r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 33c3dea45eaabae3557235f002dda989
38a1903e09bff723af30fe5080f79646247b9254
b00022c599d7a74bd264b90a1ca9f935eb8a7bc6e63a9751dddc8acfbafe58da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B00022C599D7A74BD264B90A1CA9F935EB8A7BC6E63A9751DDDC8ACFBAFE58DA"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3776
Expires: Wed, 02 Nov 2022 00:38:48 GMT
Date: Tue, 01 Nov 2022 23:35:52 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8d024a7496f85cabcc9adc118bd9fbec
a1146d4bf5c3e21619777259206bec6cad36e7ea
247b9761f543b4d13fabf86390a1580f92b2b271e1801d99b11bbb1980eefe84
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4768
Cache-Control: max-age=126877
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 23:35:52 GMT
Etag: "6360e755-1d7"
Expires: Thu, 03 Nov 2022 10:50:29 GMT
Last-Modified: Tue, 01 Nov 2022 09:31:01 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 44ee7bbc64b0396b20a28944ea4ec4d2
dbb18d4238fa3a980e5c254ff25d3b39590b0159
2cc72ff87dcdabcb0a67d8dda7a7c440f8650ffe77f71602954a3076762be50a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC72FF87DCDABCB0A67D8DDA7A7C440F8650FFE77F71602954A3076762BE50A"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4547
Expires: Wed, 02 Nov 2022 00:51:39 GMT
Date: Tue, 01 Nov 2022 23:35:52 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WMM0g6xnFRCE14Dg6xBqHND/pDhUfnmIjx5YwKz15Nqa1Qro4s061/Diq0y4EUmaSEh4M2v8uVI=
x-amz-request-id: XYNDAQ3AWR9SB9G8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 01 Nov 2022 22:45:34 GMT
age: 3018
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 23:35:52 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f9303161ce04577a7bcd56ce42831a56
690bf1468d25898db3ab46e03639946854ab25f0
40c380dba92d637574e7699ae184a089c090bab6f7215dc0178dadd8b23da43c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6222
Cache-Control: max-age=123275
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 23:35:53 GMT
Etag: "6360d396-1d7"
Expires: Thu, 03 Nov 2022 09:50:28 GMT
Last-Modified: Tue, 01 Nov 2022 08:06:46 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
rskqatar.com/wp-includes/fonts/opt/
192.185.196.59200 OK 12 kB URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3190), with CRLF line terminators
Hash 4b9fe813608ab43ce6666f56cfa8d83d
b8a30db8f9234535e20ac8cfb36f731f1dcf9a1a
561cd82694d1527b0a21e8cd0458fbacb56d8ba90459d8ad1953b723133799f1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/fonts/opt/ HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:51 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12356
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
34.215.94.42101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.94.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BWApEd+i7BwKrrVjaG46WA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UPdv4v3URoMETN3Hbl42VnT8lgs=
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2ff8f7daa3e3cf5fd5bd540f75584790
a751a98efc3dc413002861eaa50f4bee27f67546
404550d1969f2e833e4e907df558c9980e77f7c77f2b0bce81c0b5dd0a69a1e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 23:35:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
smb.optus.com.au/opfiles/Shop/Consumer/Assets/AllFonts/all-fonts4.css
23.38.200.195200 OK 981 B URL HTTP/2 smb.optus.com.au/opfiles/Shop/Consumer/Assets/AllFonts/all-fonts4.css
IP 23.38.200.195:0
File type ASCII text, with very long lines (368), with CRLF line terminators
Hash db32ac7df96f9ef941e90b86d9e516d2
d75a3e8501856fa4ce49e903615afe263d264d8a
024e58c8873d964f3be6af4ad8b04dd6b9a0e8fd34eed1bc1a868dc61f2c339f
GET /opfiles/Shop/Consumer/Assets/AllFonts/all-fonts4.css HTTP/1.1
Host: smb.optus.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rskqatar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
strict-transport-security: max-age=31536000
last-modified: Fri, 21 Jan 2022 06:42:59 GMT
etag: "a02750-167c-5d611edfb22c0"
accept-ranges: bytes
content-encoding: gzip
content-length: 981
content-type: text/css
cache-control: max-age=75768
expires: Wed, 02 Nov 2022 20:38:41 GMT
date: Tue, 01 Nov 2022 23:35:53 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-525H7H9
142.250.74.168200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-525H7H9
IP 142.250.74.168:0
File type ASCII text, with very long lines (1296)
Hash ae9bfab19731355e48604d1374f6788d
325a294eab5adcd84e183c4444c983115c80a775
73f2fc79b695cab2e86562f0611f6975d9089a8ae16150ca93fc83920b878384
GET /gtm.js?id=GTM-525H7H9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rskqatar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 01 Nov 2022 23:35:53 GMT
expires: Tue, 01 Nov 2022 23:35:53 GMT
cache-control: private, max-age=900
last-modified: Tue, 01 Nov 2022 22:51:56 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46074
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rskqatar.com/wp-includes/fonts/opt/css/247px.js
192.185.196.59200 OK 123 B URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/247px.js
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 3b5704ac3f80d0e8752d5b90b4ab6a78
1581e1e2bee62630f980576e28267382a98c082e
367a713fa48eff5693284c5e6e2fb7b70b6daeb58c067d159717274fec1bb676
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/fonts/opt/css/247px.js HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:52 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 123
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2ff8f7daa3e3cf5fd5bd540f75584790
a751a98efc3dc413002861eaa50f4bee27f67546
404550d1969f2e833e4e907df558c9980e77f7c77f2b0bce81c0b5dd0a69a1e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 23:35:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rskqatar.com/wp-includes/fonts/opt/css/analytics.js
192.185.196.59200 OK 24 kB URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/analytics.js
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1325)
Hash adde81c29c1bb71ef85a28e0cf1cacb8
274fac6b33ff074afaa20cd6f27932c7e2b46a26
00ed53021065f463df09ac7dbeb5982665ad5111eab046634483c1bf4a765803
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/fonts/opt/css/analytics.js HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:52 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 14 Jul 2022 04:43:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript
rskqatar.com/wp-includes/fonts/opt/css/modernizr.js
192.185.196.59200 OK 10 kB URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/modernizr.js
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document, ASCII text, with very long lines (3738), with CRLF line terminators
Hash 3b2d545a98814dd530ca7ac13f4a0896
2601a7df4e3ed7c789d06d8d5eda84ea67999adb
ecaa8c1122fe3acc28f23b18f77f210cbff78fb291a35bf5c78f10f79b09b5cc
GET /wp-includes/fonts/opt/css/modernizr.js HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:52 GMT
Server: Apache
Last-Modified: Thu, 14 Jul 2022 04:43:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10161
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
rskqatar.com/wp-includes/fonts/opt/css/jquery-migrate-1.4.1.js
192.185.196.59200 OK 123 B URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/jquery-migrate-1.4.1.js
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 3b5704ac3f80d0e8752d5b90b4ab6a78
1581e1e2bee62630f980576e28267382a98c082e
367a713fa48eff5693284c5e6e2fb7b70b6daeb58c067d159717274fec1bb676
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/fonts/opt/css/jquery-migrate-1.4.1.js HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:52 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 123
