETSLqKazNe79F20FA3uo8svsia+dH2GDY8f+yW9G0bgBQkxYucKEX6fKtb2yoUxnJLMA+vaS5pzPbmM
x-served-from: l1
x-vhostid: 6544, 24328
content-encoding: br
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/uploads/2016/07/favico.png
200 OK 46 kB URL HTTP/2 nahdetmisr.com/wp-content/uploads/2016/07/favico.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 512 x 600, 8-bit/color RGBA, non-interlaced\012- data
Hash e4a49d1e92d2030f9c202916930da7ed
ad74ee983d625cc582535f3ecd11182bebdc308a
25816cbbfd3fb3e9a8b9786f78b6534ac4551a1e8eb09883b620dc4a235361ad
GET /wp-content/uploads/2016/07/favico.png HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
vary: Accept
last-modified: Tue, 18 May 2021 00:58:52 GMT
accept-ranges: bytes
content-length: 46269
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/webp
date: Wed, 31 Aug 2022 19:32:07 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ef80a390dc7608c27e29fe3516eb0565
5062143217d04ed6de8fa77555d9a83938391c87
373c43367776cfcbb9f69a45443f59dfb774eab11241928134a25bcb7d75e83b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Wed, 31 Aug 2022 19:32:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ea8f135d0d9646f85d5f17dee7000297
4450bda2c50f8de9366bb33b372ce4d8cbbc5f28
577489ce192278f40054e285aaa614d3502f1507911c8098eabb68eead763395
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:29:23 GMT
expires: Wed, 31 Aug 2022 19:44:23 GMT
cache-control: public, max-age=900
age: 164
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ef80a390dc7608c27e29fe3516eb0565
5062143217d04ed6de8fa77555d9a83938391c87
373c43367776cfcbb9f69a45443f59dfb774eab11241928134a25bcb7d75e83b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 71e5b9bf68ecc27211f5598597b84c97
6e37c4d8ef2bd08dd0df2fdfc47620b02d82fb40
d325b14e8a1461472b9d7f1a078187d349e100415ddb3ade7ada80159ef1441c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fe244465a99d48f257a3dda7ab28c6b8
69c89374520ca54adda7fd15ccb069def5fb3663
8f9938ffef09d02563d617ac9ff1ce97b05c5bf52b64f6724b9f19a5e90965f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fe244465a99d48f257a3dda7ab28c6b8
69c89374520ca54adda7fd15ccb069def5fb3663
8f9938ffef09d02563d617ac9ff1ce97b05c5bf52b64f6724b9f19a5e90965f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.hiwoshote.pro/bea458/f265d2bd3ccc.js
200 OK 27 kB URL HTTP/2 www.hiwoshote.pro/bea458/f265d2bd3ccc.js
IP
ASN #61107 Toonbox Studio Ltd
File type ASCII text, with very long lines (65536), with no line terminators
Hash 343dbb62dcaea7ff5231637df73f6bc9
1ef344aba6783e52b4fb0bf54c20881b68dc61b4
c1264587cc1c7b276ac4fb6f46ca37928e9c05761163b8789cdd99c945ab5331
GET /bea458/f265d2bd3ccc.js HTTP/1.1
Host: www.hiwoshote.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nahdetmisr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ucdn/1.22.0
date: Wed, 31 Aug 2022 19:32:07 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315358073, public
x-ureq-id: XDrrrzssYKy7XniAYHDaCxO/1BtQYlPAo1HVcwFLMsr3uaLidETSLqKazNe79F20FA3uo8svsia+dH2GDY8f+yW9G0bgBQkxYucKEX6fKtb2yoUxnJLMA+vaS5pzPbmM
x-served-from: l1
x-vhostid: 6544, 24033
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a3174f909a7792a326742671bb6d3dde
fa4703fd1dc5829d61209aaf18407b4498f8a478
bc171d0c715235ad2ba48dbbb594a35ea1af13107fe7b54e988a63a61fa9fb22
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/cM-6dGuF1_HojLLsGnw-s58AILd4o1jWOC-yz8KgLtU.js
200 OK 14 kB URL HTTP/2 www.google.com/js/th/cM-6dGuF1_HojLLsGnw-s58AILd4o1jWOC-yz8KgLtU.js
IP
File type ASCII text, with very long lines (35747)
Hash e2b00639c547f7392f1b48307911a88c
5450920c321d88ea1b7669a0f73afb6197c48c91
dd453bf0a6f10b45e88e884209a014fe23cb4b0dd6f46d8a3e7798a49a8cd89c
GET /js/th/cM-6dGuF1_HojLLsGnw-s58AILd4o1jWOC-yz8KgLtU.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14158
