firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 14:12:02 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7eUxq1mNXxPcyXO406Z9Vz3V_Vw4Tz79cDXscZsGETfWzq7lzH3R_w==
Age: 581
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6332
Expires: Wed, 21 Sep 2022 16:07:15 GMT
Date: Wed, 21 Sep 2022 14:21:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XPnpInAANSaL1CaFN6LxWq0l2UDujterQNAw98kaJWSKa0I5clufgg==
age: 35190
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 14:21:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.almoeqatar.com/
74.63.213.89200 OK 8.0 kB IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (450), with CRLF, LF line terminators
Hash 9d3a13014e49232014907fad2319f765
dba156cc279cc824fd75012eb3a5f718caf57f1f
a3efdcaff08f1989c93ad6f2e960f69fd044d42bad13eff7089251ad2f26ff6d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:43 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93; path=/
X-Frame-Options: SAMEORIGIN
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 7978
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.almoeqatar.com/template/system/css/style.css
74.63.213.89200 OK 14 kB URL HTTP/1.1 www.almoeqatar.com/template/system/css/style.css
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type assembler source, Unicode text, UTF-8 (with BOM) text, with very long lines (1117)
Hash adf88dd3a30f39775d142d3a3690605e
fcece06357ac982c5208fa6457a1e90114137810
385bbcd843b90e4f6bc409a3c3e8e07412cead00e26d021ed01a86af2cc61191
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/css/style.css HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 13 Dec 2017 07:22:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 13961
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.almoeqatar.com/template/system/css/animate.css
74.63.213.89200 OK 4.6 kB URL HTTP/1.1 www.almoeqatar.com/template/system/css/animate.css
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (460)
Hash 387c45ad010167d3f4825d8d2c0e863c
749f7af47999c0c4a39275f6a418d09b2d34ac0b
fc2411fb06b40160e75d9d387480333cf5eb042302cdc3a6c14c347c8bfac981
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/css/animate.css HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:19:36 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 4641
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb61a4f6f0beed45a5f963bfba6e9d
a07136aeace7036e3b7427d63c60576adbdc388f
3a910cde9f8f65341f3422d28e35ca877558e136c99067b72daaeb56b3d9e76d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.almoeqatar.com/template/system/css/flexslider.css
74.63.213.89200 OK 1.7 kB URL HTTP/1.1 www.almoeqatar.com/template/system/css/flexslider.css
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (329)
Hash 41eb5ccc9b7bd0d9ea105e1516a79e19
707ce04f91fb2778a55a4f4a966833475f963dd8
6046c504a70c5a8f73a17c1d2e15771dae25ea2b9193a52ab8243bff5695aa7c
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/css/flexslider.css HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sun, 12 Oct 2014 21:27:30 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 1669
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.almoeqatar.com/template/system/css/camera.css
74.63.213.89200 OK 3.1 kB URL HTTP/1.1 www.almoeqatar.com/template/system/css/camera.css
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
Hash c745f9f7a273c4750ad07f8ba31b8938
0bb2de6e0687727f886a0834feed2c51da4810f0
2f7b6f80ed71bce236e764af8896b5c3385ce85a503019411156e7f108c87de2
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/css/camera.css HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:19:36 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 3073
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js
172.217.21.170200 OK 27 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js
IP 172.217.21.170:0
File type ASCII text, with very long lines (820)
Hash 88ed7d5a26ffff39cbae41fa7b2c615d
5ea49f5aeeb49e8abd640da2f6d657fb57cc5acc
52943bd40a595c39f84e23ddd74755daa4d013b55c709de9b312661e59103ab3
GET /ajax/libs/jquery/1.4.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 27266
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 20:32:51 GMT
expires: Tue, 19 Sep 2023 20:32:51 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 150533
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bb4bdc4c3c6869c822618f0b9ef1bdc5
6a438b8d9d87aa30e0989ace7fc0d4cafce1f29d
eb762661b0a0ecc4ccdf50229ce134d0062e8d60698b7ed1970c5073b18f31ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.almoeqatar.com/template/system/css/prettyPhoto.css
74.63.213.89200 OK 2.7 kB URL HTTP/1.1 www.almoeqatar.com/template/system/css/prettyPhoto.css
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (402)
Hash a5ca129459d2e44bcaae314ad9d44765
bb5bc0975c393f524fd206893a0f04d5975c37df
f29e3a8b3d153f3d4204194befe541e79fecca49a6b0997955a8ac081e1aad4f
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/css/prettyPhoto.css HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:19:40 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 2738
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 21 Sep 2022 14:03:22 GMT
Expires: Wed, 21 Sep 2022 14:42:15 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: S0XocKLmW3HgJHeKu0FnknwsV4LgeiAcMwfwJ6pT4-Ie3ElZgDNChw==
Age: 1102
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb61a4f6f0beed45a5f963bfba6e9d
a07136aeace7036e3b7427d63c60576adbdc388f
3a910cde9f8f65341f3422d28e35ca877558e136c99067b72daaeb56b3d9e76d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.almoeqatar.com/template/system/css/mediaelementplayer.min.css
74.63.213.89200 OK 2.9 kB URL HTTP/1.1 www.almoeqatar.com/template/system/css/mediaelementplayer.min.css
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
Hash f3b8bc56971ead68369646905a6df4c9
a6b79a0f6ae8398b9bb6f13d981da3e0b6978a64
ccc4d930d65d7211e44989a654182ba49a1a82686a25e049da00e6ab8bd0e800
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/css/mediaelementplayer.min.css HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:19:40 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 2901
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.almoeqatar.com/template/system/css/jquery.onebyone.css
74.63.213.89200 OK 608 B URL HTTP/1.1 www.almoeqatar.com/template/system/css/jquery.onebyone.css
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
Hash afd9f766c6ee18df1275b69bd7d50762
5288b3aa286545f545310f0d603a5e79f294ff08
231dea621217354876d3fc0a3d9395d0fe2addaa482dff8837cc94af394249a8
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/css/jquery.onebyone.css HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:19:38 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 608
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
172.217.21.170200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
IP 172.217.21.170:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash d989f35706c62ce4a5c561586c55566e
