firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 20:23:53 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ILlWyJ-YN1OYeVodkz-KP_HnEVpgzFr_ANZnjfgxKrvCbKC302YuqA==
Age: 3296
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8364
Expires: Wed, 21 Sep 2022 23:38:14 GMT
Date: Wed, 21 Sep 2022 21:18:50 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BI8KR-IZ6Efv55PbeLtFn5_OI1Cs3gngv_cEhrjNcJMZfS6H_K0C_g==
age: 60217
X-Firefox-Spdy: h2
www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
162.241.148.192301 Moved Permanently 0 B URL HTTP/1.1 www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /about-us-luxury-resort-of-jaipur/ HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Sep 2022 21:18:50 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 21:18:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 21 Sep 2022 21:03:22 GMT
Expires: Wed, 21 Sep 2022 21:55:43 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LFXomJE1GCLHdqMBXWqTdpJUHUI3ktFRGScrrrD6yMMctCMXWRGGYA==
Age: 928
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ff6d50919e56aed75c47feb45ee2f2ec
98f558a4b2d4f3c271abc93d0b74ece4ad7a59ef
b1b6f0e78b5a1e2092cba6d71d0d5a918066c0486176cef0a19f51e2d5a9962e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5169
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:18:50 GMT
Last-Modified: Wed, 21 Sep 2022 19:52:41 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e827b283303dc5185c2bf63d1a096e53
73812b20e9f262e1d02aafa859b0526feba591a8
f892da2ba3b1eca7998fa21c1cc3f0f5ee6fc58be3c2734042a7798a034dc284
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F892DA2BA3B1ECA7998FA21C1CC3F0F5EE6FC58BE3C2734042A7798A034DC284"
Last-Modified: Mon, 19 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 22 Sep 2022 03:18:50 GMT
Date: Wed, 21 Sep 2022 21:18:50 GMT
Connection: keep-alive
push.services.mozilla.com/
52.89.136.7101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.136.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: a/D0Z7C7mznZxwHxXC7fQQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0CH8C7jLRd7jwqpAGBVhxMI60jo=
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/css/solid.min.css
104.17.24.14200 OK 276 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/css/solid.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (483)
Hash 6f0c50e9daad13cac22318a54d1599d3
93eee2e35d53408a864b17cbf10b90f3794bb6e5
4cd42eff2fc7c58d77d381d0e75c8d884dc3c965856ac2223b346d0d3929eeaf
GET /ajax/libs/font-awesome/5.15.3/css/solid.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 21:18:51 GMT
content-type: text/css; charset=utf-8
content-length: 276
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60510736-29d"
last-modified: Tue, 16 Mar 2021 19:29:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 29043937
expires: Mon, 11 Sep 2023 21:18:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sKJMvT3W9op61ZxnXGkAiJCCnIZiLFfkZGvrJTo%2FZAxtMboofxLNU%2BxqaB3rVQYktyh8CxNWlCCnWiFP2z74vzZ3gDYByBGI%2F5ony6Ia1KKamP5Af2kslOeRYsQaejwmkUAkG3By"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74e5d5f3880c0b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:18:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:18:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:18:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.royalquestresorts.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=2.9.8
162.241.148.192200 OK 4.0 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=2.9.8
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (16823), with no line terminators
Hash e0ce5a555a8e5d71416e07015501fe4a
99f3e5472c4f4aaaeccb0be08cf95dda5fba4846
91c712fa542fb04d8727ad2467dd78115da11b25d54b3cb1a326c445790968d5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=2.9.8 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Dec 2021 05:40:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3968
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/ht-slider-for-elementor/assets/css/ht-slider-widgets.css?ver=1.3.0
162.241.148.192200 OK 1.0 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/ht-slider-for-elementor/assets/css/ht-slider-widgets.css?ver=1.3.0
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash dd444ce669430f838f5231c6320d8cca
4261c0d16d545026dfbd408adb1b48b2d7c73549
e2e63063a9996f53890621531ea5fc3acff8cf855f5f8a7959d44fb107bbbb39
GET /wp-content/plugins/ht-slider-for-elementor/assets/css/ht-slider-widgets.css?ver=1.3.0 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Dec 2021 11:08:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1010
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.trustindex.io/loader.js?ver=5.9.4
143.204.55.84200 OK 6.0 kB URL HTTP/2 cdn.trustindex.io/loader.js?ver=5.9.4
IP 143.204.55.84:0
File type ASCII text, with very long lines (949)
Hash 4c70d9d0397f9d8f53d3c68c6481160f
8fb9807d9a394cb6b4b3eb896cff066f509699b7
7679ad23123e79c6b974bee55d1b07a5c312a381634be6ca489412c789548999
GET /loader.js?ver=5.9.4 HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 5957
server: Apache/2.4.29 (Ubuntu)
last-modified: Fri, 16 Sep 2022 09:42:07 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy: origin
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
date: Wed, 21 Sep 2022 08:31:55 GMT
etag: "5526-5e8c82ce0311c-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iWmdWA5koim4ilcEvRmDd2Z069euqVxOVnRUJPzXrmvLV8eUaoSnGw==
age: 46020
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/testimonial-free/public/assets/css/style.css?ver=2.2.16
162.241.148.192200 OK 957 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/testimonial-free/public/assets/css/style.css?ver=2.2.16
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 3bf8411b21b64e888a82d1075be3594f
7875d88d351b17ee064f3753f8b43a946234760d
777d1f4021913981cb6dc542c20491bada1d305128ac6d82227d16ef8b659c9d