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
rskqatar.com/wp-includes/fonts/opt/css/header.js
192.185.196.59200 OK 512 B URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/header.js
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 10007c9788ba85bef5a103fa69f9126d
9d25e4d06fc5994a28c8761ee67e8ba22032fc5e
f58f2d824fa45ab5c2fde1c69fc87ddc3ac78c70e2cf3ccab0569e732f140ded
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/fonts/opt/css/header.js HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:52 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 14 Jul 2022 04:43:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 512
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
www.google-analytics.com/j/collect?v=1&_v=j96&a=1738620558&t=pageview&_s=1&dl=http%3A%2F%2Frskqatar.com%2Fwp-includes%2Ffonts%2Fopt%2F&ul=en-us&de=UTF-8&dt=Optus%20-%20Webmail&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YGBACEABBAAAAC~&jid=1434791293&gjid=1435319807&cid=1848538227.1667345753&tid=UA-22088848-3&_gid=423531271.1667345753&_r=1>m=2wgav0525H7H9&z=1478119902
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&a=1738620558&t=pageview&_s=1&dl=http%3A%2F%2Frskqatar.com%2Fwp-includes%2Ffonts%2Fopt%2F&ul=en-us&de=UTF-8&dt=Optus%20-%20Webmail&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YGBACEABBAAAAC~&jid=1434791293&gjid=1435319807&cid=1848538227.1667345753&tid=UA-22088848-3&_gid=423531271.1667345753&_r=1>m=2wgav0525H7H9&z=1478119902
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j96&a=1738620558&t=pageview&_s=1&dl=http%3A%2F%2Frskqatar.com%2Fwp-includes%2Ffonts%2Fopt%2F&ul=en-us&de=UTF-8&dt=Optus%20-%20Webmail&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YGBACEABBAAAAC~&jid=1434791293&gjid=1435319807&cid=1848538227.1667345753&tid=UA-22088848-3&_gid=423531271.1667345753&_r=1>m=2wgav0525H7H9&z=1478119902 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://rskqatar.com
Connection: keep-alive
Referer: http://rskqatar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://rskqatar.com
date: Tue, 01 Nov 2022 23:35:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d1a90c0cbeaa4e8379f5f77b916013b
fbbe002d592a8c20646066c57d8c2bcfaa8af96c
44b11c299f37ddbfde89f6d8c86d7d50db0f861d216b80ae839b698abc08d098
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 23:35:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rskqatar.com/wp-includes/fonts/opt/css/18ae682f
192.185.196.59200 OK 27 kB URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/18ae682f
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14360)
Hash c05c1e11c9c7b3f3dd6cc1fc15bcfa3f
32ae031ed77f4b22d65b37a449e804d7bd8c6bd7
5f8d78703eacfcd43e9157bc9d7f5e7c0b20ba06621cf8ec882b2cb9682b9f71
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/fonts/opt/css/18ae682f HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:52 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 14 Jul 2022 04:43:16 GMT
Accept-Ranges: bytes
Content-Length: 26684
Keep-Alive: timeout=5, max=75
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-22088848-3&cid=1848538227.1667345753&jid=1434791293&gjid=1435319807&_gid=423531271.1667345753&_u=YGBACEAABAAAAC~&z=1026957320
173.194.221.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-22088848-3&cid=1848538227.1667345753&jid=1434791293&gjid=1435319807&_gid=423531271.1667345753&_u=YGBACEAABAAAAC~&z=1026957320
IP 173.194.221.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-22088848-3&cid=1848538227.1667345753&jid=1434791293&gjid=1435319807&_gid=423531271.1667345753&_u=YGBACEAABAAAAC~&z=1026957320 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://rskqatar.com
Connection: keep-alive
Referer: http://rskqatar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://rskqatar.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 01 Nov 2022 23:35:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rskqatar.com/wp-includes/fonts/opt/css/globalHeaderNavDesktop.js
192.185.196.59200 OK 123 B URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/globalHeaderNavDesktop.js
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 3b5704ac3f80d0e8752d5b90b4ab6a78
1581e1e2bee62630f980576e28267382a98c082e
367a713fa48eff5693284c5e6e2fb7b70b6daeb58c067d159717274fec1bb676
GET /wp-includes/fonts/opt/css/globalHeaderNavDesktop.js HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:53 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 123
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
rskqatar.com/wp-includes/fonts/opt/css/globalHeaderNavMain.js
192.185.196.59200 OK 123 B URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/globalHeaderNavMain.js
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 3b5704ac3f80d0e8752d5b90b4ab6a78
1581e1e2bee62630f980576e28267382a98c082e
367a713fa48eff5693284c5e6e2fb7b70b6daeb58c067d159717274fec1bb676
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/fonts/opt/css/globalHeaderNavMain.js HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:53 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 123
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
rskqatar.com/wp-includes/fonts/opt/css/247tag.js
192.185.196.59200 OK 123 B URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/247tag.js
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 3b5704ac3f80d0e8752d5b90b4ab6a78
1581e1e2bee62630f980576e28267382a98c082e
367a713fa48eff5693284c5e6e2fb7b70b6daeb58c067d159717274fec1bb676
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/fonts/opt/css/247tag.js HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:53 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 123
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d1a90c0cbeaa4e8379f5f77b916013b
fbbe002d592a8c20646066c57d8c2bcfaa8af96c
44b11c299f37ddbfde89f6d8c86d7d50db0f861d216b80ae839b698abc08d098
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 23:35:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rskqatar.com/wp-includes/fonts/opt/css/jquery-1.12.4.js
192.185.196.59200 OK 123 B URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/jquery-1.12.4.js
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 3b5704ac3f80d0e8752d5b90b4ab6a78
1581e1e2bee62630f980576e28267382a98c082e
367a713fa48eff5693284c5e6e2fb7b70b6daeb58c067d159717274fec1bb676
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/fonts/opt/css/jquery-1.12.4.js HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:53 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 123
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
rskqatar.com/wp-includes/fonts/opt/css/gtm
192.185.196.59200 OK 113 kB URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/gtm
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1600)
Size 113 kB (112575 bytes)
Hash 29e5aa09ed493ef60adc7049d18c1b9c
2e1824a271116c13f9516d2c1651d4bfb8b5141d
d4642910b397dc44c34f4e8ee0ccb2c4ec6e83a55ed50faec712b9e736074049
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/fonts/opt/css/gtm HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:52 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 14 Jul 2022 04:43:16 GMT
Accept-Ranges: bytes
Content-Length: 112575
Keep-Alive: timeout=5, max=75
rskqatar.com/wp-includes/fonts/opt/css/FhBwcEk
192.185.196.59200 OK 86 kB URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/FhBwcEk
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 95ed6677924852b9085a949341297472
dbcad9d1273a65c3cd7c0e08c7f7a8cbdde089f0
fa43fd4073d3976c0bc94de0d58e6f81290443515528b60e80aa889fa38f80c2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/fonts/opt/css/FhBwcEk HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:53 GMT