d32e7958e5765609bf08dcdefd0b2c2a8714ce34
375dfe942a03ee024b5cc827b3efda5550d13df7530281f50862ce3b33fcb716
GET /ajax/libs/jquery/1.7.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33845
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 22:41:24 GMT
expires: Sat, 16 Sep 2023 22:41:24 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 402020
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.google.com/maps/api/js?sensor=false
216.58.211.14200 OK 54 kB URL HTTP/2 maps.google.com/maps/api/js?sensor=false
IP 216.58.211.14:0
File type ASCII text, with very long lines (2518)
Hash a999353821c1e0b5823fc1fd121d8732
25796bb849553fc4e96aa662c80860483d6c6627
2e011b5c5b240af6bdf40e45b0025b0a2334d93ce84a6640e93350d17d79abac
GET /maps/api/js?sensor=false HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Wed, 21 Sep 2022 14:21:44 GMT
expires: Wed, 21 Sep 2022 14:51:44 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 54067
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=15
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb61a4f6f0beed45a5f963bfba6e9d
a07136aeace7036e3b7427d63c60576adbdc388f
3a910cde9f8f65341f3422d28e35ca877558e136c99067b72daaeb56b3d9e76d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.almoeqatar.com/template/system/css/style-switcher.css
74.63.213.89404 Not Found 30 kB URL HTTP/1.1 www.almoeqatar.com/template/system/css/style-switcher.css
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (382), with CRLF, LF line terminators
Hash cade6ce69c77c75b2d27c5ba0abeede5
51af02babd81cbb87e00dd4cca4e506c47991340
0e529d0036542d659dbcf64840edea26333dccffdb83e59d5d4cae06c1f91d01
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/css/style-switcher.css HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ff6d50919e56aed75c47feb45ee2f2ec
98f558a4b2d4f3c271abc93d0b74ece4ad7a59ef
b1b6f0e78b5a1e2092cba6d71d0d5a918066c0486176cef0a19f51e2d5a9962e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3814
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:44 GMT
Last-Modified: Wed, 21 Sep 2022 13:18:10 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bb4bdc4c3c6869c822618f0b9ef1bdc5
6a438b8d9d87aa30e0989ace7fc0d4cafce1f29d
eb762661b0a0ecc4ccdf50229ce134d0062e8d60698b7ed1970c5073b18f31ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.almoeqatar.com/template/system/css/sm-core-css.css
74.63.213.89200 OK 578 B URL HTTP/1.1 www.almoeqatar.com/template/system/css/sm-core-css.css
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
Hash a39d3f781f835ce57874a949bc14b66c
67d1d1917e05c84edfaf53264b7cfd1fa9a9ecea
7a63e3e5c02a812b20772df11ea0a2a6b0781a1c6e42f4557e8d1635dadf2062
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/css/sm-core-css.css HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 28 Sep 2017 12:39:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 578
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.almoeqatar.com/template/system/css/social_icons.css
74.63.213.89200 OK 6.2 kB URL HTTP/1.1 www.almoeqatar.com/template/system/css/social_icons.css
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
Hash aa7d596f36bd29c4190cd9b59d7b47ac
6c77af09578f37fb6057ffd1f0e336ec19193738
542b781c12af16c62b9b3c5d0ebaf4ed77387b9091494467c641034934a69ae7
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/css/social_icons.css HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 20 Jan 2016 11:45:18 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 6233
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.almoeqatar.com/template/system/css/sm-blue/sm-blue.css
74.63.213.89200 OK 2.7 kB URL HTTP/1.1 www.almoeqatar.com/template/system/css/sm-blue/sm-blue.css
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
Hash 030afda35f0691d1a25185d75a0e6e7d
0ac2e312ea383dcbebd67016a25e3ca1b624d51f
4c7574878ecbf1bf3576ebe162a6533698524728a42a8780ab5b2a51500fdfd4
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/css/sm-blue/sm-blue.css HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 28 Sep 2017 12:39:11 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 2746
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.almoeqatar.com/template/system/js/libs/jquery-loader.js
74.63.213.89200 OK 320 B URL HTTP/1.1 www.almoeqatar.com/template/system/js/libs/jquery-loader.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type HTML document, ASCII text
Hash 1893bdc570f2044a34365dccd521bbc3
652572eaae14f235c5f18f1121dbb6937def9a2d
f9d880f8a2a783f2e566191ce44080e7d08d647f4739de39199a88f21c0ba538
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/libs/jquery-loader.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 02 Apr 2015 10:05:46 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 320
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/jquery.smartmenus.js
74.63.213.89200 OK 11 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/jquery.smartmenus.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
Hash af461011926a70148b2262dd5bd9d3d0
e628f6f9c3a5e9fdb819443b2343184d52903002
8783146969da8abfa1a0af0b1d92710c3818487128e447050f14c84771f26958
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/jquery.smartmenus.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 02 Apr 2015 10:05:38 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 10581
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/mod/mod_index/js/otherJstuff.js
74.63.213.89200 OK 1.2 kB URL HTTP/1.1 www.almoeqatar.com/mod/mod_index/js/otherJstuff.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
Hash 6843642c9cbc646a6192d7fd6f85c61f
9d1b935955621efb77127bbc1635ef8a746ed49c
e6b4489674d6459029acea957181123a41767a15628b6b66535bc178b2d1275c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /mod/mod_index/js/otherJstuff.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 30 Dec 2015 14:09:21 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 1216
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/crawler.js
74.63.213.89200 OK 4.5 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/crawler.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type HTML document, ASCII text
Hash 55c9a4d7b9454dfc7624407a6cfe5485
f14efce4a4fc9f50581b4bb7c262657e9c71b4d2
b994cb8c7918addce6ea6f0bf19be3a5ecd8be42c30d3ea06630d4878c4c8677
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/crawler.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 24 Sep 2014 03:22:28 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 4518
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/custom.js
74.63.213.89200 OK 4.6 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/custom.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
Hash 9c6f36b8f3f6e84c98e0d82315465735
14be060e640dc25cb79e8d416a5e87850e2677f1
d8f9bb5abd2486a36b1849b57ad8e2e4e7f0b0c6b7ea41376e77529211374ee0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/custom.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sun, 12 Oct 2014 22:03:00 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 4596
