Report - www.quantumrlv.com.au/online/login.php?sid=h432leluvhvb6tkknmsc24bjr9

Report Overview

Visited public
2023-08-16 02:28:49
Tags
URL
www.quantumrlv.com.au/online/login.php?sid=h432leluvhvb6tkknmsc24bjr9
Finishing URL
www.quantumrlv.com.au/online/login.php
IP / ASN
23.227.38.74
#13335 CLOUDFLARENET
Title
404 Not Found – Quantum Reading Learning Vision

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.quantumrlv.com.au	unknown	unknown	2014-03-09 05:58:07	2023-08-14 17:20:37	31 kB	1.2 MB	23.227.38.74
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-08-15 18:56:45	892 B	58 kB	104.17.24.14
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-08-15 18:17:59	2.7 kB	448 kB	142.250.74.40
staticxx.s3.amazonaws.com	42291	2005-08-18	2018-05-21 20:16:31	2023-08-14 17:20:38	437 B	398 B	52.216.132.107
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-08-15 18:15:27	750 B	452 B	216.239.32.36
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-08-15 18:53:11	845 B	60 kB	216.58.211.3
www.browsealoud.com	25730	2000-12-11	2012-09-05 19:46:23	2023-08-14 18:19:30	6.2 kB	976 kB	143.204.55.103
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-08-15 21:21:52	3.9 kB	3.6 kB	142.250.74.163
cdn.shopify.com	2327	2005-03-11	2012-06-22 20:37:14	2023-08-15 18:12:49	7.6 kB	3.1 MB	23.227.60.200
servicify-appointments.herokuapp.com	314463	2010-09-19	2020-09-26 02:07:42	2023-08-14 17:51:28	1.0 kB	1.5 MB	54.243.129.215
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-08-15 18:12:04	3.3 kB	7.0 kB	142.250.74.131
shop.app	3696	2018-05-01	2020-04-15 23:27:58	2023-08-15 18:50:20	504 B	3.5 kB	23.227.38.33
use.fontawesome.com	942	2012-10-18	2017-01-30 05:43:25	2023-08-15 18:12:37	1.9 kB	146 kB	172.64.102.11
chimpstatic.com	4832	2017-02-16	2017-04-21 07:35:42	2023-08-15 20:45:20	506 B	4.4 kB	23.32.107.198
display.popt.in	29465	2016-05-14	2018-05-02 15:04:43	2023-08-15 21:37:33	1.7 kB	6.6 kB	172.64.175.6
ocsp.r2m01.amazontrust.com	unknown	2007-05-11	2022-10-12 22:43:53	2023-08-15 21:22:47	1.0 kB	2.7 kB	143.204.48.16
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-08-13 00:41:00	3.3 kB	4.9 kB	216.58.207.228
www.merchant-center-analytics.goog	unknown	2022-07-22	2022-09-16 15:45:19	2023-08-15 19:06:29	744 B	452 B	142.250.74.110
plus.browsealoud.com	35517	2000-12-11	2018-10-06 04:49:55	2023-08-14 18:19:30	473 B	1.4 kB	143.204.55.63
cdn.popt.in	28613	2016-05-14	2018-03-27 03:38:53	2023-08-15 21:37:31	451 B	232 kB	172.64.175.6

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	www.quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	www.quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed
2023-08-16	medium	quantumrlv.com.au	Sinkholed

ThreatFox

No alerts detected

JavaScript (67)

	URL	From	Size	First Seen	Last Seen
	www.quantumrlv.com.au/online/login.php	ScriptElement	555 B	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen47 Hash 4bd3624e41730a1d38dd1a2d51736830 0cdbfbcbb44f807486b9318de0515e47332f3546 d80396e5eea90df190f22afc84ebfb91cee96a3125d6d8acc508afa411f9ff2b Loading...

	staticxx.s3.amazonaws.com/aio_stats_lib_v1.min.js?v=1.0	ScriptElement	0 B	0001-01-01	2025-05-15
Pretty URL staticxx.s3.amazonaws.com/aio_stats_lib_v1.min.js?v=1.0 IP 52.216.132.107 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-15 03:14 Times Seen4684907 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js	ScriptElement	87 kB	2023-03-07	2025-05-15
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-15 02:44 Times Seen57704 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	cdn.popt.in/pixel.js?id=cefd457b73aff&shop=quantumrlv.myshopify.com	ScriptElement	231 kB	2023-08-11	2024-08-21
Pretty URL cdn.popt.in/pixel.js?id=cefd457b73aff&shop=quantumrlv.myshopify.com IP 172.64.175.6 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-11 09:01 Last Seen2024-08-21 09:30 Times Seen52 Hash 4398a5fa47dc4476a9cdf3e74a784a22 a5d014022859ac8fd894f25de317602a613656ed 0937127a40f27b8899894874034ce11f6ad90e3391a8a47decc35bc008c80c24 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	2.5 kB	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen47 Hash d12095350dee25c6e44fb21c8593613f de19ccd057529988305e0ce838dc595ab2aa266f b2e61e91f4a60474c719f883786097b5a0ed6d0badf77dbb72887c08c35971ea Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	409 B	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen47 Hash cd6020ca4ffd878d4c5bd8911e0afbab 4a5e407b6b6a15681b598ae26b11124159dd0078 d5b96a6deb950db18be0dc39c8261b5efa3f52475440ce85f3d7956e21944504 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	109 B	2023-03-07	2025-05-15
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07 Last Seen2025-05-15 03:07 Times Seen23848 Hash 43b90ba5f5581c05150263863086ef4f 3c11fb6be2f2fdd4c2eb57bc7373668541bc359d a57dcbfb170a8db671c576acfa2164ba79e12dc323d910084d6a13aa1c87a2ea Loading...

	unknown	EventHandler	35 B	2023-04-14	2025-05-08
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-14 07:02 Last Seen2025-05-08 23:55 Times Seen303 Hash 0723695a9a972939979ad608491f6abd 5eab508b5efd5f1bd8e75e691d3131c3e46d4a21 3b796ec9de7dbe16e6bf480105db4aa672a5af6bd98d03a4aa8f69b7fe415348 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	2.6 kB	2023-03-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 12:36 Last Seen2024-08-21 09:43 Times Seen21 Hash e30835f79859789750bda68793fd14d1 9887e7278497d8c8c067cf5b87778daeee0bf6a7 be6d204158f1cb260e03ee9f713fe6a8473c0c6d276014a4ed71135e915ef496 Loading...

	www.browsealoud.com/plus/scripts/3.1.0/ba.js	ScriptElement	4.2 kB	2023-03-10	2025-03-09
Pretty URL www.browsealoud.com/plus/scripts/3.1.0/ba.js IP 143.204.55.103 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 06:17 Last Seen2025-03-09 17:21 Times Seen66 Hash 460515c3c9cd589beb8dcaeb3de2f6f2 5fa2f0d90c7e6a1d07941ea8b5d9e11a507bfe76 542ac9710755dc86db2158e653217b0e70aa05b583d41719ff5b1d6b62967857 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	438 B	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen43 Hash 0bf623c2b2c61e942e0d0e429551c7e1 b3fcd915a3a5fbc734b2b7ad20d37c7e0d5fb26d db4f77f80c9896272ef01dff861a1596cfed88ade7d66e9653c0dd01e6023055 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	191 B	2023-03-07	2025-05-15
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07 Last Seen2025-05-15 03:07 Times Seen23707 Hash 1d05e584f988e88e4a66e8e3e6985024 9e1b08af9ab019e2bebeadd3bc9a927dd0424b31 bd2d219e2ac4290121dc9a900e62db77920e2f756c3b68ee4b35d898b77b833b Loading...

	www.google.com/pagead/1p-conversion/360414638/?random=1692152903455&cv=11&fst=1692152903455&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4	ScriptElement	43 B	2023-03-07	2025-04-22
Pretty URL www.google.com/pagead/1p-conversion/360414638/?random=1692152903455&cv=11&fst=1692152903455&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-04-22 05:33 Times Seen9724 Hash ad8b6f08655797587cdec719a94efe59 182adf5a140796f81e930649d05654dbf22fd5b7 77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	89 B	2023-03-07	2025-05-15
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07 Last Seen2025-05-15 02:18 Times Seen14848 Hash ae890cb26230579deac1504aa6383d02 a38984f0bce3e8bab5deb2e189f1492103ecfde1 4bff19ed092a8d623965755c4261497cfc57ce019e8a948c5287ae6f3726b606 Loading...

	www.quantumrlv.com.au/cdn/wpm/bb13c7215wdd28e49cpfc97f3d0m364e80e8m.js	ScriptElement	74 kB	2023-08-14	2024-08-21
Pretty URL www.quantumrlv.com.au/cdn/wpm/bb13c7215wdd28e49cpfc97f3d0m364e80e8m.js IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-14 16:00 Last Seen2024-08-21 08:45 Times Seen49 Hash 5bc50ed40a9412b96ad6769767ea0379 7da62a56c00ae12fac96498bf53893f3242ff93d ecffe769d84c69ff4286c5eb5e694c3de385f464805f434095e97606c3c505f6 Loading...

	chimpstatic.com/mcjs-connected/js/users/5d0defce59b100ce55870400b/e9bf1f3ead5d28c50faa67213.js?shop=quantumrlv.myshopify.com	ScriptElement	18 kB	2023-03-07	2025-05-14
Pretty URL chimpstatic.com/mcjs-connected/js/users/5d0defce59b100ce55870400b/e9bf1f3ead5d28c50faa67213.js?shop=quantumrlv.myshopify.com IP 23.32.107.198 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11 Last Seen2025-05-14 17:14 Times Seen1004 Hash 9db810b9b20eb3aa951a3aa37b221dbf f8555de4e22cd4a202081fbfabff4346fa78635f 932bdc4c22755a8e867cc1dd8c24649a15dc6924fe8bb8bbfc58e2b8f25a99fe Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	993 B	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen47 Hash 32cc627fb4af4dfaa5677b221cdee6da dc4978e4fe27d10415bb910c34b28ebf8bf62c2a e0056ac93674c3e2cbb4011b34ede4f5e4f6408cd895754559a3a79415068497 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	147 B	2024-08-21	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 08:37 Last Seen2024-08-21 08:37 Times Seen2 Hash 4aaa720aa6937dfeca21c298c4d732bf c0256fe5c65cde39ca2b07faa487606f776af10f 3e69fca3cb6ad9809264e3b8fc17ff7108ceac98011df7b2feea35aaca5fad00 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	48 B	2023-03-07	2025-05-15
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07 Last Seen2025-05-15 03:07 Times Seen23734 Hash 23203b335edb084a990c2a96821d581d 0c0ae3117ccfaf2dacab70c98939df347923d4db 15052a94a912ce722866c44ff093237c10192080f51cdeddaa291bffefdc54c2 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	1.4 kB	2023-03-07	2025-05-05
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07 Last Seen2025-05-05 17:31 Times Seen7601 Hash abc891b70b393796c81222993ce80d32 08c79a8fc025a206aabc9695679beade1344f3c5 500bfcd620073934aa2e99d5bdcae6ee44bc87c161e75e77f89ce2d08580e2d3 Loading...

	www.browsealoud.com/modules/3.9.1/browsealoud.js	ScriptElement	59 kB	2023-08-13	2023-12-05
Pretty URL www.browsealoud.com/modules/3.9.1/browsealoud.js IP 143.204.55.103 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 13:41 Last Seen2023-12-05 08:13 Times Seen52 Hash 0f5d3262299be26f942483feee94b4c3 f31b775cd1ab7d51242b1e858e6c83b8f4095982 d97407ccb9fdc833377ff3394ca062d80e0141511dc255f140fc80407df7c236 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	107 B	2023-03-07	2025-05-15
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07 Last Seen2025-05-15 03:07 Times Seen23494 Hash ec808fd262cccac29ea8d9cb3bee4211 234d5f55ed60e3eb8e4cd0bf11ffafa29fc5c821 c420dd42c68731e178c1f045fb41d1dc545aa9649982a35feea70e6afa1bbabf Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	569 B	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen46 Hash b42253fb26ed9c114be59a5a83d566ff dafad9cfb3c9d20430927d4abd33af6b8dab4c12 6a30d04594d0167a94ebdd991b4cb40ec6a213353b4cb2c4a01734dc2d1688cf Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	426 B	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen46 Hash d4b98c2a0f366ae3e860ecad00a28a9d e9575077dfe486759c8ab054a52fde9cbf984d82 82a1ab8c4f9882cf98e71eff3d885b98e101fffed5b379567ea7039f93162234 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-15
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-15 03:07 Times Seen342102 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.gstatic.com/wcm/loader.js	ScriptElement	3.0 kB	2023-03-07	2024-08-21
Pretty URL www.gstatic.com/wcm/loader.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42 Last Seen2024-08-21 09:42 Times Seen1067 Hash e66aa914d8fee2fef76972626c4e3c95 f16f051bb480753b62e00f92cccb48d0d4864468 9f959aaad80347edc26ed8279c6a68c098efc76876ac2e2f8ccc54b118f197f4 Loading...

	www.quantumrlv.com.au/online/sandbox%20eval%20code		147 B	2023-04-11	2025-05-15
Pretty URL www.quantumrlv.com.au/online/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-15 03:07 Times Seen342916 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.googletagmanager.com/gtag/js?id=G-3TPLQVT3XT	ScriptElement	220 kB	2023-08-16	2023-08-16
Pretty URL www.googletagmanager.com/gtag/js?id=G-3TPLQVT3XT IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-16 04:28 Last Seen2023-08-16 04:28 Times Seen1 Hash 1c87cf7dba8993200b535fa979d989f0 d5544e446078051eb9f40482a3cad0879d58472b cb299d77590b63a9e30fe49a0887ba39b7ab3e781b4f85afd0069b421190745b Loading...