Server: Apache
Last-Modified: Thu, 14 Jul 2022 04:43:16 GMT
Accept-Ranges: bytes
Content-Length: 85846
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
webmail.optusnet.com.au/css/headerFooter.css
104.84.152.187200 OK 36 kB URL HTTP/2 webmail.optusnet.com.au/css/headerFooter.css
IP 104.84.152.187:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65502)
Hash 7bf6d4616f35414f59dfe74b2e873cd3
e78a6efbc279e2e85c8cb7d5b5d65f5869902888
a3e9ca9db0a801a881aa7293ff67c9a0c4b60e6ad8b0749bc94706606c9700f3
GET /css/headerFooter.css HTTP/1.1
Host: webmail.optusnet.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rskqatar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Wed, 02 Dec 2020 13:28:19 GMT
etag: "12239d-582d7-5b57b37762e41"
accept-ranges: bytes
content-encoding: gzip
content-length: 36541
content-type: text/css
expires: Tue, 01 Nov 2022 23:35:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 01 Nov 2022 23:35:54 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=105
X-Firefox-Spdy: h2
webmail.optusnet.com.au/css/lux.base.8fba59704a65bcc34212ff1ef5e4708d.css
104.84.152.187200 OK 51 kB URL HTTP/2 webmail.optusnet.com.au/css/lux.base.8fba59704a65bcc34212ff1ef5e4708d.css
IP 104.84.152.187:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (51031)
Hash 4384b6a0b62d9982f6fe87be29cbc1e9
7501c812704905cc420a0bc0cce2b4b15991ac4e
fa70e99bbb1d75bbd317006646972e6cc10cb988cb161e7189a8e914b547ccb9
GET /css/lux.base.8fba59704a65bcc34212ff1ef5e4708d.css HTTP/1.1
Host: webmail.optusnet.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rskqatar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Wed, 25 Nov 2020 03:07:09 GMT
etag: "38061c-7c9fd-5b4e5b9119140"
accept-ranges: bytes
content-encoding: gzip
content-length: 50683
content-type: text/css
expires: Tue, 01 Nov 2022 23:35:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 01 Nov 2022 23:35:54 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=129
X-Firefox-Spdy: h2
rskqatar.com/wp-includes/fonts/opt/css/mob.png
192.185.196.59200 OK 1.2 kB URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/mob.png
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 80 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 746c5446544934459f95c61b1cce0f56
30a65f665997cad02775e7bb8f6946239c730bde
d4b023ef19903b8679087af12c0888bb945f320f9453aa4f351702dac09b0c2c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/fonts/opt/css/mob.png HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:53 GMT
Server: Apache
Last-Modified: Thu, 14 Jul 2022 04:43:16 GMT
Accept-Ranges: bytes
Content-Length: 1190
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png
rskqatar.com/wp-includes/fonts/opt/css/tablet.png
192.185.196.59200 OK 1.3 kB URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/tablet.png
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 80 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash d71f2f87bee3b11e5625b7fb1305ee9f
d43bb7f610e19406b0db952f340b1192c9d92f60
75df7b13dd67f6b31092e2a72f963d1c77cdfa88938b4b45f3152330173e3f2c
GET /wp-includes/fonts/opt/css/tablet.png HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:53 GMT
Server: Apache
Last-Modified: Thu, 14 Jul 2022 04:43:16 GMT
Accept-Ranges: bytes
Content-Length: 1327
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
rskqatar.com/wp-includes/fonts/opt/css/macpc.png
192.185.196.59200 OK 2.0 kB URL HTTP/1.1 rskqatar.com/wp-includes/fonts/opt/css/macpc.png
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 80 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ede4f453e5942b129e44e1cfb32a034
c32d46e6a89113297323d31849220f623f663bf3
1911f1118b639907dc998c8afd117af682ee15046693af74fb0ec3c82b150a85
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/fonts/opt/css/macpc.png HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:53 GMT
Server: Apache
Last-Modified: Thu, 14 Jul 2022 04:43:16 GMT
Accept-Ranges: bytes
Content-Length: 2021
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
rskqatar.com/fonts/TradeGothicLTPro.woff
192.185.196.59200 OK 145 B URL HTTP/1.1 rskqatar.com/fonts/TradeGothicLTPro.woff
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash e486600471a98c71746b3b974398b196
df957fc50cc0286286524655249b738c82230d23
a9420b9a98ddc4a88b3cca9e2e34960cb20292f8db789ecd9b30382ac5f62ce4
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/TradeGothicLTPro.woff HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
Cookie: _ga=GA1.2.1848538227.1667345753; _gid=GA1.2.423531271.1667345753; _gat_optus=1
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:53 GMT
Server: Apache
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
smb.optus.com.au/opfiles/ys/online-style/images/logo/logo_optus.png
23.38.200.195200 OK 1.4 kB URL HTTP/2 smb.optus.com.au/opfiles/ys/online-style/images/logo/logo_optus.png
IP 23.38.200.195:0
File type PNG image data, 84 x 17, 8-bit colormap, non-interlaced\012- data
Hash 261efcd6f96789f44e5d68ec4f70e7cb
01103070885237bc27ea96b0364930613d19c993
6f7079f7f44f2ef5c07100f61ee2843c1c3720158e62a1948c186f00c882b8aa
GET /opfiles/ys/online-style/images/logo/logo_optus.png HTTP/1.1
Host: smb.optus.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webmail.optusnet.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "61a72-780-535f1e3375cc0"
last-modified: Tue, 22 Sep 2020 19:27:06 GMT
server: Akamai Image Manager
content-length: 1438
content-type: image/png
cache-control: private, no-transform, max-age=1370989
expires: Thu, 17 Nov 2022 20:25:43 GMT
date: Tue, 01 Nov 2022 23:35:54 GMT
X-Firefox-Spdy: h2
webmail.optusnet.com.au/fonts/TradeGothicLTPro-Bold.woff
104.84.152.187200 OK 24 kB URL HTTP/2 webmail.optusnet.com.au/fonts/TradeGothicLTPro-Bold.woff
IP 104.84.152.187:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format, CFF, length 24100, version 2.0\012- data
Hash 8f94edabe8c022fd046b4cac75b9e7d4
210d10865330002b4f80ef523bf6dd24db853e39
abdf7b15897f5c4cc2df8a0ec80bb7af8afba3f018eccd88bb6eaed68e8c1e42
GET /fonts/TradeGothicLTPro-Bold.woff HTTP/1.1
Host: webmail.optusnet.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://webmail.optusnet.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 07 Sep 2020 14:46:42 GMT
etag: "38075a-5e24-5aeba49709ecb"
accept-ranges: bytes
content-length: 24100
content-type: text/plain; charset=UTF-8
expires: Tue, 01 Nov 2022 23:35:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 01 Nov 2022 23:35:54 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=45
set-cookie: ak_bmsc=198AEC8FF27FA8E35E850A323DDD7F37~000000000000000000000000000000~YAAQt5hUaJ7FB/GDAQAAqiqNNRFFJXAE0HiNK4tmC7y1e9hPUNXG/foggx4OfNPrw26qoNm4QxsKzMzDYM7YkdghvHu3HLSsAc0kDzWBSnM5PRLE3zA3TDrzDyq7lmcdbfrqtJqEbI3BNsEIWEXolTFZHyGUWvGvUxU2Utecy9Ahs2CVLFkMsK+BZPgVGFd43JpSuoF1u3s3CpdbYv9elsDVG1uYxNGdWdNwL1OZJk2bRrsExiFq4rO1AjHWlUmeVMhhdRWEmRFL8jl20w5N3tZaWJ14dO1ZPq9i21l1Slw3zyU0Da1EXDai10Tu9tayQmQagCm5KZxbgt4y1kbv40eSAhxdtl54II7tARHxSu/OxsLR89PXL6E1QAREoDn0K3naQmYkaGr3DmCC1t0=; Domain=.optusnet.com.au; Path=/; Expires=Wed, 02 Nov 2022 01:35:54 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
s.go-mpulse.net/boomerang/PC6VM-4FQA5-8HDKN-MYG9N-T5BRS
23.38.200.138200 OK 52 kB URL HTTP/2 s.go-mpulse.net/boomerang/PC6VM-4FQA5-8HDKN-MYG9N-T5BRS
IP 23.38.200.138:0
File type C source, ASCII text, with very long lines (31985)
Hash cd84496512bb060357bd7e6e877fe2d1
90992f2c8c86540facb19e7ed4ab0ae3e4fdcda4
3b53bb627cec222cfed7c8c6ad8b68f869500bbd4231f4e1ed67358ae74fd5f6
GET /boomerang/PC6VM-4FQA5-8HDKN-MYG9N-T5BRS HTTP/1.1
Host: s.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rskqatar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