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 12:13:01 GMT
expires: Thu, 31 Aug 2023 12:13:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 09:00:00 GMT
content-type: text/javascript
age: 26347
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash fb6cd146d0942fb0d1c2609d1c82bffa
398f922ca7464c378fdb301dd1c071204ef2c9ea
c822e1fd4ea80a0333bb60c2d7643c81748763e3775fcb6a1f6cd8e38fa7734a
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 31 Aug 2022 19:32:08 GMT
server: ESF
cache-control: private
content-length: 30552
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fe244465a99d48f257a3dda7ab28c6b8
69c89374520ca54adda7fd15ccb069def5fb3663
8f9938ffef09d02563d617ac9ff1ce97b05c5bf52b64f6724b9f19a5e90965f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1b99b33557e952e371edbd7466e7b59e
eaf6aafc9ca729df03061825cfc8dcb91b14e89e
bd8e84e63d7ebe6bc14d9a6b93386ed944ee6c8096477936e9d6fb539246382e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9d2a27e4f9893144b953aaa54d1cd3d1
06cbd771a4706a759c227a3adb0fc6fa675720c4
de30b81cb2daaeadbf72567ce3fac4baac793408e550ccecaae67c3f48e4ac9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/o_hnF225Etk/sddefault.webp
200 OK 21 kB URL HTTP/2 i.ytimg.com/vi_webp/o_hnF225Etk/sddefault.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 203a274c8b607aaa9bd4583a8d99c338
b7007f9c6e27f7d583545f22263070609126819a
dcfed816cc5b9211a2bea2c4ffc28f3f59be3b36b1dc7485934516cc9a67fbe6
GET /vi_webp/o_hnF225Etk/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 20786
date: Wed, 31 Aug 2022 19:32:08 GMT
expires: Wed, 31 Aug 2022 21:32:08 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b752be4a1366d87533f6225081389ffb
9825972c7a0156442711c25bea35ac813d838ebd
8f192556f8165dbb21c0d8a5739c70d65b3b78425a30c38ed4e5c6450c6ea2d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nahdetmisr.com/?wc-ajax=get_refreshed_fragments
200 OK 161 B URL HTTP/2 nahdetmisr.com/?wc-ajax=get_refreshed_fragments
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JSON data\012- , ASCII text, with no line terminators
Hash 650d329ca7144ad1b254f70cec48c223
05e4429056d334328c79307d47cb4f2437037c25
2343b049d208442d3efabc649b5f659a589a5bbb8d5e92f1fffb474775331fea
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://nahdetmisr.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://nahdetmisr.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-length: 161
content-type: application/json; charset=UTF-8
date: Wed, 31 Aug 2022 19:32:07 GMT
server: Apache
X-Firefox-Spdy: h2
yt3.ggpht.com/YZPCXfcsbNzoIUiLoNDgM5lR1W9LppW0_VtOfYCJlDkyoJhCTm95HJIg-a6BXbk3XxtJeTjdEA=s68-c-k-c0x00ffffff-no-rj
200 OK 1.8 kB URL HTTP/2 yt3.ggpht.com/YZPCXfcsbNzoIUiLoNDgM5lR1W9LppW0_VtOfYCJlDkyoJhCTm95HJIg-a6BXbk3XxtJeTjdEA=s68-c-k-c0x00ffffff-no-rj
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 7cfc4b57802eb20a79f310725d92cf34
6469016258fa2345ccb4e7d33cc7e02151b6bd0d
4dd3497544dcd2ee2bdbf89779f78a1d54ce79f4f64890f017bb700975dc058b
GET /YZPCXfcsbNzoIUiLoNDgM5lR1W9LppW0_VtOfYCJlDkyoJhCTm95HJIg-a6BXbk3XxtJeTjdEA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Thu, 01 Sep 2022 19:32:08 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="channels4_profile.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 31 Aug 2022 19:32:08 GMT
server: fife
content-length: 1815
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9d2a27e4f9893144b953aaa54d1cd3d1
06cbd771a4706a759c227a3adb0fc6fa675720c4
de30b81cb2daaeadbf72567ce3fac4baac793408e550ccecaae67c3f48e4ac9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:32:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 31 Aug 2022 19:32:08 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/uploads/2015/09/CAMBRIDGE-1.jpg