	www.googletagmanager.com/gtag/js?id=G-3TPLQVT3XT&l=dataLayer&cx=c	ScriptElement	220 kB	2023-08-16	2023-08-16
Pretty URL www.googletagmanager.com/gtag/js?id=G-3TPLQVT3XT&l=dataLayer&cx=c IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-16 04:28 Last Seen2023-08-16 04:28 Times Seen1 Hash c5653c43d9047af4ab15ea9a223ef489 b3ceffdd1ee82c4859158c87252ef0590d3695cd 90e68c72cecd3ce6ddb29e60c4b93891717b00f830a6db865cff1bdee2f943b3 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	143 B	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen46 Hash 2b0f1dbc0cda7c7a14b7d08cb99824ef e49dd9864bd23bb5c9b26c66748dca2505620031 1f6e4d18fdfbb075342899fc2a4f0589a67be2500e945b7278e3e44d8e674dc8 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	329 B	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen46 Hash 141f19812734a10c51201ba71acd3bf0 059c6b2be334a02220a6425c636ae3fd1cb1e767 deb31b06b3953e957a7cd2d3f621b1d047bcf4aa42f005a87fa133de5546aac7 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	101 B	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen46 Hash a0893699fea92aa6519eb83573514c90 ee6f039093ddf0aa0d752e2b5d68f87db82a44d4 5a4bf8fa531f0a2db3f288437e99cd4d456e812b3941d490a3d398f0c395f900 Loading...

	www.googletagmanager.com/gtag/js?id=AW-734458949	ScriptElement	195 kB	2023-08-16	2023-08-16
Pretty URL www.googletagmanager.com/gtag/js?id=AW-734458949 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-16 04:28 Last Seen2023-08-16 04:28 Times Seen1 Hash e2ab100ef7c28ed6d86d7d70ad23a181 09a1b11f4f6d469d1b9d2ece7be0f503dacda121 afc360e89830ed007e87df5b267e978e228ac67e4845e703362704ab5592bf1f Loading...

	www.browsealoud.com/modules/3.9.1/155.df46ca07f44d2220dd86.js	ScriptElement	77 kB	2023-08-13	2025-01-28
Pretty URL www.browsealoud.com/modules/3.9.1/155.df46ca07f44d2220dd86.js IP 143.204.55.103 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 13:41 Last Seen2025-01-28 14:09 Times Seen62 Hash 2ec0de4b87b06b8f28efdf2ea534723c fb393f8b952a36731374960a48cee090d02994bc d64fd9b4dfc20f5d0e98faa22298f795a6ac8b502d978b06a25e528d7d8dfbdc Loading...

	www.browsealoud.com/modules/3.9.1/135.df46ca07f44d2220dd86.js	ScriptElement	276 kB	2023-08-13	2023-12-05
Pretty URL www.browsealoud.com/modules/3.9.1/135.df46ca07f44d2220dd86.js IP 143.204.55.103 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 13:41 Last Seen2023-12-05 08:13 Times Seen51 Hash d7ef512d866c38b9dfb341efdc71182c 2f4874afe427ffb10f05722fea990498366ec280 d9ba2398951fadeea426a672381091fe4a60d505ad3e951e7fdc3fa8b3d7a99d Loading...

	www.quantumrlv.com.au/cdn/shop/t/1/assets/servicify-asset.js?v=9391740801321792721658300754	ScriptElement	5.7 kB	2023-06-29	2024-08-21
Pretty URL www.quantumrlv.com.au/cdn/shop/t/1/assets/servicify-asset.js?v=9391740801321792721658300754 IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-29 17:15 Last Seen2024-08-21 08:51 Times Seen50 Hash 64e2e989e1e7c1e82e0f292406eb5be3 88f4e88a5ba327bd95f638264ade9ed38c10615b 8d70ed7d4016b729534d643dbbcf3368cafa05d2f5b4db7f9bb175ae68433898 Loading...

	www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906	ScriptElement	50 kB	2023-03-08	2024-08-21
Pretty URL www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906 IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33 Last Seen2024-08-21 09:44 Times Seen520 Hash f049b24dfb8d1422b5725cca57e35036 3177dd6e7e895bf38920d4cb665ce158096cd472 c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab Loading...

	servicify-appointments.herokuapp.com/public/frontend-v1.0.0.js?shop=quantumrlv.myshopify.com	ScriptElement	1.5 MB	2023-08-14	2023-08-21
Pretty URL servicify-appointments.herokuapp.com/public/frontend-v1.0.0.js?shop=quantumrlv.myshopify.com IP 54.243.129.215 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-14 17:21 Last Seen2023-08-21 01:12 Times Seen15 Hash e00c25918df581bba464d326de5360f7 d1e8df1b86f9ea3c0e6ff8b9357d2ed5e939b52d 9aa12ec582e0afebe84b2509231430ef55c25158a26ba7a1d0e2b233252f86f5 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	153 B	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen46 Hash 279be37c5ca82e0502c61bdcec79fefd c9d8741bc7bfa1ce7b42044292ce50a2e85c3b20 e8956ea99512390a2888ae8fcc01a5b8e054b328a6fc7fbac3efd3d176bd2c95 Loading...

	www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/shop_events_listener-65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f.js	ScriptElement	8.3 kB	2023-03-07	2025-05-05
Pretty URL www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/shop_events_listener-65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f.js IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-05-05 17:31 Times Seen861 Hash 6b8069ce486b54ede24b5fc50520a1be d9c70c45b0857585ce94b03b9bf5e819412830c7 65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	999 B	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen46 Hash 4fd8a36f07111dfc9e70c43336b8cfba 8a5d198a70de516633d0b6b1355c4fa82a7efb83 55cc53c2de1266c710e200b683adfb8e9c819686dfc92112676ace74b37d4e13 Loading...

	www.browsealoud.com/modules/3.9.1/157.df46ca07f44d2220dd86.js	ScriptElement	22 kB	2023-08-13	2023-12-05
Pretty URL www.browsealoud.com/modules/3.9.1/157.df46ca07f44d2220dd86.js IP 143.204.55.103 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 13:41 Last Seen2023-12-05 08:13 Times Seen51 Hash a56f08ae99a164b0bae08fd2b278d4a7 502739fe1900edd2f80e38bde455b46bb86cb3bd 9774e89ea3fd9d6a63faa6c7d52a8f6c1d654c530e4369a6d5631a6c05038ef8 Loading...

	www.browsealoud.com/modules/3.9.1/139.df46ca07f44d2220dd86.js	ScriptElement	103 kB	2023-08-13	2023-12-05
Pretty URL www.browsealoud.com/modules/3.9.1/139.df46ca07f44d2220dd86.js IP 143.204.55.103 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 13:41 Last Seen2023-12-05 08:13 Times Seen51 Hash 87abc35c3644ed19f9edaaea5765271a 94ddc37bf0b325c94c2a6cb3f01ca30b4d7b0568 5d10a5610dd9af81f5ba8dac7dd12b8340f5081ff3485e4cac32841843f8e7c6 Loading...

	use.fontawesome.com/56c7b3252e.js	ScriptElement	9.5 kB	2023-08-13	2024-08-21
Pretty URL use.fontawesome.com/56c7b3252e.js IP 172.64.102.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen47 Hash 6bef91c8aa11c67b41902c2d88eb9f26 964ff4f2e31e30963fc965f67aacfe0b32ef0b41 75f77f960ece707396877ad6fdcd3c04fc50794e582b86c0d15ce8b0f0086158 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	3.7 kB	2023-08-14	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-14 17:21 Last Seen2024-08-21 08:44 Times Seen11 Hash 0e6c470fcc4ae5d1f2204a908387fa80 fea4d7fd588601e294abb19eea51b8e0bda29fa5 a5a3810928e8ff78d70b9564adf20dd1996e80bd8b5410ce453a57739bfa42e0 Loading...

	www.googletagmanager.com/gtag/js?id=AW-360414638	ScriptElement	201 kB	2023-08-16	2023-08-16
Pretty URL www.googletagmanager.com/gtag/js?id=AW-360414638 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-16 04:28 Last Seen2023-08-16 04:28 Times Seen1 Hash 8fde9a0c1191fb1b350ad626e8900b05 0cb4c706a697b1a5dc213c2e5dbb2d238a7433ba bc6030f8dad4e7755fd9af0641c1626d455074a79676ada0226490c045462804 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	272 B	2023-03-08	2025-04-09
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 02:02 Last Seen2025-04-09 16:02 Times Seen75 Hash b90a0ed66ecfd3b446df7fc9ebf66ca3 19746f44055bf6f473f2ae4cdac9ad4212acc54d e45fb37a428bea7d82fe7362a290ef9841d267e6cac0ac5176c471667b7a12a0 Loading...

	www.googletagmanager.com/gtag/destination?id=MC-BZCV507WSK&l=dataLayer&cx=c	ScriptElement	201 kB	2023-08-16	2023-08-16
Pretty URL www.googletagmanager.com/gtag/destination?id=MC-BZCV507WSK&l=dataLayer&cx=c IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-16 04:28 Last Seen2023-08-16 04:28 Times Seen1 Hash c45367e041f2a45e23ab09947fcf9ae6 755d50bf6e10054e8330c59283797329659e8741 641d1ff6b83ddf7b4dc8f6d92b9e5e3326351bc92e72b259b899eb24acedaac8 Loading...

	www.browsealoud.com/modules/3.9.1/144.df46ca07f44d2220dd86.js	ScriptElement	11 kB	2023-08-13	2023-12-05
Pretty URL www.browsealoud.com/modules/3.9.1/144.df46ca07f44d2220dd86.js IP 143.204.55.103 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 13:41 Last Seen2023-12-05 08:13 Times Seen51 Hash 3425888faf4d4dbf17e669bbe7ec40d0 c9a0c831229439a5466376261080c042f73a6a7f 0e76e74f270e0df1fb7957cd8f69ce2b37a62a6ebec97e3e47a2e631d22abad6 Loading...

	www.gstatic.com/call-tracking/call-tracking_7.js	ScriptElement	56 kB	2023-03-07	2025-04-01
Pretty URL www.gstatic.com/call-tracking/call-tracking_7.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42 Last Seen2025-04-01 07:10 Times Seen1214 Hash 8a8bf04aa59034f517341e59c31593cc 88d8249f054a46229b73bfcaed9ab347408de2bb ff2fde453aa6220144126828a284d4cc227479f1fe83beef3a6b6a4504c7e4df Loading...

	www.browsealoud.com/modules/3.9.1/143.df46ca07f44d2220dd86.js	ScriptElement	35 kB	2023-08-13	2024-08-21
Pretty URL www.browsealoud.com/modules/3.9.1/143.df46ca07f44d2220dd86.js IP 143.204.55.103 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen52 Hash f6b787f90dabc21a5778f1d6f7da99a8 a877b19f5521559a7380a77a770ac7ba9d770961 c81902ce648e15c672056d3cbecaacf3317a8d6525650f7ccc143c0daeaeff69 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	100 B	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen46 Hash c7f6479a253c439cfb9921407a19bf4f a0b52601be6d483d6072b50a165b4ae43430d01d 5726ab299435b301e3f0b017e350f3687dfaacd4f5aa4717e6bdcb492309fda8 Loading...

	www.quantumrlv.com.au/cdn/shop/t/1/assets/lazysizes.js?v=63098554868324070131605910236	ScriptElement	25 kB	2023-08-13	2023-09-14
Pretty URL www.quantumrlv.com.au/cdn/shop/t/1/assets/lazysizes.js?v=63098554868324070131605910236 IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 13:41 Last Seen2023-09-14 03:52 Times Seen46 Hash 4a0b8fb6a4aa25f577e90c6aaa9a7730 d44cebc6c49acc6da97b478753160134f976e84b 0144e436301fd80581f56fdc684d9bf519fd67edb263286a0d20a06ae877f2bd Loading...

	www.quantumrlv.com.au/cdn/shop/t/1/assets/theme.js?v=136441056019758165691605910238	ScriptElement	188 kB	2023-08-13	2023-09-14
Pretty URL www.quantumrlv.com.au/cdn/shop/t/1/assets/theme.js?v=136441056019758165691605910238 IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 13:41 Last Seen2023-09-14 03:52 Times Seen46 Hash 27674eee092a401f98e3ef9a3880ad19 52727c211a1bf2d3ea2be7d58a4ce83cd15aed4c 85aa52271725715810f4194f83eaa1652f95f80be63755cc8ad69f9f7a78c377 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	8.0 kB	2023-08-15	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-15 07:51 Last Seen2024-08-21 08:41 Times Seen12 Hash 2a226ff16d21a587b28ec69211bf650c 00d1b862e2ff738bd191c5e6d7f2d10df877df0e d34e68361abff231495be6f1acbf726e28a784a88177a7c3e974513767c34ba3 Loading...

	www.browsealoud.com/modules/3.9.1/3.df46ca07f44d2220dd86.js	ScriptElement	305 kB	2023-08-13	2024-08-21
Pretty URL www.browsealoud.com/modules/3.9.1/3.df46ca07f44d2220dd86.js IP 143.204.55.103 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen51 Hash 23ee6b7c60a6620aad357383f7cd05da 854159955eaa660b6d9eba3e7bed2f967de550bd b7bb4e646d2153132146d1eba77ecce1af742ce26bbf75daa149c21d283d87d4 Loading...