cache-control: max-age=604800
content-encoding: br
last-modified: Tue, 18 Oct 2022 20:30:15 GMT
timing-allow-origin: *
vary: Accept-Encoding
content-length: 51580
date: Tue, 01 Nov 2022 23:35:54 GMT
X-Firefox-Spdy: h2
webmail.optusnet.com.au/css/assets/fonts/lux-icons/2d0e6ce5791dcb72fd35df708136be66.woff
104.84.152.187200 OK 58 kB URL HTTP/2 webmail.optusnet.com.au/css/assets/fonts/lux-icons/2d0e6ce5791dcb72fd35df708136be66.woff
IP 104.84.152.187:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format, TrueType, length 58352, version 1.0\012- data
Hash 2d0e6ce5791dcb72fd35df708136be66
cda7b1fbf8c5537a46c531971179e41c58200b9c
8855f50a2c19e5186a498b2cfd5a21f20e6e71e16ecfb8c396b1af3f9bb8e9db
GET /css/assets/fonts/lux-icons/2d0e6ce5791dcb72fd35df708136be66.woff HTTP/1.1
Host: webmail.optusnet.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://webmail.optusnet.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Wed, 25 Nov 2020 04:03:26 GMT
etag: "3e07a3-e3f0-5b4e6825a7f80"
accept-ranges: bytes
content-length: 58352
content-type: text/plain; charset=UTF-8
expires: Tue, 01 Nov 2022 23:35:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 01 Nov 2022 23:35:54 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=106
set-cookie: ak_bmsc=CE5171571842A98692CCA57BD35E594D~000000000000000000000000000000~YAAQt5hUaJ/FB/GDAQAAsiqNNRHtiM4OWwNVbjlQkdfXAIkSfbOboKzAZAD7RiOa3tZB4lmmqoCyIr7eNu7fPGDKZJBofup6bTP+M/JS7Mc8TzGQwQaazpSi55XtGl/g4C6j0O/rZH6O5Jqhc7+P4XT37eIL9Iu9TkK63D3i+SZxrt5u9BlJsQrcsH38OEl/y5ObmMO9jBtU1KnhuciOe/PnmRRuilVyxTdCtohMqVXAL3mHtN2NcXZkkyy/EibQe7GIBucyqIJ8Jk6OIAgGbeB1mxhmikA9qTsndLkwFgrXy8PGOfo7bAKpUeesG7SKzRlgoVWP074EPDkod7fIyb4QUJLahPVMyu0saYM2azjG3+gvDT9KMk/P0DNeqtzVwuQqtJh5pky/+0vGVys=; Domain=.optusnet.com.au; Path=/; Expires=Wed, 02 Nov 2022 01:35:54 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
webmail.optusnet.com.au/css/assets/fonts/markpro/ee10f7196c1b125a3b8222341465bf5e.woff
104.84.152.187200 OK 67 kB URL HTTP/2 webmail.optusnet.com.au/css/assets/fonts/markpro/ee10f7196c1b125a3b8222341465bf5e.woff
IP 104.84.152.187:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format, CFF, length 66552, version 7.504\012- data
Hash ee10f7196c1b125a3b8222341465bf5e
58a1d6aeb83e74b3a9e0eda8ad4daf3f1f1f387f
7b1443ccd9f5702ad832d5f8f58cd7955da80b6be466208e37900863097dbb12
GET /css/assets/fonts/markpro/ee10f7196c1b125a3b8222341465bf5e.woff HTTP/1.1
Host: webmail.optusnet.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://webmail.optusnet.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Wed, 25 Nov 2020 03:44:01 GMT
etag: "3e07ce-103f8-5b4e63cea0240"
accept-ranges: bytes
content-length: 66552
content-type: text/plain; charset=UTF-8
expires: Tue, 01 Nov 2022 23:35:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 01 Nov 2022 23:35:54 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=84
set-cookie: ak_bmsc=6D68DEAE04BFA1E545B32410CC5ACFD4~000000000000000000000000000000~YAAQt5hUaKHFB/GDAQAA2SqNNREaxAJh3LvOTlb42d6jNj8moX7bYbRQxrcbFN4TeGXfsAZlFsx3URv5JW3sNq+SMJNAjkcCQMQhb4xHWF+4sA3oJz2J5OhS6coAqeR0KLum0IJnvhxWI9Rc4PDKspbcOu0E76d9VITVxtKHNxiB1PaRqYjxdGg3BNCgRcS8cuIjTiYlCbaBFvQSJ17P2s1l9WhzPKhU5UGtW0C+NMvdxOjGcx+X/rPv6GCH/vjtuj5N5KM/+4tx/M0sY9HaupIrQgHbZRpMfwNcJQbwZFu2EnwR6pdCF96KcKpKG+17HNtqBJSk3ZWwOGToKNIe3jgZYvd1KFm1MdLSzZdvwP0/ujdIngY6r7AO7jyjxRlH+l0YHf1SICB06VVgy+Q=; Domain=.optusnet.com.au; Path=/; Expires=Wed, 02 Nov 2022 01:35:54 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
rskqatar.com/fonts/optus-icons.woff
192.185.196.59200 OK 145 B URL HTTP/1.1 rskqatar.com/fonts/optus-icons.woff
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash e486600471a98c71746b3b974398b196
df957fc50cc0286286524655249b738c82230d23
a9420b9a98ddc4a88b3cca9e2e34960cb20292f8db789ecd9b30382ac5f62ce4
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/optus-icons.woff HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
Cookie: _ga=GA1.2.1848538227.1667345753; _gid=GA1.2.423531271.1667345753; _gat_optus=1
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:53 GMT
Server: Apache
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
smb.optus.com.au/opfiles/Shop/Consumer/Assets/AllFonts/markpro-heavy.woff
23.38.200.195200 OK 136 kB URL HTTP/2 smb.optus.com.au/opfiles/Shop/Consumer/Assets/AllFonts/markpro-heavy.woff
IP 23.38.200.195:0
File type Web Open Font Format, CFF, length 67808, version 7.504\012- data
Size 136 kB (135632 bytes)
Hash 438131e396b0f73291192bb7272733f9
f7cb6249ea77e926305f369c9ac8cf76390f4839
af94e193b16f51e3f51d2e788654e372f46365224318608995ff0eb7e9b4d55f
GET /opfiles/Shop/Consumer/Assets/AllFonts/markpro-heavy.woff HTTP/1.1
Host: smb.optus.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://smb.optus.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
strict-transport-security: max-age=31536000
last-modified: Fri, 06 May 2016 02:16:33 GMT
etag: "181e89-108e0-532230c2be240"
content-type: text/plain; charset=ISO-8859-1
vary: Accept-Encoding
cache-control: max-age=14808926
expires: Sat, 22 Apr 2023 09:11:20 GMT
date: Tue, 01 Nov 2022 23:35:54 GMT
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c18aead96956fc8de41d067a99071c73
29b784835d23ec09a11f91dda1f3ac9f9550c129
106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8437
Expires: Wed, 02 Nov 2022 01:56:31 GMT
Date: Tue, 01 Nov 2022 23:35:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c18aead96956fc8de41d067a99071c73
29b784835d23ec09a11f91dda1f3ac9f9550c129
106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8437
Expires: Wed, 02 Nov 2022 01:56:31 GMT
Date: Tue, 01 Nov 2022 23:35:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c18aead96956fc8de41d067a99071c73
29b784835d23ec09a11f91dda1f3ac9f9550c129
106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8437
Expires: Wed, 02 Nov 2022 01:56:31 GMT
Date: Tue, 01 Nov 2022 23:35:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c18aead96956fc8de41d067a99071c73
29b784835d23ec09a11f91dda1f3ac9f9550c129
106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8437
Expires: Wed, 02 Nov 2022 01:56:31 GMT
Date: Tue, 01 Nov 2022 23:35:54 GMT
Connection: keep-alive
smb.optus.com.au/opfiles/Shop/Consumer/Assets/AllFonts/markpro-medium.woff
23.38.200.195200 OK 64 kB URL HTTP/2 smb.optus.com.au/opfiles/Shop/Consumer/Assets/AllFonts/markpro-medium.woff
IP 23.38.200.195:0
File type Web Open Font Format, CFF, length 63644, version 7.504\012- data
Hash 8f63409d95dc24657b2cb1f4c0415392
a7afd87c435f0a8ade3e19e35a1b03c14658064d
69351058e28646e0ee9aaaddff849951cafe3dd64ede19d62dff844159315e74
GET /opfiles/Shop/Consumer/Assets/AllFonts/markpro-medium.woff HTTP/1.1
Host: smb.optus.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://smb.optus.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
strict-transport-security: max-age=31536000
last-modified: Fri, 06 May 2016 02:33:43 GMT
etag: "a00cd1-f89c-5322349906fc0"
content-type: text/plain; charset=ISO-8859-1
vary: Accept-Encoding
cache-control: max-age=14808935
expires: Sat, 22 Apr 2023 09:11:29 GMT
date: Tue, 01 Nov 2022 23:35:54 GMT
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e6d78844aa60ad0bd62fc70779a63e8
80dbe6518bd99eb7cab1ba0ff9b5c53d0cc85949
ac1ee1c30bee586a5edd9605a514548e1e91e6ef39c55cc866cf026b8ed3df82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10496
x-amzn-requestid: 4b3864a5-5e0b-42f3-83b3-c997f66eeb55