200 OK 9.8 kB URL HTTP/2 nahdetmisr.com/wp-content/uploads/2015/09/CAMBRIDGE-1.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x100, components 3\012- data
Hash c9d1c3783e327144b20d931142b50e5d
40357cff96d91edbe2220a7136fe3ce09b5bb07f
a8915fa5d402aaf474fa19f04d1bfe507104cf6714afa104eedbf6f4a7cb193d
GET /wp-content/uploads/2015/09/CAMBRIDGE-1.jpg HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Cookie: _ga=GA1.2.992358283.1661974327; _gid=GA1.2.562065637.1661974327; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
vary: Accept
last-modified: Tue, 18 May 2021 01:52:20 GMT
accept-ranges: bytes
content-length: 9847
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/webp
date: Wed, 31 Aug 2022 19:32:08 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/uploads/2015/09/national-geographic.jpg
200 OK 9.3 kB URL HTTP/2 nahdetmisr.com/wp-content/uploads/2015/09/national-geographic.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x100, components 3\012- data
Hash d324897b1ab9f5d2f23d7af6cefbcc10
5376dc29f85ebc4ec2c8e4f1ef044e4e995026b9
23618747463216a84818083db09f728983afeebf223b5fef5c961a860c85d329
GET /wp-content/uploads/2015/09/national-geographic.jpg HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Cookie: _ga=GA1.2.992358283.1661974327; _gid=GA1.2.562065637.1661974327; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
vary: Accept
last-modified: Tue, 18 May 2021 00:54:53 GMT
accept-ranges: bytes
content-length: 9303
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/webp
date: Wed, 31 Aug 2022 19:32:08 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/uploads/2015/09/disney.jpg
200 OK 16 kB URL HTTP/2 nahdetmisr.com/wp-content/uploads/2015/09/disney.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x100, components 3\012- data
Hash f7c8b8124fcd287646010e31f45ac59d
98b5019e2a47618241cce0eeac32b0ef4744db4c
175e9a34c7233d34296c2a6871607db0b043fcee909abd718e194ca53b23deb0
GET /wp-content/uploads/2015/09/disney.jpg HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Cookie: _ga=GA1.2.992358283.1661974327; _gid=GA1.2.562065637.1661974327; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Tue, 18 May 2021 00:53:52 GMT
accept-ranges: bytes
content-length: 15950
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/jpeg
date: Wed, 31 Aug 2022 19:32:08 GMT
server: Apache
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 118 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 6af7026e8e35f1146bc855d7592e2fa4
06a136af751fff3cc30f8ce75b9f0e0ee6708958
2ae7d3cf49c64c42db02287ba49ad76aec3984d8f943b9999e8bd083f71bd321
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1122
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 31 Aug 2022 19:32:08 GMT
server: ESF
cache-control: private
content-length: 118
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/uploads/2015/09/HMH.jpg
200 OK 9.5 kB URL HTTP/2 nahdetmisr.com/wp-content/uploads/2015/09/HMH.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x100, components 3\012- data
Hash d97d4f81346bb6291e43d8d0cf0a611f
bad3fcfb491ea92b1c5c9005c1b4725de8279891
9d5d6e55c9e237ef0b73e803083163016c9893825a0ea344fbcbc9c757b7c25e
GET /wp-content/uploads/2015/09/HMH.jpg HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Cookie: _ga=GA1.2.992358283.1661974327; _gid=GA1.2.562065637.1661974327; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
vary: Accept
last-modified: Tue, 18 May 2021 02:43:19 GMT
accept-ranges: bytes
content-length: 9516
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/webp
date: Wed, 31 Aug 2022 19:32:08 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/uploads/2015/09/schoolastic.jpg