	www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/storefront/load_feature-6ad832dfb33d267eb5f892acb8c16c6c291694632098e7307cb0cf79497d576b.js	ScriptElement	12 kB	2023-08-12	2024-08-21
Pretty URL www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/storefront/load_feature-6ad832dfb33d267eb5f892acb8c16c6c291694632098e7307cb0cf79497d576b.js IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-12 09:19 Last Seen2024-08-21 09:01 Times Seen718 Hash 05da6217d51b01c8f9fa9c994e77b89e 7c814f19455eae66a3b2aa435da830b56f9ce345 6ad832dfb33d267eb5f892acb8c16c6c291694632098e7307cb0cf79497d576b Loading...

	cdn.shopify.com/s/trekkie.storefront.700693e2d3750a524f284ea8561edbb1c8c62b04.min.js	ScriptElement	118 kB	2023-08-15	2023-08-17
Pretty URL cdn.shopify.com/s/trekkie.storefront.700693e2d3750a524f284ea8561edbb1c8c62b04.min.js IP 23.227.60.200 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-15 00:17 Last Seen2023-08-17 21:24 Times Seen68 Hash 2c0ccdb44a728a48da4434dacb6ced56 250b86ec4f1b5b13f7bff48d760da11ee5c9578b 0238fa8104d47cd51841366c9fe2829234d81a5239aa7a9994256506029f9ad1 Loading...

	www.browsealoud.com/modules/3.9.1/2.df46ca07f44d2220dd86.js	ScriptElement	66 kB	2023-08-13	2023-12-05
Pretty URL www.browsealoud.com/modules/3.9.1/2.df46ca07f44d2220dd86.js IP 143.204.55.103 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 13:41 Last Seen2023-12-05 08:13 Times Seen51 Hash 227d0b2cb6658ffc51750712a9e48103 d3176690b908889454d12715d9a7f43e5913f546 2d808a8e68ac3294ca38c09ac6048c2d0d756170ff7e13b4cc285c91f40d28ab Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	4.6 kB	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen46 Hash d41df8e4f3412d7d10e57d4cc99d2984 131d2ea1a91b0302372e7d0c5dd11f47f59f539e 68f437efdafcdc5a0fcd4ec6d93a497b9af61dd75cf6915460fa8beab1e4b0e3 Loading...

	www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js	ScriptElement	38 kB	2023-03-07	2025-05-05
Pretty URL www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-05-05 17:31 Times Seen821 Hash 188e908791a38f8009be607ded10faeb 479a406ab01702ebd808e018930ee48b623ee447 87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.5.0/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-05-14
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.5.0/jquery.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-14 20:17 Times Seen13739 Hash 12108007906290015100837a6a61e9f4 1d6ae46f2ffa213dede37a521b011ec1cd8d1ad3 c4dccdd9ae25b64078e0c73f273de94f8894d5c99e4741645ece29aeefc9c5a4 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	3.0 kB	2023-08-13	2024-08-21
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-13 13:41 Last Seen2024-08-21 08:51 Times Seen46 Hash 4b2b2fc0d35d38f5afa16737569997b8 19cfec393a16ea068f7f7345520fddf4d586d1a4 bb905788e19ad9280d10beead17d3c23a0b0114ea244e172bb9f83df5eda2a59 Loading...

	www.googletagmanager.com/gtag/js?id=AW-734458949&l=dataLayer&cx=c	ScriptElement	195 kB	2023-08-16	2023-08-16
Pretty URL www.googletagmanager.com/gtag/js?id=AW-734458949&l=dataLayer&cx=c IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-16 04:28 Last Seen2023-08-16 04:28 Times Seen1 Hash ea910bc281462871f3402a087db5d6c2 ade3eb4783b9f29959687be1277a5430844dc4b1 f252b88945896ae94837f0dfa2326aec5f70dc3c136fb54c2ce2cea91df297f1 Loading...

	www.quantumrlv.com.au/cdn/shopifycloud/boomerang/shopify-boomerang-1.0.0.min.js	ScriptElement	60 kB	2023-03-08	2025-01-02
Pretty URL www.quantumrlv.com.au/cdn/shopifycloud/boomerang/shopify-boomerang-1.0.0.min.js IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26 Last Seen2025-01-02 14:38 Times Seen9630 Hash 15576e32757a2679f1129d0f746e173a 26d705ede2baccdcab970b31ac3d35a8baf8d0cf 3d4f19e27ee9a32aa646c33e89666ff5b295cfd9d96cb4a983edb4ae3c011dbd Loading...

	www.browsealoud.com/modules/3.9.1/12.df46ca07f44d2220dd86.js	ScriptElement	9.4 kB	2023-08-13	2024-12-02
Pretty URL www.browsealoud.com/modules/3.9.1/12.df46ca07f44d2220dd86.js IP 143.204.55.103 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 13:41 Last Seen2024-12-02 18:51 Times Seen47 Hash ed997112e7207e15f4f1e6c5a49739aa c048702ba818431b98020f639bd4bf3aec7ee1e6 60b14e15a769d1c4de7ef4549a1c6b943b9a4a89443de2c01e7212132e35a8a3 Loading...

	www.quantumrlv.com.au/online/login.php	ScriptElement	0 B	0001-01-01	2025-05-15
Pretty URL www.quantumrlv.com.au/online/login.php IP 23.227.38.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-15 03:14 Times Seen4684907 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (105)

URL IP Response Size

www.quantumrlv.com.au/cdn/fonts/helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2?h1=cXVhbnR1bXJsdi5jb20uYXU&h2=cXVhbnR1bXRlY2hub2xvZ3kuY29tLmF1&h3=cXVhbnR1bXJsdi5hY2NvdW50Lm15c2hvcGlmeS5jb20&hmac=a1a9b4b5642b6cc11aa37320b61ea5402043da8ffc0ffa2da2d0e912f96924c3

23.227.38.74

200 OK

19 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/fonts/helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2?h1=cXVhbnR1bXJsdi5jb20uYXU&h2=cXVhbnR1bXRlY2hub2xvZ3kuY29tLmF1&h3=cXVhbnR1bXJsdi5hY2NvdW50Lm15c2hvcGlmeS5jb20&hmac=a1a9b4b5642b6cc11aa37320b61ea5402043da8ffc0ffa2da2d0e912f96924c3
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18784, version 1.0\012- data
Size
19 kB (18784 bytes)
Hash
48bdbd2fdba819c4761d8eaf7948ffce
39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5
9c5529d40c44a9fc7a7325d3db1ef37b56c0a210d0c4ee3cef18e76cdaf73d79

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/fonts/helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2?h1=cXVhbnR1bXJsdi5jb20uYXU&h2=cXVhbnR1bXRlY2hub2xvZ3kuY29tLmF1&h3=cXVhbnR1bXJsdi5hY2NvdW50Lm15c2hvcGlmeS5jb20&hmac=a1a9b4b5642b6cc11aa37320b61ea5402043da8ffc0ffa2da2d0e912f96924c3 HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quantumrlv.com.au/online/login.php
DNT: 1
Connection: keep-alive
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: font/woff2
content-length: 18784
cf-ray: 7f763e7c0cb42e09-ARN
cf-cache-status: DYNAMIC
accept-ranges: bytes
access-control-allow-origin: *
age: 1820815
cache-control: max-age=2629800, immutable
last-modified: Thu, 20 Jul 2023 00:33:33 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/helvetica/helvetica_n7.39bee04bd277a9c4e94e2fd42d53f4e3c0afb8a5.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fUC%2BB3G7xhB5HP%2FBPPBRm6JsMpPSttdfXKYwHOUADV7PhldAHOgXtH3Wl2O2zhsm9cPHDwC2wTBJBVUAPlR5s9D6wn7SloIRG2zDrCMhAcRtbYBomAT8%2BQXp7%2F1mUnBQvspirGnXbZpTx4BsUoe3"}],"group":"cf-nel","max_age":604800}
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-central1
x-request-id: 0078d6d2-6058-47e3-a35a-6356eec45f05
x-xss-protection: 1; mode=block
server-timing: imagery;dur=32.959, imageryFetch;dur=32.590, cfRequestDuration;dur=9.999990, cfRequestDuration;dur=16.999960, cfRequestDuration;dur=26.000023
server: cloudflare

www.quantumrlv.com.au/cdn/fonts/helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2?h1=cXVhbnR1bXJsdi5jb20uYXU&h2=cXVhbnR1bXRlY2hub2xvZ3kuY29tLmF1&h3=cXVhbnR1bXJsdi5hY2NvdW50Lm15c2hvcGlmeS5jb20&hmac=00b0043698f2ab43a5bc975abbe641d8019ca62a1782bf25d73dc5ca6b8928c9

23.227.38.74

200 OK

19 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/fonts/helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2?h1=cXVhbnR1bXJsdi5jb20uYXU&h2=cXVhbnR1bXRlY2hub2xvZ3kuY29tLmF1&h3=cXVhbnR1bXJsdi5hY2NvdW50Lm15c2hvcGlmeS5jb20&hmac=00b0043698f2ab43a5bc975abbe641d8019ca62a1782bf25d73dc5ca6b8928c9
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19252, version 1.0\012- data
Size
19 kB (19252 bytes)
Hash
3081ae959e35d7dfa394138443e9095e
fe093fe9ca22a15354813c912484945a36b79146
de60693f31597c2ec2c1bd972d15900b6bb7be2bcc19db7b71bd171469b7dbe0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/fonts/helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2?h1=cXVhbnR1bXJsdi5jb20uYXU&h2=cXVhbnR1bXRlY2hub2xvZ3kuY29tLmF1&h3=cXVhbnR1bXJsdi5hY2NvdW50Lm15c2hvcGlmeS5jb20&hmac=00b0043698f2ab43a5bc975abbe641d8019ca62a1782bf25d73dc5ca6b8928c9 HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quantumrlv.com.au/online/login.php
DNT: 1
Connection: keep-alive
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: font/woff2
content-length: 19252
cf-ray: 7f763e7c0cb62e09-ARN
cf-cache-status: DYNAMIC
accept-ranges: bytes
access-control-allow-origin: *
age: 1820804
cache-control: max-age=2629800, immutable
last-modified: Fri, 09 Jun 2023 17:56:21 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/helvetica/helvetica_n4.fe093fe9ca22a15354813c912484945a36b79146.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X5I5SFutYvbzZIiHTce150K68o8AZU7UfgU3QDmA%2FqItTY%2FuiX7bnJ6sP9nCDWWP71dgDHyQO8Z1LUwy8Htd14eVwhSQdOjmLdz%2BdzVzUJJDyGmi%2FHGxoxz8WnWVPKqndZGhIbxIpR80AHNaz0Ot"}],"group":"cf-nel","max_age":604800}
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-central1
x-request-id: 605aae1e-7dd0-4cdc-80f0-d4606fdef47f
x-xss-protection: 1; mode=block
server-timing: imagery;dur=219.603, imageryFetch;dur=25.553, cfRequestDuration;dur=8.999825, cfRequestDuration;dur=18.999815, cfRequestDuration;dur=28.000116
server: cloudflare

www.quantumrlv.com.au/cdn/shop/files/QT_LOGO_CMYK_R_300x300.png?v=1614314794

23.227.38.74

200 OK

6.7 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/shop/files/QT_LOGO_CMYK_R_300x300.png?v=1614314794
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
ISO Media, AVIF Image\012- data
Size
6.7 kB (6717 bytes)
Hash
3d1c51f782e488dc27d08483f09867ac
8a5b90e6fa9adcb909bae829c71a9b66e9e22977
b577250def02bb08442f0985ae82ff2171753d20d847544ddd9e1592ef1d0bb9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/shop/files/QT_LOGO_CMYK_R_300x300.png?v=1614314794 HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: image/avif
content-length: 6717
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
source-length: 43743
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 26d927b1-e7c0-458b-a28d-416443494da1
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
x-download-options: noopen
x-permitted-cross-domain-policies: none
last-modified: Sun, 13 Aug 2023 10:11:33 GMT
cf-cache-status: HIT
age: 226040
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WzanfGlxeqOMbALQ7V%2FxHvzlyly2pgmnjSLjc9aaTPY3xpoFrZLdFiRqwVityV%2Bo2nMDspPoSiVy9WhAokVSrA5zfNwgM%2BF4QQVLoVKS1t9nYEctsl5bvlZYOHW1lMbs9oZvI7oBDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=8.000135
server: cloudflare
cf-ray: 7f763e7c3ccc2e09-ARN
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
28 kB (27501 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 27501
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64942b1e-6b6d"
last-modified: Thu, 22 Jun 2023 11:06:06 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3663
expires: Mon, 05 Aug 2024 02:28:28 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a01nj21jgcdrBo145Ib9fUkM5Toi44uiTggr7T0peAj3Y0tV6agqgghlnHghkfFr2AG0nznDaa2PWs6YL%2FtPwOdGgOi2WL4hpT3hLqCZ4%2BiqDrRLRSE9%2Fa5aJUNY9mWKmA9KK3op"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7f763e7d2b1cb51e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5cec62b431bac49ef4a8dc87d54cf919
4625304ca5021dd92637f8c9a511e1b94259a8e4
f4fd88f0018fed7e26ed694d44ddf2484056c289b054b7963fd43a0275d53562

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Aug 2023 02:28:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5cec62b431bac49ef4a8dc87d54cf919
4625304ca5021dd92637f8c9a511e1b94259a8e4
f4fd88f0018fed7e26ed694d44ddf2484056c289b054b7963fd43a0275d53562

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Aug 2023 02:28:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=AW-360414638

142.250.74.40

200 OK

73 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=AW-360414638
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (2662)
Size
73 kB (72682 bytes)
Hash
8fde9a0c1191fb1b350ad626e8900b05
0cb4c706a697b1a5dc213c2e5dbb2d238a7433ba
bc6030f8dad4e7755fd9af0641c1626d455074a79676ada0226490c045462804