GET /wp-content/plugins/testimonial-free/public/assets/css/style.css?ver=2.2.16 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:04:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 957
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4
162.241.148.192200 OK 16 kB URL HTTP/2 www.royalquestresorts.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (39791)
Hash f9ff11f74e8529779b6d0a398d76be89
e6369c832d137f60420b232d6b8662cd65a50496
4e1528494bebb5f06ecdcb19fe8163aa967b12ff04ce04ec3badcb957433a3c7
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.4 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 06 Apr 2022 00:07:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16047
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/testimonial-free/public/assets/css/deprecated-style.css?ver=2.2.16
162.241.148.192200 OK 687 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/testimonial-free/public/assets/css/deprecated-style.css?ver=2.2.16
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 91e8a2fbe6e65fa9324be7fb72017d36
c40a3615343e71b4082938709d816e8ae637a789
5f7d9e6c99ee8c9c255af54736ff117ab40fd5b15f5660c7caf74c612590aa4e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/testimonial-free/public/assets/css/deprecated-style.css?ver=2.2.16 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:04:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 687
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/testimonial-free/public/assets/css/slick.css?ver=2.2.16
162.241.148.192200 OK 575 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/testimonial-free/public/assets/css/slick.css?ver=2.2.16
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash c7cd7eaaeceb626699c3f61cf0d97b31
7930a73cbfbc0683ebf12b982b4ec0ddf3498852
9782a15945372abd060dd052ac7e93e7239f7f4ac20ff8716c8f554a2e78855f
GET /wp-content/plugins/testimonial-free/public/assets/css/slick.css?ver=2.2.16 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:04:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 575
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/testimonial-free/public/assets/css/font-awesome.min.css?ver=2.2.16
162.241.148.192200 OK 6.7 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/testimonial-free/public/assets/css/font-awesome.min.css?ver=2.2.16
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28900)
Hash f66f7eb69da6f8b450b88b11c8a11d05
1bf463952e18f3c0574e2371bf77ed1ff2498197
a9fff3b21c64c26eef14becf06b6b4ce4dd49adcf8e2d5d7e95e1c80f21855f9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/testimonial-free/public/assets/css/font-awesome.min.css?ver=2.2.16 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:04:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6707
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
media-cdn.tripadvisor.com/media/photo-s/12/e5/63/69/the-vijayran-palace-by.jpg
2.22.2.238200 OK 46 kB URL HTTP/2 media-cdn.tripadvisor.com/media/photo-s/12/e5/63/69/the-vijayran-palace-by.jpg
IP 2.22.2.238:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 550x309, components 3\012- data
Hash d036645157c42179724eda61c055ba91
4b7dd668aa4bda86f9128bd65171c0dc66d8d732
088ee7d18a55d6ba6216608b49ed459daba7415190f2a8e8ad4cc823f58566ac
GET /media/photo-s/12/e5/63/69/the-vijayran-palace-by.jpg HTTP/1.1
Host: media-cdn.tripadvisor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 46412
accept-ranges: bytes
etag: "d036645157c42179724eda61c055ba91"
last-modified: Wed, 09 May 2018 14:09:55 GMT
x-media-cdn: 64756760
x-media-cdn-cache: PASS
x-media-cdn-cache-hits: 0
access-control-allow-origin: *
timing-allow-origin: https://www.tripadvisor.com
cache-control: max-age=1443897
date: Wed, 21 Sep 2022 21:18:51 GMT
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.3
162.241.148.192200 OK 17 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.3
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 04030e9f5c7417df0a4ccaa6f73d8a6b
ecbbe3ebf8cd9c25876babd84a22dac65f48e161
e5addb648e722db104013606f926178393bdbe7262a77141d038caf2c77f1f4e
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.3 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 01 Jul 2022 05:26:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 17395
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/uploads/essential-addons-elementor/cf59d11b2.min.css?ver=1663795131
162.241.148.192200 OK 2.7 kB URL HTTP/2 www.royalquestresorts.com/wp-content/uploads/essential-addons-elementor/cf59d11b2.min.css?ver=1663795131
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8500)
Hash f85df81989855e549e02ac3b86491b01
411abd9908661ccef662e7eab00edc916af77b01
a2f0cc0a81c44a15b4abb23e8e87ec026f4145af1e614e4083ffa768d3c870e9
GET /wp-content/uploads/essential-addons-elementor/cf59d11b2.min.css?ver=1663795131 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 22 Aug 2022 13:21:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2732
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.9
162.241.148.192200 OK 323 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.9
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b24c24b7da3ffeed6ae8ade102a4d317
c4445b3977ce704b927508108e100213eea67a3c
5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.9 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 20 May 2021 21:01:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 323
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.3.1
162.241.148.192200 OK 612 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.3.1
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3815)
Hash 6e4f8f221e061bb2e1f0a97fd1817fb0
60a2a4c331abea39e06e13b352fcdb537280c1c9
4041a38d295961f186e3eb2d43a1806350dbc273f7be77961a2b272cb7e7522e
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.3.1 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 612
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/uploads/elementor/css/post-1535.css?ver=1645476179