200 OK 10 kB URL HTTP/2 nahdetmisr.com/wp-content/uploads/2015/09/schoolastic.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x100, components 3\012- data
Hash 06f3035abf9d2e19d98b83ce6ec26e12
01af6bad282fa70abda718a8cd46ca5a3af6e0f2
d4bfe89c0fccd0e162af0c167d39ce155aaa0ec4c606c229370f868c68152fca
GET /wp-content/uploads/2015/09/schoolastic.jpg HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Cookie: _ga=GA1.2.992358283.1661974327; _gid=GA1.2.562065637.1661974327; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
vary: Accept
last-modified: Tue, 18 May 2021 00:54:23 GMT
accept-ranges: bytes
content-length: 10231
cache-control: max-age=10368000
expires: max-age=A10368000, public
x-accel-expires: 10800
content-type: image/webp
date: Wed, 31 Aug 2022 19:32:08 GMT
server: Apache
X-Firefox-Spdy: h2
www.youtube.com/embed/o_hnF225Etk?feature=oembed
200 OK 0 B URL HTTP/2 www.youtube.com/embed/o_hnF225Etk?feature=oembed
IP
GET /embed/o_hnF225Etk?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nahdetmisr.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 31 Aug 2022 19:32:07 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=gH9j71x6RkY; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=0MHl0C_DD5w; Domain=.youtube.com; Expires=Mon, 27-Feb-2023 19:32:07 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+311; expires=Fri, 30-Aug-2024 19:32:07 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
shigaxapo.com/c/D.9D6/bA2D5hlJSnWaQf9AN/DsEP0/MCTdgo2cN-i/0/0oM/T/Q/xoOsDJYX3v
200 OK 0 B URL HTTP/2 shigaxapo.com/c/D.9D6/bA2D5hlJSnWaQf9AN/DsEP0/MCTdgo2cN-i/0/0oM/T/Q/xoOsDJYX3v
IP
Analyzer Verdict Alert fortinet Malware
GET /c/D.9D6/bA2D5hlJSnWaQf9AN/DsEP0/MCTdgo2cN-i/0/0oM/T/Q/xoOsDJYX3v HTTP/1.1
Host: shigaxapo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nahdetmisr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 19:32:07 GMT
content-type: application/javascript
vary: Accept-Encoding
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
last-modified: Wed, 31 Aug 2022 19:32:07 GMT
set-cookie: kadSlcJ=eyJ0aW1lU3RhbXAiOjE2NjE5MjQ1MjUsInpvbmVzIjp7IjQxNDE4NjYiOls0MTQxODY2LDEsMTY2MTk3NDMyN10sIjQzMDQxMjgiOls0MzA0MTI4LDEsMTY2MTg5OTgxMl0sIjQ0OTU4MDAiOls0NDk1ODAwLDIsMTY2MTkyNDUyNV0sIjQ0OTg1OTIiOls0NDk4NTkyLDEsMTY2MTg4OTkwNV19fQ==; max-age=1693510327; path=/
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/cache/wpfc-minified/g4kcop33/7psz3.css
200 OK 0 B URL HTTP/2 nahdetmisr.com/wp-content/cache/wpfc-minified/g4kcop33/7psz3.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/cache/wpfc-minified/g4kcop33/7psz3.css HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Thu, 25 Aug 2022 06:52:13 GMT
accept-ranges: bytes
cache-control: max-age=10368000
expires: max-age=A10368000, public
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-type: text/css
date: Wed, 31 Aug 2022 19:32:05 GMT
server: Apache
X-Firefox-Spdy: h2
nahdetmisr.com/wp-content/cache/wpfc-minified/mn3mzsnb/7psz3.js
200 OK 0 B URL HTTP/2 nahdetmisr.com/wp-content/cache/wpfc-minified/mn3mzsnb/7psz3.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/cache/wpfc-minified/mn3mzsnb/7psz3.js HTTP/1.1
Host: nahdetmisr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nahdetmisr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy:
expect-ct: max-age=7776000, enforce
x-frame-options: SAMEORIGIN
last-modified: Thu, 25 Aug 2022 06:52:13 GMT
accept-ranges: bytes
cache-control: max-age=10368000
expires: max-age=A10368000, public
vary: Accept-Encoding
content-encoding: gzip
x-accel-expires: 10800
content-type: application/javascript
date: Wed, 31 Aug 2022 19:32:06 GMT
server: Apache
X-Firefox-Spdy: h2
108.167.164.123
93.184.220.29
88.85.94.250
23.36.76.226
185.18.187.89
0.0.0.0