HTTP Headers

GET /gtag/js?id=AW-360414638 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Aug 2023 02:28:28 GMT
expires: Wed, 16 Aug 2023 02:28:28 GMT
cache-control: private, max-age=900
last-modified: Wed, 16 Aug 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72682
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-734458949

142.250.74.40

200 OK

71 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=AW-734458949
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (2662)
Size
71 kB (70796 bytes)
Hash
e2ab100ef7c28ed6d86d7d70ad23a181
09a1b11f4f6d469d1b9d2ece7be0f503dacda121
afc360e89830ed007e87df5b267e978e228ac67e4845e703362704ab5592bf1f

HTTP Headers

GET /gtag/js?id=AW-734458949 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Aug 2023 02:28:28 GMT
expires: Wed, 16 Aug 2023 02:28:28 GMT
cache-control: private, max-age=900
last-modified: Wed, 16 Aug 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70796
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

143.204.48.16

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
143.204.48.16:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
c2d2b759249417eaf724e40801e1bb98
e7317fad166f5c8b095b7f9ce79f23601201f9aa
4777f0e548e295339ca27758289475c3655396f7dd2c90b03b6ed04a9302b68e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 16 Aug 2023 02:28:28 GMT
Last-Modified: Wed, 16 Aug 2023 01:46:00 GMT
Server: ECAcc (ska/F6E1)
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LT7Yi6zLghihbuanN46ibtJO4O3t7Dql4S2QaOSuDra2DGDQerRMcQ==
Age: 2548

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5cec62b431bac49ef4a8dc87d54cf919
4625304ca5021dd92637f8c9a511e1b94259a8e4
f4fd88f0018fed7e26ed694d44ddf2484056c289b054b7963fd43a0275d53562

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Aug 2023 02:28:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.browsealoud.com/version.json

143.204.55.103

200 OK

31 B

URL GET HTTP/2
www.browsealoud.com/version.json
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subjectwww.browsealoud.com
Fingerprint41:0E:DB:C1:48:55:38:40:3D:FE:85:FC:4F:E7:74:DF:47:25:F9:FA
ValidityFri, 17 Feb 2023 00:00:00 GMT - Mon, 11 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
31 B (31 bytes)
Hash
7c8671ec618a45206b2889ac4dd0ed01
4ac7ec2379f71b6cdcebbff5f60ca67c0eace125
3b409d93680c146c1cadbb21cb1e0003abc2ffc8c06805c37b14222a23dc9579

HTTP Headers

GET /version.json HTTP/1.1
Host: www.browsealoud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json
content-length: 31
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Thu, 10 Aug 2023 11:02:21 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 15 Aug 2023 16:36:27 GMT
etag: "7c8671ec618a45206b2889ac4dd0ed01"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DOHMlsebYP4rQK-gg6rA_QmRf2DFMVqvJzaFqyK9NcANXgbvZ1e5cA==
age: 35522
X-Firefox-Spdy: h2

staticxx.s3.amazonaws.com/aio_stats_lib_v1.min.js?v=1.0

52.216.132.107

200 OK

0 B

URL GET HTTP/1.1
staticxx.s3.amazonaws.com/aio_stats_lib_v1.min.js?v=1.0
IP
52.216.132.107:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subject*.s3.amazonaws.com
Fingerprint21:97:5B:A2:18:BA:6E:D4:B9:F5:C2:8F:5C:EF:01:F0:FC:54:A9:4F
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Dec 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /aio_stats_lib_v1.min.js?v=1.0 HTTP/1.1
Host: staticxx.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: zTeQ6TOzKHaFr7sf9OGjIWXo0T02WDzSk2UPqFOcOqZzSviwkZKZPk4jgzA0maZrkrO3mPKzVi0=
x-amz-request-id: HS8V2HKSE810WH4Z
Date: Wed, 16 Aug 2023 02:28:29 GMT
Last-Modified: Fri, 22 May 2020 07:20:51 GMT
ETag: "d41d8cd98f00b204e9800998ecf8427e"
Cache-Control: max-age=31536000
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 0

www.googletagmanager.com/gtag/js?id=AW-734458949&l=dataLayer&cx=c

142.250.74.40

200 OK

71 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=AW-734458949&l=dataLayer&cx=c
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (2662)
Size
71 kB (70821 bytes)
Hash
ea910bc281462871f3402a087db5d6c2
ade3eb4783b9f29959687be1277a5430844dc4b1
f252b88945896ae94837f0dfa2326aec5f70dc3c136fb54c2ce2cea91df297f1

HTTP Headers

GET /gtag/js?id=AW-734458949&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Aug 2023 02:28:28 GMT
expires: Wed, 16 Aug 2023 02:28:28 GMT
cache-control: private, max-age=900
last-modified: Wed, 16 Aug 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70821
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.quantumrlv.com.au/wpm@b13c7215wdd28e49cpfc97f3d0m364e80e8/web-pixel-shopify-app-pixel@0559/sandbox/worker.modern.js

23.227.38.74

200 OK

36 kB

URL GET HTTP/3
www.quantumrlv.com.au/wpm@b13c7215wdd28e49cpfc97f3d0m364e80e8/web-pixel-shopify-app-pixel@0559/sandbox/worker.modern.js
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
Unicode text, UTF-8 text, with very long lines (39269)
Size
36 kB (36334 bytes)
Hash
0ea29948ea1d6084784a7bae5e861cc3
b6eab342367beb313cf56260fac64e336032e91f
b1f9c8d166fcf105594b57a01b88d8a1252090f271b12749fa51c9f450556498

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wpm@b13c7215wdd28e49cpfc97f3d0m364e80e8/web-pixel-shopify-app-pixel@0559/sandbox/worker.modern.js HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/javascript; charset=utf-8
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
x-storefront-renderer-rendered: 1
x-shopify-granular-consent-beta: 1
cache-control: max-age=31536000, public
x-robots-tag: noindex, nofollow
etag: W/"cacheable:2c404b41ab1e37ae65a384c323d8997a"
x-cache: miss
x-frame-options: SAMEORIGIN
content-security-policy: block-all-mixed-content; frame-ancestors 'self'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 51416989864
x-shardid: 167
vary: Accept, Accept-Encoding
content-language: en
powered-by: Shopify
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: dcd351db-2633-4a17-ab71-57a4c5f10c6a
x-content-type-options: nosniff
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
cf-cache-status: HIT
age: 88226
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jsvps1QG6Kv4sznFVK9qWZ7D70EfPH36Todmlpyz5fN1sV%2FNHaqCTaeRF%2B%2F%2FMhk8rlznNWsIfrsofSvRnyRN3fAWdv5HCceZusfpN4DY%2F2f8Cq4STSHTHMwSJnCqoVeWy1K6OFEptQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=13, db;dur=4, asn;desc="12695", edge;desc="ARN", country;desc="RU", servedBy;desc="zgdj", requestID;desc="dcd351db-2633-4a17-ab71-57a4c5f10c6a", cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 7f763e800dc72e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.quantumrlv.com.au/cdn/shop/files/favicon_32x32.png?v=1614314794

23.227.38.74

200 OK

1.7 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/shop/files/favicon_32x32.png?v=1614314794
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
1.7 kB (1670 bytes)
Hash
b2de1b94f52b27a5734ffdbf9a736f96
414487ae01dcbdc4336e5435b6b0c8d7f4196605
e7e672c5fdfcc4ff1b21b65e9ed8869c965ffaeaaa8bc3a0c9e64040e6c93952

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/shop/files/favicon_32x32.png?v=1614314794 HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:29 GMT
content-type: image/webp
content-length: 1670
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
source-length: 14161
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 4edf176d-d4b2-4435-9177-43d0254db8e2
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
x-download-options: noopen
x-permitted-cross-domain-policies: none
last-modified: Sat, 12 Aug 2023 23:53:08 GMT
cf-cache-status: HIT
age: 226040
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aori2mJB90hVaoL9tSBLBUh0mIV%2FfYRkLuvoQY2dEHXNJLoYBau1NizwCs5Vhr4DFgzRlhR8n4VdZdYM9FprsfhWBW2YXXYksoL3ccdjdPP84ohz%2B4jmXm2ZUJWfIFEibp7OJUOLMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=8.999825
server: cloudflare
cf-ray: 7f763e81ee422e09-ARN
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c0cd8bc88704cab01d56a7e7f7c830fa
82478af9121cfcbe1eeed4bed603fa02193e05b8
abf44838baba94f8b51991aec6e3892e5d0139abdb84a33ad85ed961977933ef

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Aug 2023 02:28:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.quantumrlv.com.au/cdn/shop/t/1/assets/theme.js?v=136441056019758165691605910238

23.227.38.74

200 OK

42 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/shop/t/1/assets/theme.js?v=136441056019758165691605910238
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
ASCII text, with very long lines (44569)
Size
42 kB (42183 bytes)
Hash
27674eee092a401f98e3ef9a3880ad19
52727c211a1bf2d3ea2be7d58a4ce83cd15aed4c
85aa52271725715810f4194f83eaa1652f95f80be63755cc8ad69f9f7a78c377

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/shop/t/1/assets/theme.js?v=136441056019758165691605910238 HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/javascript
vary: Accept-Encoding, Accept-Encoding
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0514/1698/9864/t/1/assets/theme.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 065629ac-99d7-493a-ae18-f06b10ce0c33
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
x-download-options: noopen
x-permitted-cross-domain-policies: none
last-modified: Fri, 11 Aug 2023 23:14:26 GMT
cf-cache-status: HIT
age: 226040
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JqHH%2FzErJNPoMft372XHjYMZBA2nTo%2Bv4sp2T4ojZTLeClD5HdKBYeP45cks6ky4o%2FkiPAy%2B6jvISthTyATxfK1LLseDfW4kqYNPuV2UAYb%2BQezCDOA6dmRRNIwvz8Loes2jjLpeog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 7f763e7c0cb82e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.quantumrlv.com.au/cdn/shop/t/1/assets/openpay-trustlogo-amber-black.svg?2777

23.227.38.74

404 Not Found

1.9 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/shop/t/1/assets/openpay-trustlogo-amber-black.svg?2777
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1195)
Size
1.9 kB (1897 bytes)
Hash
d1a09e668098145f1db53ebb896653e9
b62a96d94c26e6df5f8ece0b6d08ac332cf9d310
7cedaf11ec6d02f656855e0aa488b05d6ea853becaffe3b75aaa4acfa87705ce

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/shop/t/1/assets/openpay-trustlogo-amber-black.svg?2777 HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
access-control-allow-origin: *
cache-control: public, max-age=30
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 4f283028-8a94-4b1b-bb50-faf5c86b6523
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
x-download-options: noopen
x-permitted-cross-domain-policies: none
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ul206Coo52WXJe8oU%2B6qP805cjr2Kq%2FD%2FHTkClNardO6U%2FDbif1ShhSrSMiyYKwNopWz6F9Hsr2bduWR1aHLhMS75bhvt3MfVKCCQrPEHg%2FBJQ3yLQBUM0wHGNH%2FE92kDXS4XJU%2BiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=177.999973
server: cloudflare
cf-ray: 7f763e7c3ccd2e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/shop_events_listener-65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f.js

23.227.38.74

200 OK

4.3 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/shop_events_listener-65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f.js
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
ASCII text, with very long lines (8318), with no line terminators
Size
4.3 kB (4316 bytes)
Hash
6b8069ce486b54ede24b5fc50520a1be
d9c70c45b0857585ce94b03b9bf5e819412830c7
65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/shopifycloud/shopify/assets/shop_events_listener-65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f.js HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/javascript
x-sorting-hat-podid: -1
x-storefront-renderer-rendered: 1
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shop_events_listener-65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 8b28a431-8303-41ef-b334-57b6ba70f103
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
x-download-options: noopen
x-permitted-cross-domain-policies: none
last-modified: Wed, 12 Apr 2023 16:30:59 GMT
cf-cache-status: HIT
age: 5548588
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j%2Fqi17BQE9WtDFoPat0bMI3C%2BPzw8648aLUg3twx2VaRTiTlt91Ga%2FdD8j7O6yiDd3mZFkoZ6cD05zcGMysmQpW%2FUQauofVOwVOpz5Szqb67LRVqrAArWwGGVQH%2BCuL7uJotVn85OQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 7f763e802dce2e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.google.com/pagead/1p-conversion/360414638/?random=1692152903455&cv=11&fst=1692152903455&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4

216.58.207.228

302 Found

63 B

URL GET HTTP/2
www.google.com/pagead/1p-conversion/360414638/?random=1692152903455&cv=11&fst=1692152903455&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint6C:9C:65:0F:F8:D3:FF:6B:3D:3E:E7:7D:B8:12:A5:03:E0:2F:09:4C
ValidityMon, 17 Jul 2023 08:22:07 GMT - Mon, 09 Oct 2023 08:22:06 GMT

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
ad8b6f08655797587cdec719a94efe59
182adf5a140796f81e930649d05654dbf22fd5b7
77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6

HTTP Headers

GET /pagead/1p-conversion/360414638/?random=1692152903455&cv=11&fst=1692152903455&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 16 Aug 2023 02:28:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/360414638/?random=1692152903455&cv=11&fst=1692152903455&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shop.app/pay/session?v=1&token=44a6f7ba-e484-472e-942b-592643dcc26f&shop_id=51416989864