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OG_H3oIAMFalA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619092-6e450a0c6393d47f4d72ce35;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:33:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: RdQLfkVz-UeNJrjj1v9AhoN4y_UGJWCMDxBs_Aol54c5-mf-cZoaZw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:24:57 GMT
age: 4257
etag: "80dbe6518bd99eb7cab1ba0ff9b5c53d0cc85949"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce7afe40-51df-40f7-a5ea-eccca8096289.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce7afe40-51df-40f7-a5ea-eccca8096289.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0de76d35f26837b0c003f96fb9b51c05
3a4f2fd9086cbc705b903996f14e2df40d615129
a4f143d107ebc9ffa7e84da9a0816f55db13796ed0193516523cfcfc23282166
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce7afe40-51df-40f7-a5ea-eccca8096289.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7829
x-amzn-requestid: 9c2d792c-6f72-4006-9f97-245e0f664d6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8N8bGftoAMFwBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6361904f-680e59ed401239a2323f5741;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:31:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9_QPRz3ayZwBqeE31TDodoRdmgb_L2GGh6w3LSXG-rpr7Dxhn2hiTw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 21:37:58 GMT
age: 7076
etag: "3a4f2fd9086cbc705b903996f14e2df40d615129"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55550fcf-c461-45e4-b8fc-6da3f06e619f.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55550fcf-c461-45e4-b8fc-6da3f06e619f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c69585975447cd8817ef28e040f2282d
86f7a25a4c6cbd3ba02335d3e9e3806e04353057
371e0f702449d2dca70feff03b2c191ae668da7f24d4fd1b495a70a3a1e15c7c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55550fcf-c461-45e4-b8fc-6da3f06e619f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9264
x-amzn-requestid: e8d66671-2424-4e71-be8d-5cd01e7a108e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OHAFeBoAMFVNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619093-4f186264706348807ac85be5;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:33:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: AumRkK1CM_hAmAa7zDIg3i63h7e1UCkE1T9LfTSJXXkznPeocAXPlw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:01:42 GMT
etag: "86f7a25a4c6cbd3ba02335d3e9e3806e04353057"
content-type: image/jpeg
age: 5652
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53435436-f801-4beb-9ab5-d3a73f1e847d.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53435436-f801-4beb-9ab5-d3a73f1e847d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 90056dd61f7dd83fa7273baaad2f1ccd
0dcc5c3cfd1886d4a412d5e940e96f003c872f3d
391b8f0d4b2342709d7b2d398e33c3e28a8cc0000d7faa306d7685d571c21cb0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53435436-f801-4beb-9ab5-d3a73f1e847d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: e1c7ea62-19aa-44e2-a94a-7da9f84431c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OkxHKooAMFeJA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619151-6be98bd03a1260e37e489e7a;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:36:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dGzbhOAU2StETP9jEWUK1g70kRFj2PhCXCKe2HcdkS4JpDfNfAjERg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:05:30 GMT
age: 5424
etag: "0dcc5c3cfd1886d4a412d5e940e96f003c872f3d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b9b1-4c7d-4b27-9ac8-814c5d30d856.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b9b1-4c7d-4b27-9ac8-814c5d30d856.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 32078f151d5c98b9b8d265661259a82d
fa6b5924747d6e4344071e0d084316769d706a4b
6e788e72a8fd355fe873c9403cd1c4131cd1efc7fb45bda4b8c850c384da48b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b9b1-4c7d-4b27-9ac8-814c5d30d856.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6111
x-amzn-requestid: 922fef88-1bd2-4d59-849d-3fafdee02bf8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OkwHBJIAMF2PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619151-0b202cf74b443c086a35bdb6;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:36:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fSvZ4l5_sfukH_q8dqI-Yo3wO7R7LwDCgC7Le-zsOZRQPlAHBJQB6w==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 21:45:29 GMT
age: 6625
etag: "fa6b5924747d6e4344071e0d084316769d706a4b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fb3964a844616e8156299a91f6068d3b
dc8a6f2b451b87f4b8f4573daf9f3587d801e1ed
014216665e0feb6a3f64460d8dd50023d4621e10fd31180d6807c9eda8f57364
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7616
x-amzn-requestid: 6e204386-945d-4c9b-9932-d6c62788dc99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: amd4tGnZoAMFdHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358dd04-67dfd6165942ee403b822eea;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 07:08:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: t2EoETrdqnEObMgs82RYRytqyFHo_yxOLwAFdYMNsF6-_PxZKnG8SA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 15:38:16 GMT
age: 28658
etag: "dc8a6f2b451b87f4b8f4573daf9f3587d801e1ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
webmail.optusnet.com.au/fonts/TradeGothicLTPro-Bold.ttf
104.84.152.187200 OK 22 kB URL HTTP/2 webmail.optusnet.com.au/fonts/TradeGothicLTPro-Bold.ttf
IP 104.84.152.187:0
ASN #20940 Akamai International B.V.
File type TrueType Font data, 15 tables, 1st "FFTM", 34 names, Macintosh\012- data
Hash cfdb5ba9409879d9074dd348b0c55f92
700119f9abe7625a466d39a2f0607d22ce12f84c
da7610cafac818ab5f205486522bda0fa045e8ba770287b38ec074777f219631
GET /fonts/TradeGothicLTPro-Bold.ttf HTTP/1.1
Host: webmail.optusnet.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://webmail.optusnet.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 07 Sep 2020 14:46:42 GMT
etag: "380758-b908-5aeba49709ecb"
accept-ranges: bytes
content-type: text/plain; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
expires: Tue, 01 Nov 2022 23:35:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 01 Nov 2022 23:35:54 GMT
content-length: 22200
server-timing: cdn-cache; desc=HIT, edge; dur=48
set-cookie: ak_bmsc=A5642CF3D7C43864DDB238230C61745E~000000000000000000000000000000~YAAQt5hUaKjFB/GDAQAAUCuNNRFzBQXCq9jYy37LAruRDF2mhwGD6o+2jJSE8NbirFlRe4n24VSlXapwjq2KzItMrzVwO5ClRvNfcoSOUG6WPAvpHETOVKW/Lu3JpGJ8NTdyrEq0KN6xXRIbwQ+JLLFR/yPzYZwuHC0jOUJO4dvmzDeNA2v+/SD/MIMAExqqV7yaSavaUwXwWiKzw+0bWm9d5BvJIhuro1zaECj1lkBdK38uAae9lXY36kEGMMmJEx9H4xZu7DhDZ9Xi0WNnvOxxF0lIQPqO8F1ok6CV6jvOKpUM2LGRc4hHHFC2chGL+B5Re6jvC1u/TomtZSyAQilRrYFZchHq2cxsumYjSWm6D5l96kJEFxYTgE4aJWYr0b2GTepbXOlLxL/iRAc=; Domain=.optusnet.com.au; Path=/; Expires=Wed, 02 Nov 2022 01:35:54 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
webmail.optusnet.com.au/css/assets/fonts/optus-icons/3b871fdce18529649ee34f0a03b9c4a7.woff
104.84.152.187200 OK 132 kB URL HTTP/2 webmail.optusnet.com.au/css/assets/fonts/optus-icons/3b871fdce18529649ee34f0a03b9c4a7.woff
IP 104.84.152.187:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format, TrueType, length 131716, version 0.0\012- data
Size 132 kB (131716 bytes)
Hash 3b871fdce18529649ee34f0a03b9c4a7
f92d8a6678b2f05868f56b892ea29b16312cc422
e0c2ef15300fafe077e415fcb54a7ce190ad1d8a2d3e26360323c6df94838b2a
GET /css/assets/fonts/optus-icons/3b871fdce18529649ee34f0a03b9c4a7.woff HTTP/1.1
Host: webmail.optusnet.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://webmail.optusnet.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Wed, 25 Nov 2020 03:44:02 GMT
etag: "3e07de-20284-5b4e63cf94480"
accept-ranges: bytes
content-length: 131716
content-type: text/plain; charset=UTF-8