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/google-map/jquery.gmap.min.js
74.63.213.89200 OK 4.5 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/google-map/jquery.gmap.min.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (13680)
Hash 48462070876e7640ab70a8e2531cae43
f5c492e395c13cc2ae4e9570d54585a7dc1c9e8b
f3a7220dc3bb7bfe16338768f82a946b8f0046af09eca664088d04bb199220cc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/google-map/jquery.gmap.min.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:16:02 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 4491
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/flex-slider/jquery.flexslider-min.js
74.63.213.89200 OK 3.1 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/flex-slider/jquery.flexslider-min.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (11228)
Hash 162c66806b221204d6d949c8f1d1cdff
e4326e3401eca02a78c351e53597851f21ab5b64
f0ae817e87451bcff60cd33a6b65fec10d58ea0b56fda17794e571b67df70bb0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/flex-slider/jquery.flexslider-min.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:16:00 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 3119
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/tipsy/jquery.tipsy.js
74.63.213.89200 OK 1.3 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/tipsy/jquery.tipsy.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
Hash 7e95f0faf0fa5c42658c1be6065b0668
91cb1f3ba6514c690f31a5b46331bc6700d88911
3a0b22d336d26a9d1d842859e6796e20b5048bc19de5020cb3ec9c12158182c6
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/tipsy/jquery.tipsy.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:16:28 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 1254
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/carousel/jquery.jcarousel.min.js
74.63.213.89200 OK 4.5 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/carousel/jquery.jcarousel.min.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (15184)
Hash e9ff35ee89ecb358a94014d708625948
383052a25547ec7f39021582bc47da40804bfa6a
0124beecd1ea9c540939da1bfb565aa2ae094e2894b542c8521d1f7851d89e6e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/carousel/jquery.jcarousel.min.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:15:44 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 4509
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/easing/jquery.easing-1.3.min.js
74.63.213.89200 OK 2.0 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/easing/jquery.easing-1.3.min.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type Non-ISO extended-ASCII text
Hash 81455aaf1dca56c1dd9f18c167ee7696
ed5a7f8652c54ab17d8521d8f4f7ad728cc9c15f
4c4372b7f5a9d7a93088d385f5bee24f190e8f1fa1b00d982c9ca38662cc5f49
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/easing/jquery.easing-1.3.min.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:15:56 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 1990
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/twitter/jquery.tweet.js
74.63.213.89200 OK 3.9 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/twitter/jquery.tweet.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type HTML document, Unicode text, UTF-8 text
Hash f67f2b8ec6c6f7a7efc62678054a99cd
b5c0bd43cfe6edf9e821226c0bce29ed72c26c62
c9de8cc3ebe258d32303947d26442bd2eed51fb4dd41a7bb0301ebb4e0ee5369
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/twitter/jquery.tweet.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:16:30 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 3940
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/prettyPhoto/jquery.prettyPhoto.js
74.63.213.89200 OK 6.3 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/prettyPhoto/jquery.prettyPhoto.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type HTML document, ASCII text, with very long lines (3572)
Hash a3396c7c3088a5c5079f8a07f4266167
67d3154f867f68c4d2956114657baa58afc80a85
1e8debfe6ecd052f89d9822b43f42f75b7db0a808d4fc9be5d09d11b28e7024d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/prettyPhoto/jquery.prettyPhoto.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 19 Aug 2014 22:38:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 6293
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
35.161.230.192101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.230.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 05FE1iDCLr8DVrNytJhVRA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: D1LdtYH8d9N2qsJdrJznBSkL+r0=
www.almoeqatar.com/template/system/js/fit-videos/jquery.fitvids.js
74.63.213.89200 OK 1.0 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/fit-videos/jquery.fitvids.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type HTML document, ASCII text
Hash e216b0d5837be0b2c1cd41bf907ed79a
4598faacb0e3bd1d31b5fb1fe73024a649b845a1
604285f22846f666e3df91830011545e813d0b73fdbfaed503e2cbe978470ffc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/fit-videos/jquery.fitvids.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:15:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 1046
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/camera-slider/camera.min.js
74.63.213.89200 OK 8.5 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/camera-slider/camera.min.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (38959)
Hash bfea049020cee0b8beaaae216d199b6d
c0aff71042da27b1c186fc9166b0bdc22642d789
b79221ecd4607d7a38de04b0a730851fb2d0da38a31905a1ea3dbf7ed65f000b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/camera-slider/camera.min.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:44 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:15:38 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 8510
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/camera-slider/jquery.mobile.customized.min.js
74.63.213.89200 OK 6.5 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/camera-slider/jquery.mobile.customized.min.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (17219)
Hash 9c52f0ab3ead5a6fcce623ebd980c1e3
b75d19c90deae9abb2a5e07828fa75e7e0303bcb
546011ab8e1e36c4e241c502c215022e6a37ec484f30575c2b7efaf10b026231
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/camera-slider/jquery.mobile.customized.min.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:15:38 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 6501
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/portfolio/jquery.isotope.min.js
74.63.213.89200 OK 5.0 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/portfolio/jquery.isotope.min.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type HTML document, ASCII text, with very long lines (15636)
Hash 8e83fe38c9800fd03d3a40b16c08f5fd
770eda1164232d1602100b412b97b375bc705e01