23.227.38.33

200 OK

18 B

URL GET HTTP/2
shop.app/pay/session?v=1&token=44a6f7ba-e484-472e-942b-592643dcc26f&shop_id=51416989864
IP
23.227.38.33:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectshop.app
FingerprintD0:74:2D:D1:CE:48:03:87:27:A2:62:63:5F:69:E6:AC:3D:60:C2:78
ValidityTue, 25 Jul 2023 08:40:18 GMT - Mon, 23 Oct 2023 08:40:17 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
18 B (18 bytes)
Hash
c07fe8d0c031632d49b937f7b64cc318
b50ff5d4241ed1d437505098707c289683f62acf
9b5179ea2a77fe69b294fbd2ed504eacbfbe048ede58967b43af2ca537144b1f

HTTP Headers

GET /pay/session?v=1&token=44a6f7ba-e484-472e-942b-592643dcc26f&shop_id=51416989864 HTTP/1.1
Host: shop.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quantumrlv.com.au/
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 16 Aug 2023 02:28:29 GMT
content-type: application/json; charset=utf-8
content-length: 18
x-sorting-hat-podid: -1
access-control-allow-origin: https://www.quantumrlv.com.au
access-control-allow-methods: GET, OPTIONS
access-control-expose-headers: 
access-control-max-age: 7200
access-control-allow-credentials: true
p3p: CP="Not used"
x-robots-tag: noindex
etag: W/"9b5179ea2a77fe69b294fbd2ed504eac"
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'none'; font-src 'self' https: data: https://cdn.shopify.com https://cdn.shopifycloud.com; child-src blob: merchant-feedback.shopify.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: cdnjs.cloudflare.com v.shopify.com https://cdn.shopify.com https://cdn.shopifycloud.com https://www.google-analytics.com https://mpsnare.iesnare.com https://cdn1-sandbox.affirm.com https://checkout.shopifycs.com/dist/card_fields.js https://www.google.com https://www.gstatic.com https://hcaptcha.com https://*.hcaptcha.com https://*.googleapis.com; style-src 'self' 'unsafe-inline' blob: cdn.shopify.com sdks.shopifycdn.com https://cdn.shopify.com https://cdn.shopifycloud.com https://hcaptcha.com https://*.hcaptcha.com https://*.googleapis.com; media-src 'self' blob: data: cdn.shopify.com; img-src 'self' data: blob: https: cdn.shopify.com proxy.shopifycdn.com sdks.shopifycdn.com shopify-arrive.s3.amazonaws.com storage.googleapis.com v.shopify.com; connect-src 'self' https: https://cdn.shopify.com https://cdn.shopifycloud.com https://sessions.bugsnag.com https://notify.bugsnag.com https://monorail-edge.shopifysvc.com https://www.google-analytics.com https://stats.g.doubleclick.net https://atlas.shopifysvc.com https://hcaptcha.com https://*.hcaptcha.com; object-src 'none'; upgrade-insecure-requests; frame-src 'self' https://app.mode.com https://www.youtube.com https://app.datadoghq.com https://*.shopifycs.com https://pay.shopify.com https://checkout.shopifycs.com https://www.affirm.com https://sandbox.affirm.com https://cdn1-sandbox.affirm.com https://www.google.com https://recaptcha.google.com https://hcaptcha.com https://*.hcaptcha.com; frame-ancestors admin.shopify.com https: *.myshopify.com admin.shopify.com
set-cookie: _pay_session=Et0tlii%2FDlUzVbpShpU6lsagMrx3A5AA1MMj9mfutu1VYPV%2FAm6erHLnNOnJfM7uBKkH64wToeBQQQXGNPLUzzriuG9oVsUkl%2FyMoJKwqpzP9Na1yCv7%2B13oLiwCRryhqo%2FYOwEKwhBKIyZb759FJE7y0UZuiLZXQOgOLtYayXxZ1UL%2F8%2FZm0BsijIhV%2FoeXf6o5kQ%3D%3D--5zff52ruJ8nXCZGb--lJusauG4Jb8%2FvXULbOUbsg%3D%3D; path=/; HttpOnly; secure
x-request-id: d032535e-a683-433c-884a-37dea518c52d
x-runtime: 0.007336
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept, Origin, Accept-Encoding
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-dc: gcp-us-east1,gcp-us-east1
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yosuiGQ15V2%2BNvz74tGuqD20h5noPPsk5n9hzYIgkiHlOqFaGwLt1BqnQckmXB2vm0tLHThP1eWM8znVVib2MU67A0tF16wt1M6ltACsgNV41GffOl9O%2Fktq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=198.999882
server: cloudflare
cf-ray: 7f763e81293e98f1-ARN
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.google.com/pagead/1p-conversion/360414638/?random=1692152903465&cv=11&fst=1692152903465&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4

216.58.207.228

302 Found

63 B

URL GET HTTP/2
www.google.com/pagead/1p-conversion/360414638/?random=1692152903465&cv=11&fst=1692152903465&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint6C:9C:65:0F:F8:D3:FF:6B:3D:3E:E7:7D:B8:12:A5:03:E0:2F:09:4C
ValidityMon, 17 Jul 2023 08:22:07 GMT - Mon, 09 Oct 2023 08:22:06 GMT

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
ad8b6f08655797587cdec719a94efe59
182adf5a140796f81e930649d05654dbf22fd5b7
77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6

HTTP Headers

GET /pagead/1p-conversion/360414638/?random=1692152903465&cv=11&fst=1692152903465&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 16 Aug 2023 02:28:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/360414638/?random=1692152903465&cv=11&fst=1692152903465&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
24b167b364d24336abf63b0f2102a528
8f76705926a857e25a47a102bf4d90c2f896ddac
6779d23d8cfa5f6599b33907f4c3f8f4070d779046fa4483b66e7ce95e4144d4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Aug 2023 02:28:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7ca1622b0e6321611deb03945d4f926f
5e7b2ae7f2d8d9c1f1b88ff19aadf8b7403ff4e7
c8d225c420ae16ecad2065c490b743c530aa70f3369e87c78f51952d145ed3e4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Aug 2023 02:28:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.quantumrlv.com.au/cdn/shop/t/1/assets/lazysizes.js?v=63098554868324070131605910236

23.227.38.74

200 OK

9.1 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/shop/t/1/assets/lazysizes.js?v=63098554868324070131605910236
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
ASCII text, with very long lines (24487)
Size
9.1 kB (9057 bytes)
Hash
4a0b8fb6a4aa25f577e90c6aaa9a7730
d44cebc6c49acc6da97b478753160134f976e84b
0144e436301fd80581f56fdc684d9bf519fd67edb263286a0d20a06ae877f2bd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/shop/t/1/assets/lazysizes.js?v=63098554868324070131605910236 HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/javascript
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0514/1698/9864/t/1/assets/lazysizes.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 7855400f-9282-4277-bda2-cdb6fea97b75
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
x-download-options: noopen
x-permitted-cross-domain-policies: none
last-modified: Mon, 26 Jun 2023 17:27:48 GMT
cf-cache-status: HIT
age: 465119
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9%2F6Vrx9ux%2B3F6IOg2UjesNGaWLvo%2BsvP%2B0boSoaFStS%2BDog564mVAhuHiWl7Pr79rW8A1tsHKqCNM%2BYyd6ySYCGiY3mTsB0vxyfSwPsdnSyu5wtvMJ5I2nHrS1USR9bTtzigesbEuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 7f763e7c0cba2e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-3TPLQVT3XT

142.250.74.40

200 OK

78 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-3TPLQVT3XT
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (5857)
Size
78 kB (78157 bytes)
Hash
1c87cf7dba8993200b535fa979d989f0
d5544e446078051eb9f40482a3cad0879d58472b
cb299d77590b63a9e30fe49a0887ba39b7ab3e781b4f85afd0069b421190745b

HTTP Headers

GET /gtag/js?id=G-3TPLQVT3XT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Aug 2023 02:28:29 GMT
expires: Wed, 16 Aug 2023 02:28:29 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78157
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-3TPLQVT3XT&l=dataLayer&cx=c

142.250.74.40

200 OK

78 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-3TPLQVT3XT&l=dataLayer&cx=c
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (5857)
Size
78 kB (78183 bytes)
Hash
c5653c43d9047af4ab15ea9a223ef489
b3ceffdd1ee82c4859158c87252ef0590d3695cd
90e68c72cecd3ce6ddb29e60c4b93891717b00f830a6db865cff1bdee2f943b3

HTTP Headers

GET /gtag/js?id=G-3TPLQVT3XT&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Aug 2023 02:28:29 GMT
expires: Wed, 16 Aug 2023 02:28:29 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78183
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.quantumrlv.com.au/cdn/shop/files/QT_LOGO_CMYK_R_360x.png?v=1614314794

23.227.38.74

200 OK

7.5 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/shop/files/QT_LOGO_CMYK_R_360x.png?v=1614314794
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
ISO Media, AVIF Image\012- data
Size
7.5 kB (7478 bytes)
Hash
ea6b7100a94d06b9bd0bbf505c4f3440
189de853ea686469bd4ca25da4b7d131669501a8
cd4b65367d3c19974af9bc56e805e62e013445a62b39239aeec796dca619c77e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/shop/files/QT_LOGO_CMYK_R_360x.png?v=1614314794 HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903; _shopify_sa_t=2023-08-16T02%3A28%3A24.101Z; _shopify_sa_p=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:29 GMT
content-type: image/avif
content-length: 7478
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
source-length: 43743
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 1a5a5ed0-b6f2-4e29-892f-69de024551b7
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
x-download-options: noopen
x-permitted-cross-domain-policies: none
last-modified: Mon, 26 Jun 2023 17:29:19 GMT
cf-cache-status: HIT
age: 226040
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YN67ObAn6tKWni%2FOub%2BHr9IYncaZgjVUthUJaNDpabvY7jqVxkaqzngO0ZSynXTiPvHa1sxpVHeG4E1FqDWgt%2Fe13ULpenTYGRlJIl6mQwAopvmb%2FpR3vo5pjBTdsB93JSm4ge41RA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=16.999960
server: cloudflare
cf-ray: 7f763e838ea92e09-ARN
alt-svc: h3=":443"; ma=86400

www.quantumrlv.com.au/.well-known/shopify/monorail/unstable/produce_batch

23.227.38.74

200 OK

0 B

URL POST HTTP/3
www.quantumrlv.com.au/.well-known/shopify/monorail/unstable/produce_batch
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /.well-known/shopify/monorail/unstable/produce_batch HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 889
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903; _shopify_sa_t=2023-08-16T02%3A28%3A24.101Z; _shopify_sa_p=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:29 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.quantumrlv.com.au
access-control-max-age: 86400
x-request-id: 165ef00c-9e61-4fa6-9379-beb7d7f6394b
x-robots-tag: noindex
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1S3QRsx7hGc0OLnRkljO4eLelR9zLhRXxbS4i2rHyVtQpxSMpg0hjLJRoETaxYsOhgW%2F0IrBl%2FW9oJkGwnsER9RwtE1H%2Bsl6%2BnK36CTK%2Fj2mhNDrwvQWPj8YFyZIQ%2B5BxnbVg6ATZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=134.999990
server: cloudflare
cf-ray: 7f763e834e922e09-ARN

www.quantumrlv.com.au/.well-known/shopify/monorail/unstable/produce_batch

23.227.38.74

200 OK

0 B

URL POST HTTP/3
www.quantumrlv.com.au/.well-known/shopify/monorail/unstable/produce_batch
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /.well-known/shopify/monorail/unstable/produce_batch HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1015
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903; _shopify_sa_t=2023-08-16T02%3A28%3A24.101Z; _shopify_sa_p=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:29 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.quantumrlv.com.au
access-control-max-age: 86400
x-request-id: df0fb16a-aa42-4681-ac4b-d127fa087758
x-robots-tag: noindex
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U9UBpxKMa%2FEb8ybrw5XBtjJ0nGaE0gNski6pE%2Fird7tAgAuOR2XkWzbxpgL5Z%2BxkBT%2FGyWU9ofZGbFE58v71u%2BGZXe9vuplSTYH2Sa%2Fv7dKO0nZO06Qr1t5r8w4C%2FEwRqtXTarVFmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=134.000063
server: cloudflare
cf-ray: 7f763e836ea12e09-ARN

www.googletagmanager.com/gtag/destination?id=MC-BZCV507WSK&l=dataLayer&cx=c

142.250.74.40

200 OK

73 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/destination?id=MC-BZCV507WSK&l=dataLayer&cx=c
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (4289)
Size
73 kB (73322 bytes)
Hash
c45367e041f2a45e23ab09947fcf9ae6
755d50bf6e10054e8330c59283797329659e8741
641d1ff6b83ddf7b4dc8f6d92b9e5e3326351bc92e72b259b899eb24acedaac8

HTTP Headers

GET /gtag/destination?id=MC-BZCV507WSK&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Aug 2023 02:28:29 GMT
expires: Wed, 16 Aug 2023 02:28:29 GMT
cache-control: private, max-age=900
last-modified: Wed, 16 Aug 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73322
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.quantumrlv.com.au/.well-known/shopify/monorail/unstable/produce_batch

23.227.38.74

200 OK

0 B

URL POST HTTP/3
www.quantumrlv.com.au/.well-known/shopify/monorail/unstable/produce_batch
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /.well-known/shopify/monorail/unstable/produce_batch HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1561
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903; _shopify_sa_t=2023-08-16T02%3A28%3A24.101Z; _shopify_sa_p=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:29 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.quantumrlv.com.au
access-control-max-age: 86400
x-request-id: 2a3d8c86-b7c9-49e2-a71a-e37b5c65f4a0
x-robots-tag: noindex
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kvldhy1GBHX5uC2wFE8g0%2FigygTbHEVQ%2BD%2BUidvmmrDjLQL7WeIVbbx5LWVOef8twugwiiMjTKCrZ9OCqpTScToRxlk0a3W%2BXMi6%2Fl4XRmTadTSm1f%2B5IwmZUDbyKhJNoi%2FTYWJqtw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=134.999990
server: cloudflare
cf-ray: 7f763e838ea72e09-ARN

use.fontawesome.com/56c7b3252e.css

172.64.102.11

200 OK

26 kB

URL GET HTTP/3
use.fontawesome.com/56c7b3252e.css
IP
172.64.102.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
Fingerprint44:A2:80:0B:1D:01:55:DA:4F:BB:6B:A2:11:12:B1:BB:BD:07:AF:E9
ValidityTue, 04 Jul 2023 05:06:19 GMT - Mon, 02 Oct 2023 05:06:18 GMT