expires: Tue, 01 Nov 2022 23:35:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 01 Nov 2022 23:35:54 GMT
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=1, origin; dur=1221
set-cookie: ak_bmsc=A741BD808DCECC9A548974A5B1A0C289~000000000000000000000000000000~YAAQt5hUaKfFB/GDAQAATyuNNREH75alsF/WjN73LHq+sFC4i30jWc1c24VBuCcf307dx6neQCUcs1KMiEGvyRfBnX5bmIKom6+mgB+hpPg0j6U6k5ZW/esFSHwFFLkBo/0bFtzd+/QDDkVeLz6OauSaRYDTVZB6Il8Ma33FQesr3FF500Ancw/wnZRMgzpmAEZYc3F0BjzAyoMP5n+O6nTdX71NFkJg1IONfb38E2rqsYHs1mPdrwMjiL+hizM06d0UVTAu2SR2bVIom/mh3lJxVdA3Lf3Fl6SfoPaZOFlYXL1pQoaqEwjI2gvdmnVvaVBF6lnRlSMatP3HH0f1t8ZhYXPzhNVmHomXeIiUlsBsyj+RNHcC6nVO7wyki7kVdrUfJ6aRQdmp2O460B4=; Domain=.optusnet.com.au; Path=/; Expires=Wed, 02 Nov 2022 01:35:54 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
rskqatar.com/fonts/TradeGothicLTPro.ttf
192.185.196.59200 OK 123 B URL HTTP/1.1 rskqatar.com/fonts/TradeGothicLTPro.ttf
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 3b5704ac3f80d0e8752d5b90b4ab6a78
1581e1e2bee62630f980576e28267382a98c082e
367a713fa48eff5693284c5e6e2fb7b70b6daeb58c067d159717274fec1bb676
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/TradeGothicLTPro.ttf HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
Cookie: _ga=GA1.2.1848538227.1667345753; _gid=GA1.2.423531271.1667345753; _gat_optus=1
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:54 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 123
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
smb.optus.com.au/opfiles/Shop/Consumer/Assets/AllFonts/lux-icon.f3b05436332f1b3b6e43b84b30eb59d6.woff
23.38.200.195200 OK 24 kB URL HTTP/2 smb.optus.com.au/opfiles/Shop/Consumer/Assets/AllFonts/lux-icon.f3b05436332f1b3b6e43b84b30eb59d6.woff
IP 23.38.200.195:0
File type Web Open Font Format, TrueType, length 24040, version 1.0\012- data
Hash f3b05436332f1b3b6e43b84b30eb59d6
cdeee7ddf5a41722ed3a06b57c30d0fb188bd024
fd79a7fea081166cdd9eeeba41272a4c9a34c335f29dddb752e136efb04612db
GET /opfiles/Shop/Consumer/Assets/AllFonts/lux-icon.f3b05436332f1b3b6e43b84b30eb59d6.woff HTTP/1.1
Host: smb.optus.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://smb.optus.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
strict-transport-security: max-age=31536000
last-modified: Thu, 16 Mar 2017 22:55:27 GMT
etag: "a02010-5de8-54ae0f4fe75c0"
content-type: text/plain; charset=ISO-8859-1
vary: Accept-Encoding
cache-control: max-age=14225916
expires: Sat, 15 Apr 2023 15:14:31 GMT
date: Tue, 01 Nov 2022 23:35:55 GMT
content-length: 24040
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
rskqatar.com/fonts/optus-icons.ttf
192.185.196.59200 OK 123 B URL HTTP/1.1 rskqatar.com/fonts/optus-icons.ttf
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 3b5704ac3f80d0e8752d5b90b4ab6a78
1581e1e2bee62630f980576e28267382a98c082e
367a713fa48eff5693284c5e6e2fb7b70b6daeb58c067d159717274fec1bb676
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/optus-icons.ttf HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
Cookie: _ga=GA1.2.1848538227.1667345753; _gid=GA1.2.423531271.1667345753; _gat_optus=1; RT="z=1&dm=rskqatar.com&si=hc4zu1bm7v5&ss=l9yum1ud&sl=0&tt=0"
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:54 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 123
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
webmail.optusnet.com.au/fonts/TradeGothicLTPro.woff
104.84.152.187200 OK 24 kB URL HTTP/2 webmail.optusnet.com.au/fonts/TradeGothicLTPro.woff
IP 104.84.152.187:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format, CFF, length 24000, version 2.0\012- data
Hash a82ff9bc3d36880ef95c322c31465b76
b362b3bdbddffc032b271be74a596562b36fb4e6
0e295e739425866834aa396daa3334bc878c6f72da205fe317ecc3ff749d9f0e
GET /fonts/TradeGothicLTPro.woff HTTP/1.1
Host: webmail.optusnet.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://webmail.optusnet.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 07 Sep 2020 14:46:42 GMT
etag: "38075d-5dc0-5aeba4970a2b3"
accept-ranges: bytes
content-length: 24000
content-type: text/plain; charset=UTF-8
expires: Tue, 01 Nov 2022 23:35:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 01 Nov 2022 23:35:55 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=62
set-cookie: ak_bmsc=FD9EFB89F99CD5178B349149D6347249~000000000000000000000000000000~YAAQt5hUaKzFB/GDAQAA7SuNNRGRJjvqs1mZIjPNrcxGiV9+pTytvENeL64IFfaITxqYfSLMEw3W0PCwRo1zOq1IVqQwc4Hmj54nyeBn3ZrrjNTVVKvpY11fkhjIv0QaJPC+GPmNY8YFXfxtZwA6EQy5WaDy4NzfTcArvhMs9HosQtSpSujigUqY/LeX1AZH/RHw2ydN7U6xmhh7W0EnYH+8e4KunT/3joOLMbu8MOJPL3SNY4yizVyfXWENWj35xi/0MwuiP12Dkpne1fGFS0UIAkJqD3QQI5TBKMm4rdfioT0uwNH7tHkzQYd1lxNB2YVSiBjNjkWfF4+bYESwCOxw8vLslhGQMqzpqKrbQUaA1SWEqhBAByK0lA1eoXwqUsvuMHHIWdVQGjgBGD8=; Domain=.optusnet.com.au; Path=/; Expires=Wed, 02 Nov 2022 01:35:55 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
smb.optus.com.au/opfiles/Shop/Consumer/Assets/AllFonts/optus-icons4.ttf
23.38.200.195200 OK 24 kB URL HTTP/2 smb.optus.com.au/opfiles/Shop/Consumer/Assets/AllFonts/optus-icons4.ttf
IP 23.38.200.195:0
File type TrueType Font data, 11 tables, 1st "GSUB", 16 names, Macintosh, type 1 string, optus-iconsRegularoptus-iconsoptus-iconsVersion 1.0optus-iconsGenerated by svg2ttf from Fontello\012- data
Hash 3ad802f9f1d8233b0f22d017fd0ea0a7
a9bd66bc31fee3718f9279846c16dd937a018409
a6eb28bea76265b388497a8a156cbd15e192cae11ff026a77e21e8330e67e5a1
GET /opfiles/Shop/Consumer/Assets/AllFonts/optus-icons4.ttf HTTP/1.1
Host: smb.optus.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://smb.optus.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
strict-transport-security: max-age=31536000
last-modified: Thu, 23 Mar 2017 05:17:39 GMT
etag: "18301a-9e0c-54b5efee542c0"
accept-ranges: bytes
content-encoding: gzip
content-length: 24359
content-type: text/plain; charset=ISO-8859-1
cache-control: max-age=21307
expires: Wed, 02 Nov 2022 05:31:02 GMT
date: Tue, 01 Nov 2022 23:35:55 GMT
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
c.go-mpulse.net/api/config.json?key=PC6VM-4FQA5-8HDKN-MYG9N-T5BRS&d=rskqatar.com&t=5557819&v=1.632.0&if=&sl=0&si=hc4zu1bm7v5-rkp07u&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,Angular,Backbone,Ember,History,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,LOGN&acao=&ak.ai=647240
23.38.200.138200 OK 51 B URL HTTP/1.1 c.go-mpulse.net/api/config.json?key=PC6VM-4FQA5-8HDKN-MYG9N-T5BRS&d=rskqatar.com&t=5557819&v=1.632.0&if=&sl=0&si=hc4zu1bm7v5-rkp07u&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,Angular,Backbone,Ember,History,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,LOGN&acao=&ak.ai=647240
IP 23.38.200.138:0
File type JSON data\012- , ASCII text
Hash 0c31809e4fd33a86721fb9b52fc97cb6
2c65ea77e432a8df5d43cf74564139a1830943c9
e5d7255215c2de4586458722f3bf16f0d4f2be286be48d45b2fdff258d434407
GET /api/config.json?key=PC6VM-4FQA5-8HDKN-MYG9N-T5BRS&d=rskqatar.com&t=5557819&v=1.632.0&if=&sl=0&si=hc4zu1bm7v5-rkp07u&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,Angular,Backbone,Ember,History,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,LOGN&acao=&ak.ai=647240 HTTP/1.1
Host: c.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rskqatar.com
Connection: keep-alive
Referer: http://rskqatar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=120, stale-while-revalidate=60, stale-if-error=120
Timing-Allow-Origin: *
Content-Length: 51
Date: Tue, 01 Nov 2022 23:35:55 GMT
Connection: keep-alive
Content-Type: application/json
webmail.optusnet.com.au/fonts/TradeGothicLTPro.ttf
104.84.152.187200 OK 23 kB URL HTTP/2 webmail.optusnet.com.au/fonts/TradeGothicLTPro.ttf
IP 104.84.152.187:0
ASN #20940 Akamai International B.V.