162.241.148.192200 OK 378 B URL HTTP/2 www.royalquestresorts.com/wp-content/uploads/elementor/css/post-1535.css?ver=1645476179
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1167), with no line terminators
Hash c9ab7e9ba1d4cd53686509bc5ccc1eea
72c4e967f3f14fcc6acb84dcbde5897d87d203f7
0ddf172c6c340ebd9939912cc7ccca5e1d541e34b97eadb60fcae81df9ce2c15
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-1535.css?ver=1645476179 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Feb 2022 20:42:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 378
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/uploads/elementor/css/post-3044.css?ver=1653977597
162.241.148.192200 OK 812 B URL HTTP/2 www.royalquestresorts.com/wp-content/uploads/elementor/css/post-3044.css?ver=1653977597
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4193), with no line terminators
Hash c0dcb4e2344b9ef3a15b31191acf802b
d6f06723399dcfcfcd292d3498ff4fb9d5a87dc1
2d5efbe769c8f0264be41d8fd22f5cef4caa3d0c16c3a084dc784196e51200d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-3044.css?ver=1653977597 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 May 2022 06:13:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 812
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/uploads/elementor/css/post-44.css?ver=1660906197
162.241.148.192200 OK 1.0 kB URL HTTP/2 www.royalquestresorts.com/wp-content/uploads/elementor/css/post-44.css?ver=1660906197
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3792), with no line terminators
Hash aa2c9c0de53bde7d5e967284a6275f35
8b1c86ae57892f5a5733de856f0b68d85d1dae71
47ee7e0d0b720d0c09b3d0bc4dab89568e37addbf455f947dbaa3b1801a62b0f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-44.css?ver=1660906197 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2022 10:49:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1048
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/uploads/elementor/css/global.css?ver=1645476180
162.241.148.192200 OK 2.5 kB URL HTTP/2 www.royalquestresorts.com/wp-content/uploads/elementor/css/global.css?ver=1645476180
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11639)
Hash 5a87824d76b560b47e66514207793330
f200e1c23fcb80c7b7ca50936cb8d0445b581d05
fddc50ea8f0bd3e6d2a973c90da5c4cbb71663cd18151affcb4cc15292241bfc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/global.css?ver=1645476180 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Feb 2022 20:43:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2528
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.12.0
162.241.148.192200 OK 3.7 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.12.0
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (17633)
Hash 1dfccb0543ed8663e1fad46047cfbaa6
f756c05d9e41f6213ff25bca8effb3b5f3d95378
c8d1b0a41c47498149e645a500778f90ab2dfb6be645c2bee7513f6ce4971dff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.12.0 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3736
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
162.241.148.192200 OK 308 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
162.241.148.192200 OK 309 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 309
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
162.241.148.192200 OK 308 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (491)
Hash 851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
162.241.148.192200 OK 2.7 kB URL HTTP/2 www.royalquestresorts.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6494), with no line terminators
Hash cd63a2ec76032f1905e3f81427904e37
f6a0b8e5ffd10d4ddb89aa76e46365b306f44035
e0bbd4a2856953ed25b2ec89d7778a67865b4cbc8784ada41faa6026007054bd
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Nov 2021 16:35:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2658
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4
162.241.148.192200 OK 5.2 kB URL HTTP/2 www.royalquestresorts.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15224)
Hash 00af0ddf324f69fcb25f0d2e5d08910a
df0379ab0e1b2902957c8aba77f89d88e1239b59
f0a06ed3b8d3917b358def04d87668001cd1c6da31a5cb4bb452313feb64a2a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.4 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Jun 2021 22:15:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5243
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.241.148.192200 OK 4.6 kB URL HTTP/2 www.royalquestresorts.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/themes/vijayran/js/skip-link-focus-fix.js?ver=20160816
162.241.148.192200 OK 587 B URL HTTP/2 www.royalquestresorts.com/wp-content/themes/vijayran/js/skip-link-focus-fix.js?ver=20160816
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash f5ce0ca428007545884219790265c315
632dc6a816eeb22294c6b655b99cdb18f96cf130
dae8ed2ac05d3e8bc4f259a2dd2b4328dd5695f946781e53cfebbfa4942e7302
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/vijayran/js/skip-link-focus-fix.js?ver=20160816 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 07 Dec 2021 06:51:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 587
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPlayfair+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLibre+Baskerville%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.4
142.250.74.10200 OK 3.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPlayfair+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLibre+Baskerville%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.4
IP 142.250.74.10:0
File type ASCII text, with very long lines (2577)
Hash 4c5dc49e5d2bdf45621e8d33a8323737
e9f7969ba79e2d62bdb049ff2df53ca49dcc022c
f79441a311bc2e70cf3ffda665126ef29a7121631258df01efdaa26943daccd9
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPlayfair+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLibre+Baskerville%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 21 Sep 2022 21:18:51 GMT