File type
ASCII text
Size
26 kB (25876 bytes)
Hash
321bec41cc12fc6aa1120904777501e6
6ab9a7caf553b9ec8ce54ba1ec4e6cffd4af0c52
ff080f1c4d3b17065a0cc431813b6638eb1b0acee193d11270b4237cf64979b9

HTTP Headers

GET /56c7b3252e.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:29 GMT
content-type: text/css
x-amz-id-2: 5bQcpuqclX+Pw5hqzVCXnLrb37beizlPUKhzLAgkWlQXZCRiZcUf0iog6yjg1Tr1LgGivvdp3Ko=
x-amz-request-id: Y0XMQ89KY1ZXBPH0
last-modified: Wed, 30 Jun 2021 19:30:11 GMT
etag: W/"321bec41cc12fc6aa1120904777501e6"
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iy8EO5wB2Z%2FFmZLsDbvOyJFNPklda6SOkAHmqmpsU4Gnrd7i2YtFU9yyYqF3rA%2FSCglUSIjNjy1IXjnuve2Xo2ABgoV2Atv5vkl2HALqISCQPWrtyBLZbcCEVMru9wKPMXwFYifu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7f763e82eb1471f2-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.google.com/pagead/1p-conversion/734458949/?random=1692152904119&cv=11&fst=1692152904119&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2F404&label=bK2HCK3pqYUDEMXom94C&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&hn=www.google.com&frm=0&gtm_ee=1&auid=1287916827.1692152903&data=event%3Dpage_view%3Bpage_path%3D%2Fonline%2Flogin.php&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4

216.58.207.228

302 Found

63 B

URL GET HTTP/3
www.google.com/pagead/1p-conversion/734458949/?random=1692152904119&cv=11&fst=1692152904119&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2F404&label=bK2HCK3pqYUDEMXom94C&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&hn=www.google.com&frm=0&gtm_ee=1&auid=1287916827.1692152903&data=event%3Dpage_view%3Bpage_path%3D%2Fonline%2Flogin.php&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint22:D6:3F:7A:CA:1E:3B:04:40:02:A1:AF:49:B4:02:8E:8D:0E:F9:43
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
ad8b6f08655797587cdec719a94efe59
182adf5a140796f81e930649d05654dbf22fd5b7
77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6

HTTP Headers

GET /pagead/1p-conversion/734458949/?random=1692152904119&cv=11&fst=1692152904119&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2F404&label=bK2HCK3pqYUDEMXom94C&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&hn=www.google.com&frm=0&gtm_ee=1&auid=1287916827.1692152903&data=event%3Dpage_view%3Bpage_path%3D%2Fonline%2Flogin.php&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 16 Aug 2023 02:28:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/734458949/?random=1692152904119&cv=11&fst=1692152904119&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2F404&label=bK2HCK3pqYUDEMXom94C&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&hn=www.google.com&frm=0&gtm_ee=1&auid=1287916827.1692152903&data=event%3Dpage_view%3Bpage_path%3D%2Fonline%2Flogin.php&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/pagead/1p-conversion/360414638/?random=1692152904093&cv=11&fst=1692152904093&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4

216.58.207.228

302 Found

63 B

URL GET HTTP/3
www.google.com/pagead/1p-conversion/360414638/?random=1692152904093&cv=11&fst=1692152904093&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint22:D6:3F:7A:CA:1E:3B:04:40:02:A1:AF:49:B4:02:8E:8D:0E:F9:43
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
ad8b6f08655797587cdec719a94efe59
182adf5a140796f81e930649d05654dbf22fd5b7
77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6

HTTP Headers

GET /pagead/1p-conversion/360414638/?random=1692152904093&cv=11&fst=1692152904093&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 16 Aug 2023 02:28:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/360414638/?random=1692152904093&cv=11&fst=1692152904093&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11a316a7ea41c350932acf3dadc3d411
42a48a7991478c0e99c2fa3ed3ef91bbeb368199
7153d2e32670db243b78fe35bc5e9677e4757e93c706187e60c9d828ddeeda7f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Aug 2023 02:28:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.browsealoud.com/plus/scripts/3.1.0/ba.js

143.204.55.103

200 OK

1.9 kB

URL GET HTTP/2
www.browsealoud.com/plus/scripts/3.1.0/ba.js
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subjectwww.browsealoud.com
Fingerprint41:0E:DB:C1:48:55:38:40:3D:FE:85:FC:4F:E7:74:DF:47:25:F9:FA
ValidityFri, 17 Feb 2023 00:00:00 GMT - Mon, 11 Dec 2023 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
1.9 kB (1949 bytes)
Hash
27099ea681f23a9470bb3bce9ec35f86
be53cde99e176c0d78803dbe16fc853a14ed3396
e7a1d8431c55ec4c889dd614e0793db11c6b3518d6005b463e7632387cf59917

HTTP Headers

GET /plus/scripts/3.1.0/ba.js HTTP/1.1
Host: www.browsealoud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/x-javascript
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Mon, 20 Jul 2020 14:39:38 GMT
server: AmazonS3
content-encoding: gzip
date: Tue, 15 Aug 2023 05:50:40 GMT
etag: W/"460515c3c9cd589beb8dcaeb3de2f6f2"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g5cZXwUY7txzcE98BzpXopaGJh02JmNb2ADzfSMPYEFzir13qXMrmg==
age: 74269
X-Firefox-Spdy: h2

www.google.no/pagead/1p-conversion/360414638/?random=1692152903465&cv=11&fst=1692152903465&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y

142.250.74.163

200 OK

63 B

URL GET HTTP/2
www.google.no/pagead/1p-conversion/360414638/?random=1692152903465&cv=11&fst=1692152903465&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint66:D7:85:14:BE:B3:48:CB:04:D4:D3:11:EA:43:1C:60:C2:2D:5E:85
ValidityMon, 17 Jul 2023 08:23:35 GMT - Mon, 09 Oct 2023 08:23:34 GMT

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
ad8b6f08655797587cdec719a94efe59
182adf5a140796f81e930649d05654dbf22fd5b7
77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6

HTTP Headers

GET /pagead/1p-conversion/360414638/?random=1692152903465&cv=11&fst=1692152903465&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quantumrlv.com.au/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 16 Aug 2023 02:28:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.no/pagead/1p-conversion/360414638/?random=1692152903455&cv=11&fst=1692152903455&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y

142.250.74.163

200 OK

63 B

URL GET HTTP/2
www.google.no/pagead/1p-conversion/360414638/?random=1692152903455&cv=11&fst=1692152903455&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint66:D7:85:14:BE:B3:48:CB:04:D4:D3:11:EA:43:1C:60:C2:2D:5E:85
ValidityMon, 17 Jul 2023 08:23:35 GMT - Mon, 09 Oct 2023 08:23:34 GMT

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
ad8b6f08655797587cdec719a94efe59
182adf5a140796f81e930649d05654dbf22fd5b7
77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6

HTTP Headers

GET /pagead/1p-conversion/360414638/?random=1692152903455&cv=11&fst=1692152903455&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quantumrlv.com.au/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 16 Aug 2023 02:28:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11a316a7ea41c350932acf3dadc3d411
42a48a7991478c0e99c2fa3ed3ef91bbeb368199
7153d2e32670db243b78fe35bc5e9677e4757e93c706187e60c9d828ddeeda7f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Aug 2023 02:28:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0f104e3a6712c10b1c2b3e0aceae17d5
fa0c68e50c6c7b4347f2ea406bb9cb87a0ff28b6
5bf2d38e557050658fc1d144c002101c73d729153c24468d6f2cdf6868fc3974

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Aug 2023 02:28:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

use.fontawesome.com/releases/v4.7.0/fonts/fontawesome-webfont.woff2

172.64.102.11

200 OK

77 kB

URL GET HTTP/3
use.fontawesome.com/releases/v4.7.0/fonts/fontawesome-webfont.woff2
IP
172.64.102.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
Fingerprint44:A2:80:0B:1D:01:55:DA:4F:BB:6B:A2:11:12:B1:BB:BD:07:AF:E9
ValidityTue, 04 Jul 2023 05:06:19 GMT - Mon, 02 Oct 2023 05:06:18 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /releases/v4.7.0/fonts/fontawesome-webfont.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:29 GMT
content-type: application/font-woff2
content-length: 77160
x-amz-id-2: G71yVIx1oKDmi9+XE+y4F//9YKP9HPkT5ipCks8wyvioMUaXfZCbBgYq3eanU5MN5PXGjQPKkmM=
x-amz-request-id: N28JQEQEPT93J4P6
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:26:48 GMT
etag: "af7ae505a9eed503f8b8e6982036873e"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 302281
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t%2B4aQfpR1uz%2B1K9t00oPaFYtfGYkk0tueeV3lhd0I9L%2BnOo48Tgx0kK2K6WsVxViS8tGerhj%2BZvKoo5fvXuElheE1LA9KP15sDl2eR4W2mTGYru7A1H%2FrwfiAZFu9K7DCclA7avK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7f763e851c2471f2-LHR
alt-svc: h3=":443"; ma=86400

www.merchant-center-analytics.goog/mc/collect?v=2&tid=MC-BZCV507WSK&gtm=45ve3890&_p=1371011277&cid=720249409.1692152904&ul=en-us&sr=1280x1024&_s=1&dp=%2Fonline%2Flogin.php&dt=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&dl=https%3A%2F%2Fwww.quantumrlv.com.au%2F404&sid=1692152904&sct=1&seg=0&en=page_view&_fv=1&_ss=1&_ee=1

142.250.74.110

204 No Content

0 B

URL POST HTTP/2
www.merchant-center-analytics.goog/mc/collect?v=2&tid=MC-BZCV507WSK&gtm=45ve3890&_p=1371011277&cid=720249409.1692152904&ul=en-us&sr=1280x1024&_s=1&dp=%2Fonline%2Flogin.php&dt=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&dl=https%3A%2F%2Fwww.quantumrlv.com.au%2F404&sid=1692152904&sct=1&seg=0&en=page_view&_fv=1&_ss=1&_ee=1
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmerchant-center-analytics.goog
Fingerprint36:0F:C0:32:B4:D3:69:47:C4:E8:AF:04:B6:3B:8A:C9:E6:5F:E8:34
ValidityMon, 17 Jul 2023 08:16:21 GMT - Mon, 09 Oct 2023 08:16:20 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /mc/collect?v=2&tid=MC-BZCV507WSK&gtm=45ve3890&_p=1371011277&cid=720249409.1692152904&ul=en-us&sr=1280x1024&_s=1&dp=%2Fonline%2Flogin.php&dt=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&dl=https%3A%2F%2Fwww.quantumrlv.com.au%2F404&sid=1692152904&sct=1&seg=0&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1
Host: www.merchant-center-analytics.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.quantumrlv.com.au
date: Wed, 16 Aug 2023 02:28:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.quantumrlv.com.au/.well-known/shopify/monorail/unstable/produce_batch

23.227.38.74

200 OK

0 B

URL POST HTTP/3
www.quantumrlv.com.au/.well-known/shopify/monorail/unstable/produce_batch
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /.well-known/shopify/monorail/unstable/produce_batch HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2280
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903; _shopify_sa_t=2023-08-16T02%3A28%3A24.101Z; _shopify_sa_p=; _ga_3TPLQVT3XT=GS1.1.1692152904.1.0.1692152904.60.0.0; _ga=GA1.1.720249409.1692152904; _ga_BZCV507WSK=GS1.1.1692152904.1.0.1692152904.0.0.0; shopify_pay_redirect=pending
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:29 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.quantumrlv.com.au
access-control-max-age: 86400
x-request-id: 191d1108-ec5c-43ac-85c5-7b8092f1c8dd
x-robots-tag: noindex
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X3abLXUjCUxqcZlx%2FFHvuh7M0NPjhylcJcz8RgYczKJ%2BDrJcOS2HKT4eIDQiKzGb%2FeX7lZyxzDDEF0K9F0w34pciEfYRY1KdZleEqYX09HHf5O78MdTzvxQAw%2B3JgWBk75rWUcM5Xg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=138.000011
server: cloudflare
cf-ray: 7f763e85cf2d2e09-ARN

ocsp.r2m01.amazontrust.com/

143.204.48.16

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
143.204.48.16:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
28d99fd38a214fc98823bfbf50076a34
7f26d10b135485f881750d0f88d5a667155eaf19
5aec32479eedee27b7388c1565e6048a985ea0d5e5fa31959cd6087966727250

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Wed, 16 Aug 2023 02:28:29 GMT
Server: ECAcc (amb/6AB3)
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sq0Ejpzbb2uPtYC4eeciIiBnaL2y1RdDRhjn1RI4WOEZ2t5bFvNbUA==

plus.browsealoud.com/js/urlinfo/www.quantumrlv.com.au.js

143.204.55.63

200 OK

697 B

URL GET HTTP/2
plus.browsealoud.com/js/urlinfo/www.quantumrlv.com.au.js
IP
143.204.55.63:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subjectplus.browsealoud.com
FingerprintB7:96:FF:E9:0E:65:E3:11:04:77:6B:66:81:29:50:22:7B:14:ED:61
ValidityThu, 01 Jun 2023 00:00:00 GMT - Sat, 29 Jun 2024 23:59:59 GMT