cdb5df1750fd13aee0f9d1f310948f927f65b312248670c0d90a94a8b5c462ca
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/portfolio/jquery.isotope.min.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:16:18 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 5006
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/content-scroll/jquery.localscroll-min.js
74.63.213.89200 OK 860 B URL HTTP/1.1 www.almoeqatar.com/template/system/js/content-scroll/jquery.localscroll-min.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (1276)
Hash b5cc5c5a01f9da6b0a90f2d6c1edfcb6
7ef638a3e8a4515be9a0f4f719af1d21933735f5
7d74135a595f0d28e68e9c02dc403e8ab77d22a3ff39a91680ba0aece4b0c828
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/content-scroll/jquery.localscroll-min.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:15:42 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 860
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/scrolltop/scrolltopcontrol.js
74.63.213.89200 OK 1.2 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/scrolltop/scrolltopcontrol.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (1927)
Hash 9c763ff26abfd19f49213499b3b13e5c
557e147d6067c1c75ca44973b85fae6aa2f3ec87
bbf0abcd094f56880cc0569815627a86222fb95cbe74a021834205b8dceac362
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/scrolltop/scrolltopcontrol.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:16:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 1199
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/kwicks/jquery.kwicks-1.5.1.pack.js
74.63.213.89200 OK 1.0 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/kwicks/jquery.kwicks-1.5.1.pack.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (2153)
Hash 5dc2e2ccf37181559bbf072a2d72827d
89f77edd6c3feaa45b1fd9da84709ec4ced92431
312152c2b9cd65cd5dde1930f7fe0400bf3d32ed27505f055901301855414112
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/kwicks/jquery.kwicks-1.5.1.pack.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:16:04 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 1047
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/onebyone-slider/jquery.onebyone.min.js
74.63.213.89200 OK 1.4 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/onebyone-slider/jquery.onebyone.min.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (4167), with no line terminators
Hash d852a0016a09f9a1e6762b39dbce58e7
f93faca3b21099192b5635b55ce9832ec9163cfb
1d7667473b407e6a0c50b0530db21c89f509002deda1ea5ab23d65683eac9440
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/onebyone-slider/jquery.onebyone.min.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:16:06 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 1432
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/onebyone-slider/jquery.touchwipe.min.js
74.63.213.89200 OK 739 B URL HTTP/1.1 www.almoeqatar.com/template/system/js/onebyone-slider/jquery.touchwipe.min.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (1075)
Hash 7e1d7a4d9cd990648d7a113e533f6622
6439b7b671fcc1f5b8041ee09313b5ef75a308cc
d7deb2640af753c279a644a48265704a70844165af136f6821e77cf6b54f3ac7
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/onebyone-slider/jquery.touchwipe.min.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:16:06 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 739
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/player/mediaelement-and-player.min.js
74.63.213.89200 OK 16 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/player/mediaelement-and-player.min.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type HTML document, ASCII text, with very long lines (749)
Hash e80b238ba7fa363b84126c0f20aeda1c
8020c7c1ab3b77297a3ef2201d5589ece106da87
b63eb7abf326f390ffae0d5ae8a9b1c5c1b8758fd5bbca82453c7794f120326e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/player/mediaelement-and-player.min.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:16:18 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 15804
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/cufon-fonts/cufon.js
74.63.213.89200 OK 7.5 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/cufon-fonts/cufon.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (18158)
Hash b5d2a1ceccca32fd60c4b2150a41cd93
71ee747ed6680058709e96a8789f06c14e2597bb
de5319b75214f78b23e04eacd9f6cdb91fca5a49428d26c5107fc6d789a12d43
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/cufon-fonts/cufon.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:15:46 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 7475
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/cufon-fonts/cufon-settings.js
74.63.213.89200 OK 227 B URL HTTP/1.1 www.almoeqatar.com/template/system/js/cufon-fonts/cufon-settings.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
Hash 6a393febf581e02e7b00ed440fb2909d
a605a049492493c4ce5387c1b407bdcb2e523c90
f4dd51b8cbe473c282efb0f1bb91fc447e6fd895b43e3cfeade8ffe787b7d4b5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/cufon-fonts/cufon-settings.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:15:46 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 227
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/js/swfobject/swfobject.js
74.63.213.89200 OK 3.9 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/swfobject/swfobject.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type HTML document, ASCII text, with very long lines (9516)
Hash 60192b7e0b4cd0893f2c7270368ac3e4
85de6a7caeac993a7e7e13becbd2f58502a117b1
b41e20fd694eb168b9e50b3866a4cc83101770389c6fd7ad4221235320b48020
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/swfobject/swfobject.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:16:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 3868
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/template/system/images/almoeqatar_logo.jpg
74.63.213.89200 OK 3.2 kB URL HTTP/1.1 www.almoeqatar.com/template/system/images/almoeqatar_logo.jpg
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 174x62, components 3\012- data
Hash 4ce65455df8074cf9b5ebf573f8e2e77
3a40a67cba5f237bace441f43a877e4147835467
3c7e98981f22fe28b04d5431be7bfe403c9a35654ee57f1d200815c1fadcf578
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/images/almoeqatar_logo.jpg HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 10 Dec 2015 15:57:58 GMT
Accept-Ranges: bytes
Content-Length: 3195
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.almoeqatar.com/template/system/js/cufon-fonts/TitilliumText.font.js
74.63.213.89200 OK 38 kB URL HTTP/1.1 www.almoeqatar.com/template/system/js/cufon-fonts/TitilliumText.font.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (64933)
Hash 28888fef381b111cf7fe09cd86849a2d
d4f43f5ab64448ba0d552769b4b66451e8bb31fb
785e16817cf1adc369b29d1f36621300da7f16223a6eb4287d2c3f4e08b276fb