date: Wed, 21 Sep 2022 21:18:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/themes/vijayran/js/functions.js?ver=20160816
162.241.148.192200 OK 443 B URL HTTP/2 www.royalquestresorts.com/wp-content/themes/vijayran/js/functions.js?ver=20160816
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 36043959966983122adbc1681b4b91c2
0b2de11e586cc87d9e7678d847659d0aea237e4e
a28f625401aab60883149a426cd1ff53acca14eb094ec169d12c9cd9c63dd1a2
GET /wp-content/themes/vijayran/js/functions.js?ver=20160816 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 07 Dec 2021 06:51:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 443
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/uploads/elementor/css/post-6247.css?ver=1645476180
162.241.148.192200 OK 3.0 kB URL HTTP/2 www.royalquestresorts.com/wp-content/uploads/elementor/css/post-6247.css?ver=1645476180
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7467)
Hash e476b701a07c7573549de6eeec461d0b
128354293eeb0d9f6e32d1890c6b15f569c3f134
e2ab2778f00f9c993a45435ea40e2f3618feb686dfc20bc3660e48417060fde5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-6247.css?ver=1645476180 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Feb 2022 20:43:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3024
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/review-widgets-for-tripadvisor/static/js/frontend.js?ver=5.9.4
162.241.148.192200 OK 256 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/review-widgets-for-tripadvisor/static/js/frontend.js?ver=5.9.4
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (431), with no line terminators
Hash f08187a89481aadc3fcc6404b1388883
a3f11cdbee10293f8bc92e0208e7ce8397e133ee
703b5e778dec2f24a83b821fd08b280ac299d2fd998ef8f53f5e71c40d7f22c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/review-widgets-for-tripadvisor/static/js/frontend.js?ver=5.9.4 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Dec 2021 05:40:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 256
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.3.1
162.241.148.192200 OK 3.0 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.3.1
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10019)
Hash c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.3.1 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2997
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/uploads/essential-addons-elementor/cf59d11b2.min.js?ver=1663795131
162.241.148.192200 OK 2.3 kB URL HTTP/2 www.royalquestresorts.com/wp-content/uploads/essential-addons-elementor/cf59d11b2.min.js?ver=1663795131
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6380), with no line terminators
Hash c11be524248ee8818c88c0fd4a289d0f
f2106eb6e58423c29df23b1b45671ce976c36f95
3b312a0a4080e2f9cbe4b71bece6825192811f7061c1db9e2fe7a68fb85721fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/essential-addons-elementor/cf59d11b2.min.js?ver=1663795131 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 22 Aug 2022 13:21:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2301
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.3.1
162.241.148.192200 OK 2.2 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.3.1
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4730)
Hash a5631e040b763b63ca940f6587694657
4a8204e95e4b573d1664b7ba8c1a1f7da63c1d22
9cc766f345725486a508afb8972c0fcdfec6a1906ee27d3060b9e8fec702f634
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.3.1 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2186
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
162.241.148.192200 OK 13 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57726)
Hash dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12577
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
162.241.148.192200 OK 3.7 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3747
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.9
162.241.148.192200 OK 12 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.9
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash fb8b1280d7b068090000ec77326c6109
17c1c34947cbf8fc768784c27a75226b6014574f
30aed9b6bc0defa76c287c45ebe26285d74de8fd37fbe9885781ddbaa5908b0b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.9 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 20 May 2021 21:01:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11617
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
162.241.148.192200 OK 4.3 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10725)
Hash 253da788125c58bc387c3db6cc404bad
6b90ddf84c234155eae1487d2f950ea079c2382c
12055a1176f887f9be83e2637de50ca41173101397cd42431d7c8df3e2757d6d
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4275
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.5.9
162.241.148.192200 OK 5.5 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.5.9
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 2fd65d663f5a5040493bb009d30e8477
41172fc17699762a6c04cadfd5614033c6120f0d
5b50a896ea402ee9c8b98ec2df635ab99220cc47917a6ff443e39cce23b6c97e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.5.9 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 20 May 2021 21:01:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5467
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
162.241.148.192200 OK 8.2 kB URL HTTP/2 www.royalquestresorts.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (19111)
Hash 078687fca5ae929d917cfd43d2b35c46
c32584206d214f6383107c41681ad0bacbd5c201
60f13132d65e3816c8f96dc42c35a04276c6d0636fcf75d13f9736651d2f1e32
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Nov 2021 12:50:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8198
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