File type
ASCII text, with very long lines (697), with no line terminators
Size
697 B (697 bytes)
Hash
ebb6fb94013573d7b44e3e7234f61194
ed7aab08ba0c67986bd3fe3a8696f84db6ede7e9
1b0e7626348e3c46032877fcf6410d06f4142ed62f168d48e00027d466821e38

HTTP Headers

GET /js/urlinfo/www.quantumrlv.com.au.js HTTP/1.1
Host: plus.browsealoud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 697
date: Tue, 15 Aug 2023 23:51:41 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD
access-control-max-age: 3000
last-modified: Thu, 23 Mar 2023 08:11:35 GMT
etag: "ebb6fb94013573d7b44e3e7234f61194"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: i7ilCHDu5omO5yoqf5EmrJnvG9zPvpAVaoCWJ8u_QxbXzyfYKJ4fYw==
age: 9409
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3TPLQVT3XT&cid=720249409.1692152904&gtm=45je3890&aip=1&z=1192921552

142.250.74.163

200 OK

42 B

URL GET HTTP/3
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3TPLQVT3XT&cid=720249409.1692152904&gtm=45je3890&aip=1&z=1192921552
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint66:D7:85:14:BE:B3:48:CB:04:D4:D3:11:EA:43:1C:60:C2:2D:5E:85
ValidityMon, 17 Jul 2023 08:23:35 GMT - Mon, 09 Oct 2023 08:23:34 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3TPLQVT3XT&cid=720249409.1692152904&gtm=45je3890&aip=1&z=1192921552 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 16 Aug 2023 02:28:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0f104e3a6712c10b1c2b3e0aceae17d5
fa0c68e50c6c7b4347f2ea406bb9cb87a0ff28b6
5bf2d38e557050658fc1d144c002101c73d729153c24468d6f2cdf6868fc3974

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Aug 2023 02:28:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.browsealoud.com/modules/3.9.1/sri.json

143.204.55.103

200 OK

478 B

URL GET HTTP/2
www.browsealoud.com/modules/3.9.1/sri.json
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subjectwww.browsealoud.com
Fingerprint41:0E:DB:C1:48:55:38:40:3D:FE:85:FC:4F:E7:74:DF:47:25:F9:FA
ValidityFri, 17 Feb 2023 00:00:00 GMT - Mon, 11 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (478), with no line terminators
Size
478 B (478 bytes)
Hash
8271f46a00d2d50f33e2d6ef8851fe0b
3bf9fd49ac1ff2cc676a049ccb7bbd57aaf8fe1c
3bc9df6598fb9b927c2f0e83f98c690318626a983ebf8b5213b7b3c417300ea8

HTTP Headers

GET /modules/3.9.1/sri.json HTTP/1.1
Host: www.browsealoud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json
content-length: 478
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Thu, 10 Aug 2023 07:24:32 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 15 Aug 2023 16:36:28 GMT
etag: "8271f46a00d2d50f33e2d6ef8851fe0b"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LFL9D-4q8_cOaBiKVD-Pbi6_EwYSNA9EGAxbTVPIQfa3BmpJoNZNPw==
age: 35523
X-Firefox-Spdy: h2

www.google.no/pagead/1p-conversion/734458949/?random=1692152904119&cv=11&fst=1692152904119&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2F404&label=bK2HCK3pqYUDEMXom94C&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&hn=www.google.com&frm=0&gtm_ee=1&auid=1287916827.1692152903&data=event%3Dpage_view%3Bpage_path%3D%2Fonline%2Flogin.php&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y

142.250.74.163

200 OK

63 B

URL GET HTTP/3
www.google.no/pagead/1p-conversion/734458949/?random=1692152904119&cv=11&fst=1692152904119&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2F404&label=bK2HCK3pqYUDEMXom94C&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&hn=www.google.com&frm=0&gtm_ee=1&auid=1287916827.1692152903&data=event%3Dpage_view%3Bpage_path%3D%2Fonline%2Flogin.php&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint66:D7:85:14:BE:B3:48:CB:04:D4:D3:11:EA:43:1C:60:C2:2D:5E:85
ValidityMon, 17 Jul 2023 08:23:35 GMT - Mon, 09 Oct 2023 08:23:34 GMT

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
ad8b6f08655797587cdec719a94efe59
182adf5a140796f81e930649d05654dbf22fd5b7
77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6

HTTP Headers

GET /pagead/1p-conversion/734458949/?random=1692152904119&cv=11&fst=1692152904119&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2F404&label=bK2HCK3pqYUDEMXom94C&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&hn=www.google.com&frm=0&gtm_ee=1&auid=1287916827.1692152903&data=event%3Dpage_view%3Bpage_path%3D%2Fonline%2Flogin.php&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quantumrlv.com.au/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 16 Aug 2023 02:28:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.no/pagead/1p-conversion/360414638/?random=1692152904093&cv=11&fst=1692152904093&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y

142.250.74.163

200 OK

63 B

URL GET HTTP/3
www.google.no/pagead/1p-conversion/360414638/?random=1692152904093&cv=11&fst=1692152904093&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint66:D7:85:14:BE:B3:48:CB:04:D4:D3:11:EA:43:1C:60:C2:2D:5E:85
ValidityMon, 17 Jul 2023 08:23:35 GMT - Mon, 09 Oct 2023 08:23:34 GMT

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
ad8b6f08655797587cdec719a94efe59
182adf5a140796f81e930649d05654dbf22fd5b7
77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6

HTTP Headers

GET /pagead/1p-conversion/360414638/?random=1692152904093&cv=11&fst=1692152904093&bg=ffffff&guid=ON&async=1&gtm=45be3890&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&label=bKmWCNKAhYUDEK777asB&hn=www.google.com&frm=0&tiba=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&auid=1287916827.1692152903&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quantumrlv.com.au/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 16 Aug 2023 02:28:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

region1.analytics.google.com/g/collect?v=2&tid=G-3TPLQVT3XT&gtm=45je3890&_p=1371011277&_gaz=1&cid=720249409.1692152904&ul=en-us&sr=1280x1024&_s=1&dp=%2Fonline%2Flogin.php&dt=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&dl=https%3A%2F%2Fwww.quantumrlv.com.au%2F404&sid=1692152904&sct=1&seg=0&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.32.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-3TPLQVT3XT&gtm=45je3890&_p=1371011277&_gaz=1&cid=720249409.1692152904&ul=en-us&sr=1280x1024&_s=1&dp=%2Fonline%2Flogin.php&dt=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&dl=https%3A%2F%2Fwww.quantumrlv.com.au%2F404&sid=1692152904&sct=1&seg=0&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-3TPLQVT3XT&gtm=45je3890&_p=1371011277&_gaz=1&cid=720249409.1692152904&ul=en-us&sr=1280x1024&_s=1&dp=%2Fonline%2Flogin.php&dt=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&dl=https%3A%2F%2Fwww.quantumrlv.com.au%2F404&sid=1692152904&sct=1&seg=0&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.quantumrlv.com.au
date: Wed, 16 Aug 2023 02:28:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

chimpstatic.com/mcjs-connected/js/users/5d0defce59b100ce55870400b/e9bf1f3ead5d28c50faa67213.js?shop=quantumrlv.myshopify.com

23.32.107.198

200 OK

3.8 kB

URL GET HTTP/1.1
chimpstatic.com/mcjs-connected/js/users/5d0defce59b100ce55870400b/e9bf1f3ead5d28c50faa67213.js?shop=quantumrlv.myshopify.com
IP
23.32.107.198:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerDigiCert Inc
Subjectwildcardsan.us15.list-manage.com
FingerprintBC:30:B2:9F:2F:A4:DF:B4:9F:C1:CC:A8:FD:DB:40:44:24:C3:79:6E
ValidityTue, 15 Nov 2022 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type
ASCII text
Size
3.8 kB (3843 bytes)
Hash
9db810b9b20eb3aa951a3aa37b221dbf
f8555de4e22cd4a202081fbfabff4346fa78635f
932bdc4c22755a8e867cc1dd8c24649a15dc6924fe8bb8bbfc58e2b8f25a99fe

HTTP Headers

GET /mcjs-connected/js/users/5d0defce59b100ce55870400b/e9bf1f3ead5d28c50faa67213.js?shop=quantumrlv.myshopify.com HTTP/1.1
Host: chimpstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: ixiMqQewUP+ZvHj9WFKGRH6y8ofqsno9MuV0hNzBRl1mcrVN/zYm+ZYr7ojpl1DNhJ+sJ+Zp/ko=
x-amz-request-id: TCMX0S4R0XTH8CZS
Last-Modified: Wed, 25 Nov 2020 05:48:28 GMT
ETag: "9db810b9b20eb3aa951a3aa37b221dbf"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
X-EdgeConnect-MidMile-RTT: 0, 15
X-EdgeConnect-Origin-MEX-Latency: 425, 132
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=625
Expires: Wed, 16 Aug 2023 02:38:55 GMT
Date: Wed, 16 Aug 2023 02:28:30 GMT
Content-Length: 3843
Connection: keep-alive

cdn.shopify.com/shopifycloud/checkout-web/assets/Information~Payment.baseline.en.e38e94a10255bd8dac2c.js

23.227.60.200

200 OK

5.3 kB

URL GET HTTP/3
cdn.shopify.com/shopifycloud/checkout-web/assets/Information~Payment.baseline.en.e38e94a10255bd8dac2c.js
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type
ASCII text, with very long lines (14938), with no line terminators
Size
5.3 kB (5324 bytes)
Hash
f75b46ccddad6617d31afaca351f30b6
f210436c5c840264ad2ab344618dfa04962dcf10
260a6a17d42bd22832da159566930ba2bc1e558792710e3dc3c387b71594dcd2

HTTP Headers

GET /shopifycloud/checkout-web/assets/Information~Payment.baseline.en.e38e94a10255bd8dac2c.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:30 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
link: <https://cdn.shopify.com/shopifycloud/checkout-web/assets/Information~Payment.baseline.en.e38e94a10255bd8dac2c.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: d92f18cb-58fc-4b9e-9095-07a713ba9085
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 13 Mar 2023 17:56:14 GMT
cf-cache-status: HIT
age: 13422731
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CQ3m%2FACL0iloI1hCvar%2BwbqRPBDjQv5a95lyrEy7kbuLF8vVDca8axH3%2F3QoATM6XM%2BHsl%2BO7PhRsCtAWCbIhJF%2Bd%2Fa4v7d9oH8peSs0MhWAUjCR6yFvS6voTP7yu1GtIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=2.017, imageryFetch;dur=1.849, cfRequestDuration;dur=8.000135
server: cloudflare
cf-ray: 7f763e8ad928b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ocsp.r2m01.amazontrust.com/

143.204.48.16

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
143.204.48.16:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
68ca6f81c1507cb710cfe99c39102dc8
d412c87351b69fd33ea103d3813472a4eefd34fe
ab8f0244721495be5b5d4694bcf1feacc81c40e36801e2fed92cde7da8601722

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 16 Aug 2023 02:28:30 GMT
Last-Modified: Wed, 16 Aug 2023 00:47:00 GMT
Server: ECAcc (ska/F749)
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: or6BKsyzLNqrx96zHpcE8owAl72mjRv8keOikzH7ZNI1h47JnLWgNw==
Age: 6090

www.quantumrlv.com.au/online/login.php?sid=h432leluvhvb6tkknmsc24bjr9

23.227.38.74

301 Moved Permanently

265 kB

URL User Request GET HTTP/2
www.quantumrlv.com.au/online/login.php?sid=h432leluvhvb6tkknmsc24bjr9
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
data
Size
265 kB (265065 bytes)
Hash
d9594b08bc32164fcaafbc2aa0b4aa7d
e2c223fd854dab5ad6f0a053e8d1a40842e2dcc3
694c3fa81162c2e117342e4b6d8bbbbf03d769ec5e38fc30c7b88a962c28c24c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /online/login.php?sid=h432leluvhvb6tkknmsc24bjr9 HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Wed, 16 Aug 2023 02:28:27 GMT
content-type: text/html; charset=utf-8
location: https://www.quantumrlv.com.au/online/login.php
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
x-storefront-renderer-rendered: 1
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 51416989864
x-shardid: 167
vary: Accept
powered-by: Shopify
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: e27424cd-3819-45c6-8df6-9db635a7fca0
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TjqOXoUzyCEgEfAxPdxMUUS15r1kyW3iCmCD02BAgYn7e7b9%2FCBX49b%2F8NQONMOlR4%2FzxtVTZRP%2BeY1YTZUj2s%2BoHXoMCedLyGgY6JLXsuyFfMPp9Gmmac87nqlluqcbV0VAhbPTkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=11, db;dur=3, asn;desc="50304", edge;desc="ARN", country;desc="NO", theme;desc="115844612264", pageType;desc="404", servedBy;desc="8kq9", requestID;desc="e27424cd-3819-45c6-8df6-9db635a7fca0", cfRequestDuration;dur=82.000017
server: cloudflare
cf-ray: 7f763e77290e2d87-ARN
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.quantumrlv.com.au/.well-known/shopify/monorail/v1/produce