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /template/system/js/cufon-fonts/TitilliumText.font.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:15:54 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 21 Oct 2022 14:21:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Content-Length: 37721
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.almoeqatar.com/uploads/brandLogos/thumbs/98_53_Epson-logo%20(col).gif
74.63.213.89200 OK 3.1 kB URL HTTP/1.1 www.almoeqatar.com/uploads/brandLogos/thumbs/98_53_Epson-logo%20(col).gif
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type GIF image data, version 87a, 140 x 67\012- data
Hash 165616502321536ae2d4e3f4319a910f
ce30ad89a4624254fd5e4458c49d61040442f14f
96a61991532425ea5d583b953c1572cda29bf3b0de833e76e6c6b330b5e7f3c6
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/brandLogos/thumbs/98_53_Epson-logo%20(col).gif HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 30 Dec 2015 14:32:07 GMT
Accept-Ranges: bytes
Content-Length: 3149
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/gif
www.almoeqatar.com/uploads/brandLogos/thumbs/100_56_Brother_Logo%20(1).jpg
74.63.213.89200 OK 2.1 kB URL HTTP/1.1 www.almoeqatar.com/uploads/brandLogos/thumbs/100_56_Brother_Logo%20(1).jpg
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 140x67, components 3\012- data
Hash 489f2616d61b3b21d748390f8da733d0
aff5d668f8f205911114c8901d8b3a05e4a24d1c
0675cdd7b12eb9e802ef9231a2cc8b0f786e13d12ddf9657f2fd09b15b900ac3
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/brandLogos/thumbs/100_56_Brother_Logo%20(1).jpg HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 30 Dec 2015 14:33:45 GMT
Accept-Ranges: bytes
Content-Length: 2074
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 596ea0e7cffcb12819c214fd7e55e6b5
fdf581b35743d7693bf8c7f6154471a1b2646f06
a78eee2be3725b096407fde832e7762dad74ac69165f57a10b1ef76b5b2d9874
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.almoeqatar.com/uploads/newsBanner/originalImg/48_img.png
74.63.213.89200 OK 41 kB URL HTTP/1.1 www.almoeqatar.com/uploads/newsBanner/originalImg/48_img.png
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 513 x 171, 8-bit/color RGBA, non-interlaced\012- data
Hash 7886b6cecff681a8521f0ecfb8b4ce63
01f59d85b1c7a7a5b7dd64536b96852f55503ab6
9f628b4d31dcf8e67bd1a4a3c79692d65968a391a3039aa14a9a6e6a1af07e33
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/newsBanner/originalImg/48_img.png HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sun, 13 Dec 2015 17:06:14 GMT
Accept-Ranges: bytes
Content-Length: 40715
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.googletagmanager.com/gtm.js?id=GTM-NNNNJ6Q
142.250.74.72200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NNNNJ6Q
IP 142.250.74.72:0
File type ASCII text, with very long lines (2136)
Hash 9fed482b5e9e86761b9d4d6ae42eb92a
78a28a62578c0ac745d6267284ab771b74d6ece5
543e0f56160a8bce31600882bce3f8190da7167c1e4685852fd5e2fec7578e1d
GET /gtm.js?id=GTM-NNNNJ6Q HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Sep 2022 14:21:45 GMT
expires: Wed, 21 Sep 2022 14:21:45 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46190
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 596ea0e7cffcb12819c214fd7e55e6b5
fdf581b35743d7693bf8c7f6154471a1b2646f06
a78eee2be3725b096407fde832e7762dad74ac69165f57a10b1ef76b5b2d9874
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.almoeqatar.com/template/system/images/bg_ads.jpg
74.63.213.89200 OK 390 B URL HTTP/1.1 www.almoeqatar.com/template/system/images/bg_ads.jpg
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 10x10, components 3\012- data
Hash 43b0a5a4510a78843d828f03f5a90fe1
88fa14686e1a636a2d8fe3ad1ad8b782d41a2526
a1f52d5b8972122fc639f7f41a31922dc09cdce1430a89d9448cf5ed24505b2f
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/images/bg_ads.jpg HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/template/system/css/style.css
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 09 Oct 2014 21:15:46 GMT
Accept-Ranges: bytes
Content-Length: 390
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.almoeqatar.com/uploads/brandLogos/thumbs/102_86_DatalogicLogo.png
74.63.213.89200 OK 1.9 kB URL HTTP/1.1 www.almoeqatar.com/uploads/brandLogos/thumbs/102_86_DatalogicLogo.png
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type GIF image data, version 87a, 140 x 67\012- data
Hash fc5ae66a5de1e507cf71c52eb36b6e4f
f1535d032e216e1ce399acad927e7a0626365ee8
de678ad3b9b32a33922322ee80cd6402f1b16a76cd6cce9b5f96f652be9acdc2
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/brandLogos/thumbs/102_86_DatalogicLogo.png HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 30 Dec 2015 14:34:36 GMT
Accept-Ranges: bytes
Content-Length: 1895
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
www.almoeqatar.com/uploads/brandLogos/thumbs/109_hp-logo-color.png
74.63.213.89200 OK 1.6 kB URL HTTP/1.1 www.almoeqatar.com/uploads/brandLogos/thumbs/109_hp-logo-color.png
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type GIF image data, version 87a, 140 x 67\012- data
Hash b9f800914873a0e4a71761008bb44928
9909229c3ea5cd76af4a67505e50067a48bc770d
63d8f830142dbbd27e1055c36ba2a68e59858252e295ca8a4db2d733c9181714
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/brandLogos/thumbs/109_hp-logo-color.png HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sun, 03 Jan 2016 11:33:42 GMT
Accept-Ranges: bytes
Content-Length: 1607
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
chimpstatic.com/mcjs-connected/js/users/2bb82f4e9080db48af3e21f75/a4d8339dc8f688c1f6aa59828.js
96.6.17.210200 OK 50 B URL HTTP/1.1 chimpstatic.com/mcjs-connected/js/users/2bb82f4e9080db48af3e21f75/a4d8339dc8f688c1f6aa59828.js
IP 96.6.17.210:0
Hash 104d46a3208b40e8ded389332f5a78a3
4ab55ccb2972e9a3cb62c65c97308c2450a682bb
f6e4f5edb3194334a199f0bf80b38d92a0b7388330fbce94c8c0fb2f852c171f
GET /mcjs-connected/js/users/2bb82f4e9080db48af3e21f75/a4d8339dc8f688c1f6aa59828.js HTTP/1.1
Host: chimpstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: CQcv/2ykywszhlNNfoxHpxNi7AaOkAqtSUNFyx2WJeC0MPErfzCAHo6oUvO8NzjYi3mLJZ0aqrc=
x-amz-request-id: 45CD19AVMPVHSA4S
Last-Modified: Thu, 09 May 2019 14:29:05 GMT
ETag: "104d46a3208b40e8ded389332f5a78a3"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 50
X-EdgeConnect-MidMile-RTT: 0, 18
X-EdgeConnect-Origin-MEX-Latency: 147, 147
Cache-Control: max-age=1773
Expires: Wed, 21 Sep 2022 14:51:18 GMT
Date: Wed, 21 Sep 2022 14:21:45 GMT
Connection: keep-alive
www.almoeqatar.com/uploads/brandLogos/thumbs/107_draper%20(col).fw.png
74.63.213.89200 OK 2.2 kB URL HTTP/1.1 www.almoeqatar.com/uploads/brandLogos/thumbs/107_draper%20(col).fw.png
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type GIF image data, version 87a, 140 x 67\012- data
Hash bcd81a540773f2f2fa9918fe86c2b44d
051536ddea0c633bd2a2b98ff61fe4d0ab4287f4
3b3de44170325a10136e84cc7540c1fd189e5b2dc0702c7e4800cda0aa1df268