File type TrueType Font data, 15 tables, 1st "FFTM", 34 names, Macintosh\012- data
Hash 0e38f94c34a77cded35bf38863482262
c54c62e74e4c1ec7df541e5e7593b4932a230f82
8de3d4b2ef731a49040bad8141e3d65dc471cb870cf3d643fbcea04ebe54436f
GET /fonts/TradeGothicLTPro.ttf HTTP/1.1
Host: webmail.optusnet.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://webmail.optusnet.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 07 Sep 2020 14:46:42 GMT
etag: "38075c-ba08-5aeba4970a2b3"
accept-ranges: bytes
content-type: text/plain; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
expires: Tue, 01 Nov 2022 23:35:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 01 Nov 2022 23:35:55 GMT
content-length: 22658
server-timing: cdn-cache; desc=HIT, edge; dur=111
set-cookie: ak_bmsc=121A44B695EFED57C3285FCD31ACB341~000000000000000000000000000000~YAAQt5hUaK7FB/GDAQAAgyyNNRFnLAi+Wgn2wWfoD0oCk4o4umR9eTbW2Pmb0C+phKTusyB+RISPhHR+vUOLCwXI7uvmnPUTapqZLykMSUGQuktLIHFsgaMB8gEFC2crBwHaPg8j2cMKnY9qKKRS/7xZAAkXqPA92BWlzWq8pZ/3uIQrBozhAzJOoyarr+0aPlvua4oak5MEbreuWK9DVeuR3DgPUehFoPvJnujv2A/vDY3qalUZI1ZM64nWpamC/kfND9U0bAY50jg9EPqmRSDFM0eHL38KS9ccqvjqx5XnM61b53DzTwDVw9lQsWlDi2XV1lghDAr5JwsdMD+V3ztcpnFf/RUtjmE5U1Q5v2FgvqTwODWpVsDNir+BsR+uNuR0hitH+e1dNRhV7yA=; Domain=.optusnet.com.au; Path=/; Expires=Wed, 02 Nov 2022 01:35:55 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 9e22dfe51ab9c940bb579430ed3b78a4
ccae561eb9b63619ffe425b9f869cbbbc3ee7c0b
0a2184c28a4c739add7ff59ff6e4a124d93505fc75b185199f60d0348b881e6e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 23:35:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fbf6526bfaa1d7724a722f46104cb123
45105469c69bcddda6b68c8a8b31cc60513ad2e0
2abe5238de491f618eb932551e6cf1df158bc2bb2caeef2eacdacd9f1002e8a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 23:35:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
webmail.optusnet.com.au/images/favicon.ico
104.84.152.187200 OK 5.4 kB URL HTTP/2 webmail.optusnet.com.au/images/favicon.ico
IP 104.84.152.187:0
ASN #20940 Akamai International B.V.
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 64c8be841ccc801dfebb21711666e8e4
a23da0ed32181d690f9caec4eab44ad850b2b8f3
2e5032ec0c932a9d1be3cd3e1b11b1ae9081f9aaae10aa3785cb3eec28a3e676
GET /images/favicon.ico HTTP/1.1
Host: webmail.optusnet.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rskqatar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 07 Sep 2020 14:46:42 GMT
etag: "3807ba-1536-5aeba49713ef4"
accept-ranges: bytes
content-length: 5430
content-type: image/x-icon
expires: Tue, 01 Nov 2022 23:35:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 01 Nov 2022 23:35:55 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=48
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22088848-3&cid=1848538227.1667345753&jid=1434791293&_u=YGBACEAABAAAAC~&z=1718561887
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22088848-3&cid=1848538227.1667345753&jid=1434791293&_u=YGBACEAABAAAAC~&z=1718561887
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22088848-3&cid=1848538227.1667345753&jid=1434791293&_u=YGBACEAABAAAAC~&z=1718561887 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rskqatar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 01 Nov 2022 23:35:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22088848-3&cid=1848538227.1667345753&jid=1434791293&_u=YGBACEAABAAAAC~&z=1718561887
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22088848-3&cid=1848538227.1667345753&jid=1434791293&_u=YGBACEAABAAAAC~&z=1718561887
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22088848-3&cid=1848538227.1667345753&jid=1434791293&_u=YGBACEAABAAAAC~&z=1718561887 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rskqatar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 01 Nov 2022 23:35:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c1af38ec0609b645477f3a9fe1054f30
590be080fbdea4626418c10472ffaada28f2d50a
6802d3acb54cf6d879d8eb65435dd9748ac2dcfda9eacc430df1b6fdd0bb7c67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 23:35:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fbf6526bfaa1d7724a722f46104cb123
45105469c69bcddda6b68c8a8b31cc60513ad2e0
2abe5238de491f618eb932551e6cf1df158bc2bb2caeef2eacdacd9f1002e8a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 23:35:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rskqatar.com/akam/13/pixel_18ae682f
192.185.196.59200 OK 123 B URL HTTP/1.1 rskqatar.com/akam/13/pixel_18ae682f
IP 192.185.196.59:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 3b5704ac3f80d0e8752d5b90b4ab6a78
1581e1e2bee62630f980576e28267382a98c082e
367a713fa48eff5693284c5e6e2fb7b70b6daeb58c067d159717274fec1bb676
Analyzer Verdict Alert quad9 Sinkholed
POST /akam/13/pixel_18ae682f HTTP/1.1
Host: rskqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 2718
Origin: http://rskqatar.com
Connection: keep-alive
Referer: http://rskqatar.com/wp-includes/fonts/opt/
Cookie: _ga=GA1.2.1848538227.1667345753; _gid=GA1.2.423531271.1667345753; _gat_optus=1; RT="z=1&dm=rskqatar.com&si=hc4zu1bm7v5&ss=l9yum1ud&sl=0&tt=0"
HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 23:35:54 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 123
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
webmail.optusnet.com.au/css/assets/fonts/markpro-bold/b36bd0abdbc7fa03aa4a74b044f01b41.ttf
104.84.152.187200 OK 0 B URL HTTP/2 webmail.optusnet.com.au/css/assets/fonts/markpro-bold/b36bd0abdbc7fa03aa4a74b044f01b41.ttf
IP 104.84.152.187:0
ASN #20940 Akamai International B.V.