162.241.148.192200 OK 8.1 kB URL HTTP/2 www.royalquestresorts.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 4cdacddd7ddb8e34cdc428be2f12ee99
dccf8409d825f49557c40a467c0d3052f4c14923
bd13cfedef2490fbfdcecac80b24ad0f13fd9741bff3ebeb20a49b87d947a141
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Feb 2022 23:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8137
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=2.9.8
162.241.148.192200 OK 9.4 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=2.9.8
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (26472), with no line terminators
Hash f0e2e67f0a4a97ab3e50ff6907e332f1
789721d25c8bffac85c545733e7e38313a0bc3a4
dbf9ae57b24b11e95049bdf37b838fe22eebad7a4c37b3204183e5b6685a7d18
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=2.9.8 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Dec 2021 05:40:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9422
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/uploads/2021/06/logo-svg-main-1.svg
162.241.148.192200 OK 29 kB URL HTTP/2 www.royalquestresorts.com/wp-content/uploads/2021/06/logo-svg-main-1.svg
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5d55ae74167e2bc52d07d79bbb869e12
42d6df6f488ca818de7d6b913dc1b05bf182a34e
4d4f37bba4b837fa729dd3175140e427796252374b8292379fe0fe1da798efb7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/06/logo-svg-main-1.svg HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 23 Sep 2021 05:03:12 GMT
accept-ranges: bytes
content-length: 29301
content-type: image/svg+xml
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.3
162.241.148.192409 Conflict 83 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.3
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.3 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3
162.241.148.192409 Conflict 83 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-admin/admin-ajax.php?action=widget_css_tripadvisor
162.241.148.192200 OK 4.6 kB URL HTTP/2 www.royalquestresorts.com/wp-admin/admin-ajax.php?action=widget_css_tripadvisor
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (17599), with no line terminators
Hash 76e7a71f6ddf8efdf5e5c5b09a442e31
8401614ca94eb3938c67e0bfc459808bd556dec1
fcc2b894d2a535f3c8876ccb46eec2412beeeb434a328e9af532d3566239c070
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/admin-ajax.php?action=widget_css_tripadvisor HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
vary: Accept-Encoding
content-encoding: gzip
content-length: 4627
content-type: text/css;charset=UTF-8
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Merriweather%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CMontserrat%3A400%2C700%7CInconsolata%3A400&subset=latin%2Clatin-ext
142.250.74.10200 OK 1.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Merriweather%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CMontserrat%3A400%2C700%7CInconsolata%3A400&subset=latin%2Clatin-ext
IP 142.250.74.10:0
Hash 52562267254705e5d59021ddb5ceda03
6bfbd150ec39ef355079adb19d6e8fb93d9aae65
b449c9221cc1482c10099e722cd287a41a24569bf0698e020642ddf043e9fd8b
GET /css?family=Merriweather%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CMontserrat%3A400%2C700%7CInconsolata%3A400&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 21 Sep 2022 21:18:51 GMT
date: Wed, 21 Sep 2022 21:18:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/themes/vijayran/genericons/genericons.css?ver=3.4.1
162.241.148.192200 OK 17 kB URL HTTP/2 www.royalquestresorts.com/wp-content/themes/vijayran/genericons/genericons.css?ver=3.4.1
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 9358f11f7209deba996a6793b63f0c83
c6c04a7240047820d6547fbfe71be38ba7b6a19d
bbd396532028501b7508f9183e200d562a1fa028e0476e165c096d64045654ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/vijayran/genericons/genericons.css?ver=3.4.1 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 07 Dec 2021 06:51:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6836
Expires: Wed, 21 Sep 2022 23:12:48 GMT
Date: Wed, 21 Sep 2022 21:18:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6836
Expires: Wed, 21 Sep 2022 23:12:48 GMT
Date: Wed, 21 Sep 2022 21:18:52 GMT
Connection: keep-alive
www.royalquestresorts.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.3
162.241.148.192200 OK 123 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.3
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Size 123 kB (122675 bytes)
Hash 0528f31e72c561f9c79494b2b2c91ee4
03470a3f5cfdbe22170f40b5073f04d52740b5c5
47c9a900f3304b65dfaadce788e5fed00a61d0a9285ce3ca6d5bcaeaee791903
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.3 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 01 Jul 2022 05:26:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
162.241.148.192200 OK 59 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 605c2c95009693b46cecb868972e3b56
2fb1ca75338ae39f9cf3b193333657822ef1e0ca
6c019d3bce4948c67f526dd114922f8740fbe416f41a5b79c4207e35de36e5e5
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8bae3a7a80ff40df1d701dfc925ddeff
91df60162a8322469cada0dd8eb93619f28aec1a
fab10c7ad4658bc191621d9f2042236a7b6e34448ce5215dde5b8d6a64b52952
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6897
x-amzn-requestid: 509dc368-dd1c-4be7-94ff-64dbd53c199f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YoqoRG2WIAMFw6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63268b01-1cb916c251fd5f2f3cf10435;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 03:05:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vs0CTuiAdjRtfJD9qX9S5R07Hw6BWfiOAT50GwTdiSETdoqr2FNsyw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 04:14:25 GMT
age: 61467
etag: "91df60162a8322469cada0dd8eb93619f28aec1a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a504981ee10d8341b64f19001464ae8a
56f228d7358ba9deef000f53214dc7c1dc358109