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/brandLogos/thumbs/107_draper%20(col).fw.png HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 May 2018 08:18:33 GMT
Accept-Ranges: bytes
Content-Length: 2207
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
www.almoeqatar.com/template/system/images/quote.png
74.63.213.89200 OK 3.3 kB URL HTTP/1.1 www.almoeqatar.com/template/system/images/quote.png
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 25 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 2edc4d2160fb5760a4c496bfd4361d0c
ad6e78dbe75de9e4c65ab796aaa899aa98603adb
710e0b139a53d6756d82abb7c8391d1c42640606b47a89d666f32614126e4c41
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/images/quote.png HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/template/system/css/style.css
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 Jul 2014 15:16:46 GMT
Accept-Ranges: bytes
Content-Length: 3267
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
www.almoeqatar.com/template/system/images/social_icons/social_combined.png
74.63.213.89200 OK 3.9 kB URL HTTP/1.1 www.almoeqatar.com/template/system/images/social_icons/social_combined.png
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 32 x 297, 8-bit/color RGBA, non-interlaced\012- data
Hash b4f3a02e4228b7efc1d381ef799cd6bf
b7b8b6c68cb2e9d93ee087a6ee0cffcfb4f52cff
59071c6fc97b0ebfb6e44d9cec954bff0c30421d53f62e55c41629102b5030fc
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/images/social_icons/social_combined.png HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/template/system/css/social_icons.css
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 20 Jan 2016 11:45:40 GMT
Accept-Ranges: bytes
Content-Length: 3934
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
www.almoeqatar.com/uploads/brandLogos/thumbs/110_si%20logo).fw.png
74.63.213.89200 OK 1.7 kB URL HTTP/1.1 www.almoeqatar.com/uploads/brandLogos/thumbs/110_si%20logo).fw.png
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type GIF image data, version 87a, 140 x 67\012- data
Hash 7864d78d46f10472942af0ed5c5b9cf9
ee6ec379c34e24f334c4712fd733564b01ee9da6
791ec04038139592be07b98db91fd75f6837c3919a8d09ecbd595b21c3f2bb64
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/brandLogos/thumbs/110_si%20logo).fw.png HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 May 2018 10:13:03 GMT
Accept-Ranges: bytes
Content-Length: 1687
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
www.almoeqatar.com/uploads/brandLogos/thumbs/111_Anchor-logo.png
74.63.213.89200 OK 3.6 kB URL HTTP/1.1 www.almoeqatar.com/uploads/brandLogos/thumbs/111_Anchor-logo.png
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type GIF image data, version 87a, 140 x 67\012- data
Hash 5f2250f67f434a2820bbeb7a7ed4d3a2
5bea1538afbd98136367904b796b244ea0a446a7
3aaba0084992d8d7fbf6d99a11a3ae76b18cf1f8947e4bc64cd59fa1fa787d9a
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/brandLogos/thumbs/111_Anchor-logo.png HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sun, 03 Jan 2016 11:41:44 GMT
Accept-Ranges: bytes
Content-Length: 3570
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
www.almoeqatar.com/uploads/newsBanner/originalImg/49_img.png
74.63.213.89200 OK 146 kB URL HTTP/1.1 www.almoeqatar.com/uploads/newsBanner/originalImg/49_img.png
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 513 x 171, 8-bit/color RGB, non-interlaced\012- data
Size 146 kB (145892 bytes)
Hash 6663e357955c349d81aa768b69f02d04
42df91f2382be36e09b7d1869ea2a3e68662177c
0bfe5571517be1fb7f40050e9fb03ec2e8ac177d3db9e10c2845aa4ff096f8c5
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/newsBanner/originalImg/49_img.png HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sun, 13 Dec 2015 17:00:04 GMT
Accept-Ranges: bytes
Content-Length: 145892
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.almoeqatar.com/uploads/brandLogos/thumbs/112_SPECKTRON-Logo.png
74.63.213.89200 OK 1.8 kB URL HTTP/1.1 www.almoeqatar.com/uploads/brandLogos/thumbs/112_SPECKTRON-Logo.png
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type GIF image data, version 87a, 140 x 67\012- data
Hash 866977ec0094d6f8091c3a1420814851
5d918556236d440891e250d51ec5a28e37f64498
2fa2dca92886e34db6ce599a996fdbb5c70f9a992732333f88167fac001ee746
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/brandLogos/thumbs/112_SPECKTRON-Logo.png HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sun, 03 Jan 2016 11:42:25 GMT
Accept-Ranges: bytes
Content-Length: 1846
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
www.almoeqatar.com/uploads/brandLogos/thumbs/122_Samsung-logo.png
74.63.213.89200 OK 1.9 kB URL HTTP/1.1 www.almoeqatar.com/uploads/brandLogos/thumbs/122_Samsung-logo.png
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type GIF image data, version 87a, 140 x 67\012- data
Hash d6d96b47d651bf8f90cdf0e8651d768b
e3ef1628c43c974b90cedc41b140a58dc72b0472
86fbec59a375227bd210cd8af793b9b7b9e301ea0d5d6168eaecc349eda5d941
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/brandLogos/thumbs/122_Samsung-logo.png HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 10 Mar 2016 05:23:55 GMT
Accept-Ranges: bytes
Content-Length: 1904
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
www.almoeqatar.com/uploads/brandLogos/thumbs/115_Swivl_logo.jpg
74.63.213.89200 OK 1.4 kB URL HTTP/1.1 www.almoeqatar.com/uploads/brandLogos/thumbs/115_Swivl_logo.jpg
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 140x65, components 3\012- data
Hash e51152957e2313317ce78a761b4e5ca7
66190b2bf7b2ba2ffd1fce4a234ff2456642e2df
5cfc7b35ecfec35967475e6bb9951fb0be96330324f3554524d956c78ee768e8
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/brandLogos/thumbs/115_Swivl_logo.jpg HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sun, 03 Jan 2016 12:07:21 GMT
Accept-Ranges: bytes
Content-Length: 1367
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.almoeqatar.com/uploads/brandLogos/thumbs/123_es%20logo.fw.png
74.63.213.89200 OK 4.3 kB URL HTTP/1.1 www.almoeqatar.com/uploads/brandLogos/thumbs/123_es%20logo.fw.png
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type GIF image data, version 87a, 140 x 67\012- data
Hash 5f86c423692948854477839fcc023bd6
3e3ad9cea22acaf5341a942974cff2ecd742ced7
9b5b5e3fa30ab134225ebb66479c3dfd9de2566ff1b175a2584cd6bea4c3dedc
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/brandLogos/thumbs/123_es%20logo.fw.png HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 15 May 2018 10:15:41 GMT
Accept-Ranges: bytes
Content-Length: 4337
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
www.almoeqatar.com/uploads/brandLogos/thumbs/114_woosim%20system_logo.jpg
74.63.213.89200 OK 2.0 kB URL HTTP/1.1 www.almoeqatar.com/uploads/brandLogos/thumbs/114_woosim%20system_logo.jpg
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 140x67, components 3\012- data
Hash 0293cebaab63787b9bef8061c6246725