GET /css/assets/fonts/markpro-bold/b36bd0abdbc7fa03aa4a74b044f01b41.ttf HTTP/1.1
Host: webmail.optusnet.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://webmail.optusnet.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Wed, 25 Nov 2020 03:44:01 GMT
etag: "3e07d2-24aa8-5b4e63cea0240"
accept-ranges: bytes
content-type: text/plain; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
expires: Tue, 01 Nov 2022 23:35:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 01 Nov 2022 23:35:55 GMT
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=1, origin; dur=906
set-cookie: ak_bmsc=855C6C874745FEDB2D62D34EC5B0EF95~000000000000000000000000000000~YAAQt5hUaKvFB/GDAQAA0SuNNRH5+LGJFfa6VoNP55UOqq8ontrS/JX0xIDgyJQA+5oZ8Z/hOnA67eIVCG4Xks3nrcYP5QJYNVDlJabR6o8HrcUQBP0RFb5sO74cmGnAt/Qy7fRC2NSzYLIzo0j1r9cdQhEEQS9VjgTWA9QIXs+rCZ0p7b+nh+4hHorxD2+3W9Bg/ciWQodypmUyJFQ7ADVIclHliBUJnZkwr+hiamOb/Kqbx24EQMLC+RleT595sXgjuB9h2mOdZn3GmSc7CjsqKxTtVQ0HMkM+Q83Js/iiwFRJ4TUwTs++xFDk0nLen75gr2qE+3zn2FGxCYcNmTqqRf1gVMt32FPk1TYS2YfYr/y+EUSUPYcN7B7JRLzXVgzSJz2/A4bY+R8kYoQ=; Domain=.optusnet.com.au; Path=/; Expires=Wed, 02 Nov 2022 01:35:54 GMT; Max-Age=7199; HttpOnly
X-Firefox-Spdy: h2
webmail.optusnet.com.au/css/assets/fonts/lux-icons/e4b4a05b220275fdcd5ea00604578c52.ttf
104.84.152.187200 OK 0 B URL HTTP/2 webmail.optusnet.com.au/css/assets/fonts/lux-icons/e4b4a05b220275fdcd5ea00604578c52.ttf
IP 104.84.152.187:0
ASN #20940 Akamai International B.V.
GET /css/assets/fonts/lux-icons/e4b4a05b220275fdcd5ea00604578c52.ttf HTTP/1.1
Host: webmail.optusnet.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://webmail.optusnet.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Wed, 25 Nov 2020 04:03:26 GMT
etag: "5426b8-168c4-5b4e6825a7f80"
accept-ranges: bytes
content-type: text/plain; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
expires: Tue, 01 Nov 2022 23:35:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 01 Nov 2022 23:35:54 GMT
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=1, origin; dur=898
set-cookie: ak_bmsc=C70C2AC6F832E320F0FAAA14BDEDB052~000000000000000000000000000000~YAAQt5hUaKnFB/GDAQAAXiuNNRGd3vNkLMDqvsYsUNPyv9+8LAE3W9fDwI1v6r+/xrI5TXmZm8t+AL679iABMFZtLn7+MCodSq2xD3CqXjCQMPcA95hP60tzbVIJ1HFe2QUV4fWVUdn0gNYH61dAORu237MlPJg8vssknKBcQ51IRm3hwOeH1dhR46n8Deg9F5Fx6Ass0B4yGOHhgq9VtawS5dMaBK0fi8+IM8pXeOx4I1hfL54uyqXF0jcdvx5FKAQkM0i5VkB16zwd+Nf95+mzkF4DTEiRWOo9FW/GiIBUM7xUTuzWvT5z8Kx8iJf0pVaaboJb/hYvr4w6dqzzvUY5JiLz98A27BqT3imYykVKMdXzIYSsPOW7u4tfYyHU2VYxfObj9rxXFJY6cpg=; Domain=.optusnet.com.au; Path=/; Expires=Wed, 02 Nov 2022 01:35:54 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
webmail.optusnet.com.au/css/assets/fonts/markpro/19a3ebc699884aecee079593432d97c3.ttf
104.84.152.187200 OK 0 B URL HTTP/2 webmail.optusnet.com.au/css/assets/fonts/markpro/19a3ebc699884aecee079593432d97c3.ttf
IP 104.84.152.187:0
ASN #20940 Akamai International B.V.
GET /css/assets/fonts/markpro/19a3ebc699884aecee079593432d97c3.ttf HTTP/1.1
Host: webmail.optusnet.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://webmail.optusnet.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Wed, 25 Nov 2020 03:43:59 GMT
etag: "3e07ca-24718-5b4e63ccb7dc0"
accept-ranges: bytes
content-type: text/plain; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
expires: Tue, 01 Nov 2022 23:35:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 01 Nov 2022 23:35:55 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=105
set-cookie: ak_bmsc=60949366C03E9EC5A5DCF7F28DE1A021~000000000000000000000000000000~YAAQt5hUaKrFB/GDAQAAriuNNRFlhi3yZ61pQHdxeTximdloQrod/s7c9sEMenLI8rij1NuMwjbY7L/aBviAk9+yQETQ62oL7B5ZnWQecW2neXHD2K0YosPLrSsWomVHIq3+wuC8Sm1M6JlIEohEf3dcggu1pTvrQ65oYpS05DX6l98tefPALPODnkrawR7YWYmom8RiMGjKZk1QDZtB2nHAZY0YQTeiqTQsUXMZDKfqVTMNP6xPjj6m/qg90ppmdX6DsCunsPBtOju6/K/vFbPBMe1Ho3XvA3gCZ/skss59N48hyTkCMUw4ObQuA5KmZthM4rVHd2YAU7lYoLG4vL9zeGfoK+Lx1yc6xHjP4wPTkGLJZyP1NlvunPjZrTHwhhz0BbkTHpIUBBVyd7A=; Domain=.optusnet.com.au; Path=/; Expires=Wed, 02 Nov 2022 01:35:54 GMT; Max-Age=7199; HttpOnly
X-Firefox-Spdy: h2
smb.optus.com.au/opfiles/Shop/Consumer/Assets/AllFonts/MarkPro.woff
23.38.200.195200 OK 0 B URL HTTP/2 smb.optus.com.au/opfiles/Shop/Consumer/Assets/AllFonts/MarkPro.woff
IP 23.38.200.195:0
GET /opfiles/Shop/Consumer/Assets/AllFonts/MarkPro.woff HTTP/1.1
Host: smb.optus.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://smb.optus.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
strict-transport-security: max-age=31536000
last-modified: Fri, 01 Apr 2016 05:01:15 GMT
etag: "a00cb9-103f4-52f6544bd1cc0"
content-type: text/plain; charset=ISO-8859-1
vary: Accept-Encoding
cache-control: max-age=13759150
expires: Mon, 10 Apr 2023 05:35:04 GMT
date: Tue, 01 Nov 2022 23:35:54 GMT
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
webmail.optusnet.com.au/css/assets/fonts/optus-icons/5c427cce6a50a479b9ebe5f775b613a8.ttf
104.84.152.187200 OK 0 B URL HTTP/2 webmail.optusnet.com.au/css/assets/fonts/optus-icons/5c427cce6a50a479b9ebe5f775b613a8.ttf
IP 104.84.152.187:0
ASN #20940 Akamai International B.V.
GET /css/assets/fonts/optus-icons/5c427cce6a50a479b9ebe5f775b613a8.ttf HTTP/1.1
Host: webmail.optusnet.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rskqatar.com
Connection: keep-alive
Referer: https://webmail.optusnet.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Wed, 25 Nov 2020 03:44:02 GMT
etag: "3e07c4-20238-5b4e63cf94480"
accept-ranges: bytes
content-type: text/plain; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
expires: Tue, 01 Nov 2022 23:35:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 01 Nov 2022 23:35:54 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=77
set-cookie: ak_bmsc=5B263356257E13B7C6DE17D57A1E6320~000000000000000000000000000000~YAAQt5hUaKDFB/GDAQAAviqNNREfIWv4jib5/hcfAfn68o2oVNHazqXNo5UFZHo/sxUc8stg+LpE1X17NtPUCjobCDoV1qehQj4ZUgJN7HLHgQ7pRmpLqpmeAXc8NzS83Vl3VFvx52woOZVaBaFVZsywOyBN2tgy1CVInb3mV9j00RcmpeRVufWBLnt5ifEaOfJ4yJbEg2fTSHa9RO8TqC3i9eiFcUy08DyLUIJ8mJbXYzTV0qfYVleiic6s+7g6VHI7bhrtDWjNGAOsNjrL6II6RrmZg/ZHrABXcwCnf771bYg0OIYuudp+5IiSJuTYzXr+O38bLhEiP5UUH1H0OkH8GPqoO1k1EijSZPXhnUvGtzidlROr9hhni6xpRtqWfEqpgD8ky+eKtXezXEI=; Domain=.optusnet.com.au; Path=/; Expires=Wed, 02 Nov 2022 01:35:54 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2