0ea3b6ed12f3adf9d56e7d9b61f284d28107d99f28ee4e66b4c078a9a1a0cbee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8861
x-amzn-requestid: 873e88ab-7afc-4b14-b428-d90ec2079741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO2wuE0AoAMF7Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3804-0d25ab397a16c78907914e23;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:08:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UStTyIXPucbY9WmDl3W5bTyeT-2SJ5CTUjv8TLeexqZtKd1p2sJrNA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 03:10:59 GMT
age: 65273
etag: "56f228d7358ba9deef000f53214dc7c1dc358109"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dab1f2cd68979d2004ba4449d759a341
54ed14436a75ba2aeb8459bad2ce70229aff4203
e782fb5ede547e1b167719068c6821c62414dcb0991bf9ac38285cb3ce8894e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10038
x-amzn-requestid: 4cf38a70-a706-4e6a-b854-9404727c599d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mHDCIAMF5-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-5aba5b0640221b302a19781b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NzOpixfxr2pFiDhF5WUGmjD8r2CTn1grSkCEyWvthxRq0djbDKjknA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:15:05 GMT
age: 83027
etag: "54ed14436a75ba2aeb8459bad2ce70229aff4203"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a692964324dbb9c460a1b855808d02e6
1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54
3fa9e780d62fffb635064aeed542c8e04923ff943c6080476836fab6c24e2426
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9201
x-amzn-requestid: 6dbfae76-f9ab-4f31-9b62-bcf5d9ce4515
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YxzxlEYcoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a333d-7d147481402cc46a751b72ed;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:40:13 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JEb0g486u6AjYFbf8rSbreKjh0m1GsAGbvykHl0oahmVN2ciqe5FOw==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:14:57 GMT
etag: "1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54"
content-type: image/jpeg
age: 83035
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14e6ddceb639a5f4875aecb796f95c79
b1cd04a66852694284eeef16a1cde38896e33c03
4c0657a00d7fb4caefa64c28340cad94a306cc393cffe692fcc69c65a80f2391
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10244
x-amzn-requestid: 71f08b9e-e977-48de-ad60-5192a43db517
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYwBkGqjIAMFz0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202d3d-0af3334d085ca4a764e31bb5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7FaZfI_iYUANPdxGBld5NfneWwKJeX2nYA_gmvF9NjML5YOVhZIIoA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 19:20:13 GMT
age: 7119
etag: "b1cd04a66852694284eeef16a1cde38896e33c03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 35343b6981ed4c9eb2cd90bc8c2146cd
4e49432e50195a2bc528fb1745a2899306c79db8
cf55f53534e3e8b62513618cda90832a7b9bcd0d15b1a8f6bb51db6eb60daefd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:18:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-180586147-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-180586147-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash eb8af2a7800e5af8f0f70159630152d7
a571eda955c093ce3eed8b3e07a9898738ba9be9
3d567b9812091f7cbb1814acd09b7e2c330d43f26f54ff538e2efb7bc68bac1f
GET /gtag/js?id=UA-180586147-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Sep 2022 21:18:52 GMT
expires: Wed, 21 Sep 2022 21:18:52 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Sep 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42196
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.3
162.241.148.192200 OK 58 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.3
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d02d981d7ae9474e3234e02b37c05471
29f0c623cc0e556fc5e0cea63714cf1455efb56a
c171c6f7b932a7e804b2013015d0b7ca762b42ee24f32146895f25264dd3868f
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.3 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 01 Jul 2022 05:26:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:18:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.royalquestresorts.com/wp-content/themes/vijayran/style.css?ver=5.9.4
162.241.148.192200 OK 96 kB URL HTTP/2 www.royalquestresorts.com/wp-content/themes/vijayran/style.css?ver=5.9.4
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash eb49df5af4c33c8cd9afc5bf069d99ab
50f8004791890c1ff92583d6d1cdd9e43a91d648
3fbc0a4abb50bb5f2756b5649c97e37964079fc961b5eea8a06b73c96a027edf
GET /wp-content/themes/vijayran/style.css?ver=5.9.4 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Dec 2021 07:42:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:18:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/librebaskerville/v14/kmKiZrc3Hgbbcjq75U4uslyuy4kn0qviTgY3KcA.woff2
142.250.74.163200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/librebaskerville/v14/kmKiZrc3Hgbbcjq75U4uslyuy4kn0qviTgY3KcA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 27976, version 1.0\012- data
Hash 22907ce040431644b934b72a7c431a36
78863dfb62414fe1a73f64d7f7fbff63ebccb322
658cbf469e751ade6d30b701fc7ca00b3403329481955d30acb721ca38b45d99
GET /s/librebaskerville/v14/kmKiZrc3Hgbbcjq75U4uslyuy4kn0qviTgY3KcA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.royalquestresorts.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 06:41:32 GMT
expires: Fri, 15 Sep 2023 06:41:32 GMT
cache-control: public, max-age=31536000
age: 571040
last-modified: Tue, 26 Apr 2022 15:45:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:18:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/librebaskerville/v14/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxM.woff2
142.250.74.163200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/librebaskerville/v14/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxM.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 27120, version 1.0\012- data