0982fcecd7f23fb49bd1e8d3f12d8cab415c494a
045745ab5188454d3bfcf75b6f209020eb267de18a25cfd1a43382bf3ee22f9e
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/brandLogos/thumbs/114_woosim%20system_logo.jpg HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sun, 03 Jan 2016 12:03:58 GMT
Accept-Ranges: bytes
Content-Length: 2028
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
www.almoeqatar.com/uploads/brandLogos/thumbs/119_Graphtec.png
74.63.213.89200 OK 2.7 kB URL HTTP/1.1 www.almoeqatar.com/uploads/brandLogos/thumbs/119_Graphtec.png
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type GIF image data, version 87a, 140 x 67\012- data
Hash c35a8bed9ca33c813b71905acf84bbdf
239c55535e728c58881f192cdda30a4b21841cc3
a88cf7d3bb56e75076d70309e4904342bded0035ee29f69c3ad8a9418807d29a
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/brandLogos/thumbs/119_Graphtec.png HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 25 Jan 2016 05:34:16 GMT
Accept-Ranges: bytes
Content-Length: 2708
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
www.almoeqatar.com/uploads/brandLogos/thumbs/128_peerless_av_logo.png
74.63.213.89200 OK 1.3 kB URL HTTP/1.1 www.almoeqatar.com/uploads/brandLogos/thumbs/128_peerless_av_logo.png
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type GIF image data, version 87a, 140 x 67\012- data
Hash c21b2bad86ddaa1d5c003c2345faa6a4
34bc2e6f548edc86e6ccc6abe5c98a9549b6d827
148d1dd8152e1428703dd60ecd717dfb51168f3c5f74359719a6ee795a29b446
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/brandLogos/thumbs/128_peerless_av_logo.png HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sun, 22 Jul 2018 10:16:45 GMT
Accept-Ranges: bytes
Content-Length: 1330
Cache-Control: max-age=31536000
Expires: Thu, 21 Sep 2023 14:21:45 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 14d31c538ef2caf4422a82eae13752fb
64a60fba95891f5dcc3d098c78ca3705d679c073
9bf27ebead2d15f04d2874793cb043a7d650b50902092fe6ae3a5a9891c5cabe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5767
Cache-Control: max-age=150680
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:46 GMT
Etag: "632ab10b-1d7"
Expires: Fri, 23 Sep 2022 08:13:06 GMT
Last-Modified: Wed, 21 Sep 2022 06:36:59 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Wed, 21 Sep 2022 12:41:12 GMT
expires: Wed, 21 Sep 2022 14:41:12 GMT
cache-control: public, max-age=7200
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
age: 6034
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e5d7d983b288c67e17280c6a1c0d80d9
8a1e575f8b8427e872c1e4c5645d9ce3e5445e52
a08530049c460e7e3cf236a9969b94b4a794d83f3f4279ac43934194f39dedd6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 9ecd89752214ef749272eef344b9089a
70a58a49c08934265ee34c74efb01d6b3124095d
f76c51487e348977288fcaf83984cd8fe4e73758cc352402774d9eb94680d528
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: clW1zJK1I9l+JkGV8Rsqr16LhUZi7FefcQOxMseUij+oTgaM+PBJxbwTG5I+KM38ugeY/RbGSmFu6WyUaUyntA==
priority: u=3,i
content-length: 26839
x-fb-trip-id: 1679558926
date: Wed, 21 Sep 2022 14:21:46 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.138200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.138:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.almoeqatar.com
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 21 Sep 2022 14:21:46 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.almoeqatar.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 14d31c538ef2caf4422a82eae13752fb
64a60fba95891f5dcc3d098c78ca3705d679c073
9bf27ebead2d15f04d2874793cb043a7d650b50902092fe6ae3a5a9891c5cabe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5767
Cache-Control: max-age=150680
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:46 GMT
Etag: "632ab10b-1d7"
Expires: Fri, 23 Sep 2022 08:13:06 GMT
Last-Modified: Wed, 21 Sep 2022 06:36:59 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4472
Expires: Wed, 21 Sep 2022 15:36:18 GMT
Date: Wed, 21 Sep 2022 14:21:46 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e5d7d983b288c67e17280c6a1c0d80d9
8a1e575f8b8427e872c1e4c5645d9ce3e5445e52
a08530049c460e7e3cf236a9969b94b4a794d83f3f4279ac43934194f39dedd6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4472
Expires: Wed, 21 Sep 2022 15:36:18 GMT
Date: Wed, 21 Sep 2022 14:21:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4472
Expires: Wed, 21 Sep 2022 15:36:18 GMT
Date: Wed, 21 Sep 2022 14:21:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dab1f2cd68979d2004ba4449d759a341
54ed14436a75ba2aeb8459bad2ce70229aff4203
e782fb5ede547e1b167719068c6821c62414dcb0991bf9ac38285cb3ce8894e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10038
x-amzn-requestid: 4cf38a70-a706-4e6a-b854-9404727c599d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mHDCIAMF5-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-5aba5b0640221b302a19781b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NzOpixfxr2pFiDhF5WUGmjD8r2CTn1grSkCEyWvthxRq0djbDKjknA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:15:05 GMT
age: 58001
etag: "54ed14436a75ba2aeb8459bad2ce70229aff4203"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a692964324dbb9c460a1b855808d02e6
1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54
3fa9e780d62fffb635064aeed542c8e04923ff943c6080476836fab6c24e2426
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9201
x-amzn-requestid: 6dbfae76-f9ab-4f31-9b62-bcf5d9ce4515
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YxzxlEYcoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a333d-7d147481402cc46a751b72ed;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:40:13 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JEb0g486u6AjYFbf8rSbreKjh0m1GsAGbvykHl0oahmVN2ciqe5FOw==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:14:57 GMT
etag: "1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54"
content-type: image/jpeg
age: 58009
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14e6ddceb639a5f4875aecb796f95c79
b1cd04a66852694284eeef16a1cde38896e33c03
4c0657a00d7fb4caefa64c28340cad94a306cc393cffe692fcc69c65a80f2391
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10244
x-amzn-requestid: 71f08b9e-e977-48de-ad60-5192a43db517
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYwBkGqjIAMFz0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202d3d-0af3334d085ca4a764e31bb5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e3MMA-NVstIsR7M9_JGH05i1e8pK17RsjyERrSMlC3uoHsWw_7ABtA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 19:18:32 GMT
age: 68594
etag: "b1cd04a66852694284eeef16a1cde38896e33c03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8fb4f53-c4a2-4769-939e-c2f7ff562e36.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8fb4f53-c4a2-4769-939e-c2f7ff562e36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 681b3e236c8b9bc524d935af247ec72b
96048f054243b5a13f14ab3dd9f4a0f3f2e0feae