Hash 43e7d3f1dec74478587a2b3cfa272631
c065f24ac428353854ebd6715c49966fc4f4c762
6c6c9c3fad669c3d32227f5cc3467735c8211ddcf4f8c184c2e62e7f3ef7af44
GET /s/librebaskerville/v14/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.royalquestresorts.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 17:22:38 GMT
expires: Wed, 20 Sep 2023 17:22:38 GMT
cache-control: public, max-age=31536000
age: 100574
last-modified: Tue, 26 Apr 2022 16:42:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:18:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.royalquestresorts.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 6284
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.royalquestresorts.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 6284
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
142.250.74.163200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Hash 60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8
GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.royalquestresorts.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:14:36 GMT
expires: Tue, 19 Sep 2023 21:14:36 GMT
cache-control: public, max-age=31536000
age: 173056
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:18:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 35343b6981ed4c9eb2cd90bc8c2146cd
4e49432e50195a2bc528fb1745a2899306c79db8
cf55f53534e3e8b62513618cda90832a7b9bcd0d15b1a8f6bb51db6eb60daefd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:18:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
162.241.148.192200 OK 77 kB URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.royalquestresorts.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
content-length: 76764
content-type: font/woff2
date: Wed, 21 Sep 2022 21:18:52 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/uploads/2021/05/wedding01.jpg
162.241.148.192200 OK 125 kB URL HTTP/2 www.royalquestresorts.com/wp-content/uploads/2021/05/wedding01.jpg
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x720, components 3\012- data
Size 125 kB (124592 bytes)
Hash bdc84dbc5ffdeb5757ce22214b2268ed
d45199139496cbda5e7f864a161204e86f8cdc7b
2897ac16a1e34ce35a30c2da029459d658a010c1c08f3f6efe4f1b54c0cf84ab
GET /wp-content/uploads/2021/05/wedding01.jpg HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 10 Dec 2021 19:40:12 GMT
accept-ranges: bytes
content-length: 124592
content-type: image/jpeg
date: Wed, 21 Sep 2022 21:18:52 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3
162.241.148.192409 Conflict 83 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.3 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Wed, 21 Sep 2022 21:18:52 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
cdn.trustindex.io/assets/platform/Tripadvisor/star/f.svg
143.204.55.84200 OK 734 B URL HTTP/2 cdn.trustindex.io/assets/platform/Tripadvisor/star/f.svg
IP 143.204.55.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (733), with no line terminators
Hash 50c950b7df43344aca2830fe7fcc7dd7
c549a0d0219d69d23633957496bd40b352cd6eeb
f8d395080190444d2fca23f1e4ff77eaee62d43b6bf0d8494b070842996e2a14
GET /assets/platform/Tripadvisor/star/f.svg HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.royalquestresorts.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 734
date: Tue, 12 Jul 2022 22:08:18 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 22 Feb 2022 22:43:27 GMT
etag: "2de-5d8a313da4829"
accept-ranges: bytes
referrer-policy: origin
test-head-contorl: 7
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cache-control: max-age=31536000, public
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: M99FFUf9SCWnpxGY9pst8eboJ9bWqdhKfmxOgeSb2NkMagIVNhObCQ==
age: 6131434
X-Firefox-Spdy: h2
cdn.trustindex.io/assets/platform/Tripadvisor/star/h.svg
143.204.55.84200 OK 764 B URL HTTP/2 cdn.trustindex.io/assets/platform/Tripadvisor/star/h.svg
IP 143.204.55.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (763), with no line terminators
Hash 97b6dd93520547a38d26f62469a80507
4b8a40e166cb12de319dc71837d09344f236b2c1
6c806dac28c1fd442c696b7e8b74f88a36a12f37659999e869e9cea720ac94ed
GET /assets/platform/Tripadvisor/star/h.svg HTTP/1.1
Host: cdn.trustindex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.royalquestresorts.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 764
date: Tue, 12 Jul 2022 05:29:51 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 22 Feb 2022 22:43:27 GMT
etag: "2fc-5d8a313da4829"
accept-ranges: bytes
referrer-policy: origin
test-head-contorl: 7
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cache-control: max-age=31536000, public
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PEox2bd9VvvZjbboWozC1sKzjsUeqFKT1531e38yfd8G9uN3u60oSw==
age: 6191341
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Wed, 21 Sep 2022 20:41:12 GMT
expires: Wed, 21 Sep 2022 22:41:12 GMT
cache-control: public, max-age=7200
age: 2260
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/uploads/2021/05/wedding-bg-2.jpg
162.241.148.192200 OK 73 kB URL HTTP/1.1 www.royalquestresorts.com/wp-content/uploads/2021/05/wedding-bg-2.jpg
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x1122, components 3\012- data
Hash 4cba2e34bb6ebd770a73212ea364cad1
66657e710eda53b600efd840a87f36d332c5df2c
d7082692b9dcd34be6016d401f5404eb2a008fe8fda1b7b78e3677ba34e178c9
GET /wp-content/uploads/2021/05/wedding-bg-2.jpg HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:18:52 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 10 Dec 2021 19:31:24 GMT
Accept-Ranges: bytes
Content-Length: 73168
Keep-Alive: timeout=5, max=75
Content-Type: image/jpeg
www.royalquestresorts.com/wp-content/uploads/2022/07/logo3-120x120.png
162.241.148.192200 OK 26 kB URL HTTP/2 www.royalquestresorts.com/wp-content/uploads/2022/07/logo3-120x120.png
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash ea661ae029fc0a6703ab398e9b123c3d
62b40e501ee800982af025b2c88c08201fe1d542
af9bc568c6a9eae2f6fd02e17ab289cd5608c189e77225e89c139dc6bfd9b907
GET /wp-content/uploads/2022/07/logo3-120x120.png HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 01 Jul 2022 11:14:40 GMT
accept-ranges: bytes
content-length: 25628
content-type: image/png
date: Wed, 21 Sep 2022 21:18:52 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/uploads/2022/07/logo3.png
162.241.148.192200 OK 50 kB URL HTTP/2 www.royalquestresorts.com/wp-content/uploads/2022/07/logo3.png
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 210 x 214, 8-bit/color RGBA, non-interlaced\012- data
Hash 36841cb0e89f168fb9e6a4007da0e24d
15a04d0a575066c21c2d2919b222333dec8f82aa
df26928ae8883fda461b35bbc3e8b7b3799e3c420273cae699c388fa88497519
GET /wp-content/uploads/2022/07/logo3.png HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 01 Jul 2022 11:14:39 GMT
accept-ranges: bytes
content-length: 49646
content-type: image/png
date: Wed, 21 Sep 2022 21:18:52 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 77f9b5e468180a8976a641e40dceedbf
9873db160721dc9f41d3ff2d711db700d6f5d4d7
cae6929c00ed37fc097432c9ac1d6800244479d3877b17662c67bafeeff23aba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:18:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-180586147-1&cid=670268770.1663795133&jid=1192567374&gjid=1473090180&_gid=2101892499.1663795133&_u=YEBAAUAAAAAAAC~&z=1502039360
142.251.1.155200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-180586147-1&cid=670268770.1663795133&jid=1192567374&gjid=1473090180&_gid=2101892499.1663795133&_u=YEBAAUAAAAAAAC~&z=1502039360
IP 142.251.1.155:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-180586147-1&cid=670268770.1663795133&jid=1192567374&gjid=1473090180&_gid=2101892499.1663795133&_u=YEBAAUAAAAAAAC~&z=1502039360 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.royalquestresorts.com
Connection: keep-alive
Referer: https://www.royalquestresorts.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.royalquestresorts.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 21 Sep 2022 21:18:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 77f9b5e468180a8976a641e40dceedbf
9873db160721dc9f41d3ff2d711db700d6f5d4d7
cae6929c00ed37fc097432c9ac1d6800244479d3877b17662c67bafeeff23aba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:18:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.royalquestresorts.com/wp-content/uploads/2021/05/inner-slider-01.jpg
162.241.148.192200 OK 160 kB URL HTTP/1.1 www.royalquestresorts.com/wp-content/uploads/2021/05/inner-slider-01.jpg
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x960, components 3\012- data
Size 160 kB (160067 bytes)
Hash db69d84fe5e15f6a0c4ee4733ec36437
ec715721e4836e3515506a1938b3a9edd5e50eb7
9ef2909911ba4749fb33b0155132339879bfad982c784217b9c6ed8d7380ce34
GET /wp-content/uploads/2021/05/inner-slider-01.jpg HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:18:52 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 10 Dec 2021 19:41:32 GMT
Accept-Ranges: bytes
Content-Length: 160067
Keep-Alive: timeout=5, max=75
Content-Type: image/jpeg
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg
IP 34.120.237.76:0
File type gzip compressed data, max compression\012- data
Hash e549a550a78a0a499c63fa992b1a468b
4a4072fa1e1f48664d4d1d0a5a086188f900bd6e
571890c3e8ab9a17975bdafd08e5516a58a633d40c132a21d239b256a6e4bee4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12654
x-amzn-requestid: efc99152-2b51-462d-b48b-67ba8263b1cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJOGVYoAMFcvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-00eeb6913e06ac151f293263;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nSWUmBqJPIBYNoLtyrfAN7CK4367b6TEku9eki8BGJVdTWW3dSyckw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 06:45:55 GMT
age: 52384
etag: "d8ac8a7e19b06e38070a0319cde24b5bf0eaa7db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
162.241.148.192200 OK 0 B URL HTTP/2 www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /about-us-luxury-resort-of-jaipur/ HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
link: <https://www.royalquestresorts.com/wp-json/>; rel="https://api.w.org/", <https://www.royalquestresorts.com/wp-json/wp/v2/pages/44>; rel="alternate"; type="application/json", <https://www.royalquestresorts.com/?p=44>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Wed, 21 Sep 2022 21:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.3.1
162.241.148.192200 OK 0 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.3.1
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.3.1 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.3.1
162.241.148.192200 OK 0 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.3.1
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.3.1 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.3.1
162.241.148.192200 OK 0 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.3.1
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.3.1 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
162.241.148.192200 OK 0 B URL HTTP/2 www.royalquestresorts.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.royalquestresorts.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.3.1
162.241.148.192200 OK 0 B URL HTTP/2 www.royalquestresorts.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.3.1
IP 162.241.148.192:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.3.1 HTTP/1.1
Host: www.royalquestresorts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalquestresorts.com/about-us-luxury-resort-of-jaipur/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Aug 2021 21:00:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 21 Sep 2022 21:18:51 GMT
server: Apache
X-Firefox-Spdy: h2