aaa2f649fd336f89b3c0fc1d9226f8763f5a8cd850826a7f0819ebe7414fbf2a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8fb4f53-c4a2-4769-939e-c2f7ff562e36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7383
x-amzn-requestid: 32b97df0-b979-4e80-a54f-cae77affc915
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy2sHJ_oAMF0bg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31c4-2c6db6e21fa1db233a4c1f49;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cgtMqpEEGh4T-E7vTcy_XhKVaoN9trQ_gtoxx1igk62zYATMmZBQCA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:41:30 GMT
age: 60016
etag: "96048f054243b5a13f14ab3dd9f4a0f3f2e0feae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a504981ee10d8341b64f19001464ae8a
56f228d7358ba9deef000f53214dc7c1dc358109
0ea3b6ed12f3adf9d56e7d9b61f284d28107d99f28ee4e66b4c078a9a1a0cbee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8861
x-amzn-requestid: 873e88ab-7afc-4b14-b428-d90ec2079741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO2wuE0AoAMF7Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3804-0d25ab397a16c78907914e23;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:08:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UStTyIXPucbY9WmDl3W5bTyeT-2SJ5CTUjv8TLeexqZtKd1p2sJrNA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 03:10:59 GMT
age: 40247
etag: "56f228d7358ba9deef000f53214dc7c1dc358109"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7b780d39877eea116277625aaa01f1b
d8ac8a7e19b06e38070a0319cde24b5bf0eaa7db
ca9d59056e0a3f512d36db11f4a4bd3109c2ce1e13b29b5f40dce84df079e71f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12654
x-amzn-requestid: efc99152-2b51-462d-b48b-67ba8263b1cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJOGVYoAMFcvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-00eeb6913e06ac151f293263;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nSWUmBqJPIBYNoLtyrfAN7CK4367b6TEku9eki8BGJVdTWW3dSyckw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 06:45:55 GMT
age: 27351
etag: "d8ac8a7e19b06e38070a0319cde24b5bf0eaa7db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.almoeqatar.com/template/system/images/favicon.gif
74.63.213.89404 Not Found 30 kB URL HTTP/1.1 www.almoeqatar.com/template/system/images/favicon.gif
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (382), with CRLF, LF line terminators
Hash cade6ce69c77c75b2d27c5ba0abeede5
51af02babd81cbb87e00dd4cca4e506c47991340
0e529d0036542d659dbcf64840edea26333dccffdb83e59d5d4cae06c1f91d01
Analyzer Verdict Alert quad9 Sinkholed
GET /template/system/images/favicon.gif HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 21 Sep 2022 14:21:46 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.facebook.com/tr/?id=303298234672961&ev=PageView&dl=https%3A%2F%2Fwww.almoeqatar.com%2F&rl=&if=false&ts=1663770106230&sw=1280&sh=1024&v=2.9.83&r=stable&ec=0&o=30&fbp=fb.1.1663770106229.297583334&it=1663770106040&coo=false&rqm=GET
157.240.200.35200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=303298234672961&ev=PageView&dl=https%3A%2F%2Fwww.almoeqatar.com%2F&rl=&if=false&ts=1663770106230&sw=1280&sh=1024&v=2.9.83&r=stable&ec=0&o=30&fbp=fb.1.1663770106229.297583334&it=1663770106040&coo=false&rqm=GET
IP 157.240.200.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=303298234672961&ev=PageView&dl=https%3A%2F%2Fwww.almoeqatar.com%2F&rl=&if=false&ts=1663770106230&sw=1280&sh=1024&v=2.9.83&r=stable&ec=0&o=30&fbp=fb.1.1663770106229.297583334&it=1663770106040&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Wed, 21 Sep 2022 14:21:46 GMT
expires: Wed, 21 Sep 2022 14:21:46 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9baaa3878151bf5d83c8d7014da17e5d
d8952bdd01ddec1d9a5a480f17ff5e39f6bdb037
1734ff9035c0a9c965cb5047e9fdbc2c1184b6c568066e856c6dbf0b8dc51df3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-76350330-1&cid=791407344.1663770106&jid=1822480973&gjid=840337831&_gid=2017668565.1663770106&_u=YEBAAEAAAAAAAC~&z=2095795873
142.251.1.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-76350330-1&cid=791407344.1663770106&jid=1822480973&gjid=840337831&_gid=2017668565.1663770106&_u=YEBAAEAAAAAAAC~&z=2095795873
IP 142.251.1.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-76350330-1&cid=791407344.1663770106&jid=1822480973&gjid=840337831&_gid=2017668565.1663770106&_u=YEBAAEAAAAAAAC~&z=2095795873 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.almoeqatar.com
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.almoeqatar.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 21 Sep 2022 14:21:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 86 kB IP 142.250.74.3:0
File type gzip compressed data, from Unix\012- data
Hash 03d7cb54131733e5437795cd72b33e01
387caecfee8be86bc663c90c42df4f9c117e04cb
5d51ecc251ac140e64baba8a2b60bf1a164ef4ca4f07c01b411e3528e0a30dfa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fde987c85b17b2242afddd76c3fd3b62
08e87b8185fc39462e6b331d565a864df2fd5865
49bc15e88c546089cc42939f8dc9f7046f1dd98332c31cf52435586bc8ea177c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 67b756e82caefc7860b9f2d4a4f40341
adeae15d52089bcca4ca247fc4aebceef8406e34
72ff9f52080a633dc841554f7d4cc70083edd2572b535d84093ae63f0c50b832
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-76350330-1&cid=791407344.1663770106&jid=1822480973&_u=YEBAAEAAAAAAAC~&z=1999657768
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-76350330-1&cid=791407344.1663770106&jid=1822480973&_u=YEBAAEAAAAAAAC~&z=1999657768
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-76350330-1&cid=791407344.1663770106&jid=1822480973&_u=YEBAAEAAAAAAAC~&z=1999657768 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 14:21:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-76350330-1&cid=791407344.1663770106&jid=1822480973&_u=YEBAAEAAAAAAAC~&z=1999657768
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-76350330-1&cid=791407344.1663770106&jid=1822480973&_u=YEBAAEAAAAAAAC~&z=1999657768
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-76350330-1&cid=791407344.1663770106&jid=1822480973&_u=YEBAAEAAAAAAAC~&z=1999657768 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 14:21:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fde987c85b17b2242afddd76c3fd3b62
08e87b8185fc39462e6b331d565a864df2fd5865
49bc15e88c546089cc42939f8dc9f7046f1dd98332c31cf52435586bc8ea177c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:21:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.almoeqatar.com/libs/jquery/jquery.js
74.63.213.89404 Not Found 0 B URL HTTP/1.1 www.almoeqatar.com/libs/jquery/jquery.js
IP 74.63.213.89:0
ASN #46475 LIMESTONENETWORKS
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /libs/jquery/jquery.js HTTP/1.1
Host: www.almoeqatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.almoeqatar.com/
Cookie: PHPSESSID=n1uj5or2rlvrk7bpd51tbpgc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 21 Sep 2022 14:21:45 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8