23.227.38.74

200 OK

0 B

URL POST HTTP/3
www.quantumrlv.com.au/.well-known/shopify/monorail/v1/produce
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /.well-known/shopify/monorail/v1/produce HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 8687
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903; _shopify_sa_t=2023-08-16T02%3A28%3A24.101Z; _shopify_sa_p=; _ga_3TPLQVT3XT=GS1.1.1692152904.1.0.1692152904.60.0.0; _ga=GA1.1.720249409.1692152904; _ga_BZCV507WSK=GS1.1.1692152904.1.0.1692152904.0.0.0; shopify_pay_redirect=pending
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:31 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.quantumrlv.com.au
access-control-max-age: 86400
x-request-id: ee716acd-1117-4e72-b5d6-ff0745fae16e
x-robots-tag: noindex
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8zEAgMj50mrIOTrrIv7X7XlmIz6nHiTr9aIRNehy0vOGHFQUA3gvRoRMELc5LE9yhTKV90VhdjrUR5dnul2Ora%2B2RcYS8I4AiWvG2HKukefnD%2BEl%2BVgfbaYlWOXu%2F4wcnu6B3RsRYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=164.999962
server: cloudflare
cf-ray: 7f763e8ed9812e09-ARN

cdnjs.cloudflare.com/ajax/libs/jquery/3.5.0/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/jquery/3.5.0/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
28 kB (27964 bytes)
Hash
12108007906290015100837a6a61e9f4
1d6ae46f2ffa213dede37a521b011ec1cd8d1ad3
c4dccdd9ae25b64078e0c73f273de94f8894d5c99e4741645ece29aeefc9c5a4

HTTP Headers

GET /ajax/libs/jquery/3.5.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 27964
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15d95"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3532833
expires: Mon, 05 Aug 2024 02:28:31 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cZwTATDzmBmwYTJPFz6C6RlHDwb0Y1ENWyGV%2FuuC0m7iLcxud8VEcD3OLOa%2BO%2F%2FYRQEcMHuX4qrJUi%2FGOzfKfHQ631ImiVCTv35MoZjyUVs67Xh9wz7psnMtvWk2rMW41sOAVVyF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7f763e916e371c0e-OSL
alt-svc: h3=":443"; ma=86400

cdn.shopify.com/shopifycloud/checkout-web/assets/Information.baseline.en.3c067bc64a64a71ff5ad.js

23.227.60.200

200 OK

424 kB

URL GET HTTP/3
cdn.shopify.com/shopifycloud/checkout-web/assets/Information.baseline.en.3c067bc64a64a71ff5ad.js
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
424 kB (424309 bytes)
Hash
fc8c002eb97f78a487a9e809f500ab6a
e67fe54944b8fa16afb0b618395534f4ae90f122
cd6f5c58204a9985074f6e3b3c2c4dd90645c967b542edd71d68896156afb094

HTTP Headers

GET /shopifycloud/checkout-web/assets/Information.baseline.en.3c067bc64a64a71ff5ad.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:30 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
link: <https://cdn.shopify.com/shopifycloud/checkout-web/assets/Information.baseline.en.3c067bc64a64a71ff5ad.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: deda9f48-c085-4178-b7ce-5b8cf456daa7
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 13 Mar 2023 17:50:07 GMT
cf-cache-status: HIT
age: 3611
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QDFcuId4PRizAKQoe982w%2BrjuYUkfiyxmzzUzD6g4ZIcY82fY%2FiDK8xsRknMPJzvYhddcu42AV7Osxa03dZ9VOM39fxqOCgg42rEYAtuDQmRUUp8v9J%2B6F%2FmclcEc9s%2FRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=3.033, imageryFetch;dur=2.841, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 7f763e8b093fb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.gstatic.com/call-tracking/call-tracking_7.js

216.58.211.3

200 OK

56 kB

URL GET HTTP/3
www.gstatic.com/call-tracking/call-tracking_7.js
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintCC:0B:9E:F2:35:30:16:40:11:59:40:74:E5:04:3C:D5:D2:3C:30:70
ValidityMon, 17 Jul 2023 08:21:33 GMT - Mon, 09 Oct 2023 08:21:32 GMT

File type
ASCII text, with very long lines (2828)
Size
56 kB (55675 bytes)
Hash
8a8bf04aa59034f517341e59c31593cc
88d8249f054a46229b73bfcaed9ab347408de2bb
ff2fde453aa6220144126828a284d4cc227479f1fe83beef3a6b6a4504c7e4df

HTTP Headers

GET /call-tracking/call-tracking_7.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-telephony
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-telephony"
report-to: {"group":"ads-telephony","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-telephony"}]}
content-length: 18760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Aug 2023 11:02:30 GMT
expires: Sun, 11 Aug 2024 11:02:30 GMT
cache-control: public, max-age=31536000
age: 314759
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.browsealoud.com/modules/3.9.1/135.df46ca07f44d2220dd86.js

143.204.55.103

200 OK

276 kB

URL GET HTTP/2
www.browsealoud.com/modules/3.9.1/135.df46ca07f44d2220dd86.js
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subjectwww.browsealoud.com
Fingerprint41:0E:DB:C1:48:55:38:40:3D:FE:85:FC:4F:E7:74:DF:47:25:F9:FA
ValidityFri, 17 Feb 2023 00:00:00 GMT - Mon, 11 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (58694)
Size
276 kB (275574 bytes)
Hash
d7ef512d866c38b9dfb341efdc71182c
2f4874afe427ffb10f05722fea990498366ec280
d9ba2398951fadeea426a672381091fe4a60d505ad3e951e7fdc3fa8b3d7a99d

HTTP Headers

GET /modules/3.9.1/135.df46ca07f44d2220dd86.js HTTP/1.1
Host: www.browsealoud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Thu, 10 Aug 2023 07:23:55 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 15 Aug 2023 16:36:33 GMT
etag: W/"d7ef512d866c38b9dfb341efdc71182c"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LgvBf1M48LNBJ8Bj7QvGXQN_60fgr_4RlIQVDz_Hvr-kbKN5F3Wuyw==
age: 35518
X-Firefox-Spdy: h2

www.quantumrlv.com.au/cdn/shop/t/1/assets/theme.css?v=36191182278393453971606283116

23.227.38.74

200 OK

188 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/shop/t/1/assets/theme.css?v=36191182278393453971606283116
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type

Size
188 kB (188382 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/shop/t/1/assets/theme.css?v=36191182278393453971606283116 HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/css
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0514/1698/9864/t/1/assets/theme.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 2e7db943-6f14-4a24-a6ef-d75c8f118d66
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
x-download-options: noopen
x-permitted-cross-domain-policies: none
last-modified: Mon, 26 Jun 2023 17:27:49 GMT
cf-cache-status: HIT
age: 226040
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J1wbVp8wgHUcjPeNPXIG6oZJKvL5sSwnN8e%2BpdYCd%2FNrn85A8CxlJZ8Nep2EdCguXeXPAb7vCBV9pPeLEeUDfrcPvSMDOlZRcZpT990NyFM7rBn6ya2TL42%2FV1uaW4q4WW6wTJaZQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=8.999825
server: cloudflare
cf-ray: 7f763e7c0cb32e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.shopify.com/shopifycloud/checkout-web/assets/runtime.baseline.en.f8423b4aeafd3581e601.js

23.227.60.200

200 OK

9.8 kB

URL GET HTTP/3
cdn.shopify.com/shopifycloud/checkout-web/assets/runtime.baseline.en.f8423b4aeafd3581e601.js
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type
ASCII text, with very long lines (10315), with no line terminators
Size
9.8 kB (9799 bytes)
Hash
dc0ba1fcac351e2a2b6f10a2a58bd6a4
bc136b45e6bc14d554d3a90e28b200eb8b1b302b
e06478276a7a68a11e7edb39ad2b81206b14a267731a6771b5277fb4c702c38a

HTTP Headers

GET /shopifycloud/checkout-web/assets/runtime.baseline.en.f8423b4aeafd3581e601.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:30 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
link: <https://cdn.shopify.com/shopifycloud/checkout-web/assets/runtime.baseline.en.f8423b4aeafd3581e601.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: edb509ab-6a3b-43d1-8c34-c65f98d3b446
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 13 Mar 2023 17:33:09 GMT
cf-cache-status: HIT
age: 5591010
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NN4ZR0qFrc7f5TEIuiLNQ3O5v3R6Du2fdts%2Ffc5PHERwFaDdMorPW4JC6M2LX8DSuvIOR4u8Ui%2BLWH0%2BEo5ARS71PyvR8goq7pfIWka8fZ66vD6xLFuygo60JXV4nf%2FlyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=2.112, imageryFetch;dur=1.960, cfRequestDuration;dur=7.999897
server: cloudflare
cf-ray: 7f763e89686db50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.shopify.com/shopifycloud/checkout-web/assets/Information~Payment~ShopPay.baseline.en.9f248e42bf2a8151ea27.css

23.227.60.200

200 OK

3.0 kB

URL GET HTTP/3
cdn.shopify.com/shopifycloud/checkout-web/assets/Information~Payment~ShopPay.baseline.en.9f248e42bf2a8151ea27.css
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type
ASCII text, with very long lines (3021), with no line terminators
Size
3.0 kB (3021 bytes)
Hash
e9db1af62bfc41fcdb8e9ec901d6045b
4b1a02771dd7d648c7f851ae51729118fbb08f50
5ff4f7b87916afcf84a9cc2dcc6cf56e3388ec1b5bf4e5184731470adab0523e

HTTP Headers

GET /shopifycloud/checkout-web/assets/Information~Payment~ShopPay.baseline.en.9f248e42bf2a8151ea27.css HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:30 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
link: <https://cdn.shopify.com/shopifycloud/checkout-web/assets/Information~Payment~ShopPay.baseline.en.9f248e42bf2a8151ea27.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: d0a51c4d-bcf7-410f-9e7e-8336bb650826
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Mon, 13 Mar 2023 16:53:20 GMT
cf-cache-status: HIT
age: 13426507
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mk7Xm1ivzVwh86RXT%2BYRhm45ogBqYP1%2Bawg%2FMIqiLomxbiUWgWbusLmKOl9OZuFDxXU1tK6pnNFDQXp69yhtPdK8VMKHeJX73oqhzI2JM8z2MMc37%2BFbIzD%2FgwQ%2FcmRtTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=2.285, imageryFetch;dur=2.054, cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 7f763e8daab2b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.browsealoud.com/modules/3.9.1/155.df46ca07f44d2220dd86.js

143.204.55.103

200 OK

77 kB

URL GET HTTP/2
www.browsealoud.com/modules/3.9.1/155.df46ca07f44d2220dd86.js
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subjectwww.browsealoud.com
Fingerprint41:0E:DB:C1:48:55:38:40:3D:FE:85:FC:4F:E7:74:DF:47:25:F9:FA
ValidityFri, 17 Feb 2023 00:00:00 GMT - Mon, 11 Dec 2023 23:59:59 GMT

File type

Size
77 kB (77316 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /modules/3.9.1/155.df46ca07f44d2220dd86.js HTTP/1.1
Host: www.browsealoud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Thu, 10 Aug 2023 07:23:59 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 15 Aug 2023 18:44:15 GMT
etag: W/"2ec0de4b87b06b8f28efdf2ea534723c"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hmydLJ8kLjqNc4pDBVw3sRyllAfV_J-AqSc1GsaglrWz4m9xCOBbnA==
age: 27855
X-Firefox-Spdy: h2

www.quantumrlv.com.au/online/login.php

23.227.38.74

404 Not Found

163 kB

URL User Request GET HTTP/3
www.quantumrlv.com.au/online/login.php
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type

Size
163 kB (163357 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /online/login.php HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: keep_alive=904f54c9-c5ab-450b-87ec-806dd6de0b22; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 16 Aug 2023 02:28:27 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
x-storefront-renderer-rendered: 1
set-cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; path=/; expires=Wed, 16 Aug 2023 02:58:27 GMT; HttpOnly; SameSite=Lax
cart_currency=AUD; path=/; expires=Wed, 30 Aug 2023 02:28:27 GMT
_cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=quantumrlv.com.au; path=/; expires=Thu, 17 Aug 2023 02:28:27 GMT; SameSite=Lax
_y=44a6f7ba-e484-472e-942b-592643dcc26f; Expires=Thu, 15-Aug-24 02:28:27 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
_s=3f18f663-4a5c-430b-9a0e-e099faae8647; Expires=Wed, 16-Aug-23 02:58:27 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
_shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; Expires=Thu, 15-Aug-24 02:28:27 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
_shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; Expires=Wed, 16-Aug-23 02:58:27 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
etag: W/"cacheable:cb971ea44521eadd38e41923232be55f"
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-shopify-granular-consent-beta: 1
x-cache: hit, server
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 51416989864
x-shardid: 167
vary: Accept
content-language: en
powered-by: Shopify
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: ae97ac5b-d54b-4e93-895e-2e27d166e96e
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KJuIjZhLlUH6414eqSqvpekOZwh136E7tmOaJzeC%2FG0Pkt2k3sovTFwwVTsF%2FOByLCaXoji82HJcIYXiwIC4F7vZjJFYXiGRyDr2GRZ6bEnTNpgAReJh5tyn0ayWiitC6WG6wbUQog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=15, db;dur=5, asn;desc="50304", edge;desc="ARN", country;desc="NO", theme;desc="115844612264", pageType;desc="404", servedBy;desc="xwpp", requestID;desc="ae97ac5b-d54b-4e93-895e-2e27d166e96e", cfRequestDuration;dur=69.000006
server: cloudflare
cf-ray: 7f763e7a0c472e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js

23.227.38.74

200 OK

38 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
ASCII text, with very long lines (32755)
Size
38 kB (37632 bytes)
Hash
188e908791a38f8009be607ded10faeb
479a406ab01702ebd808e018930ee48b623ee447
87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/javascript
x-sorting-hat-podid: -1
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
timing-allow-origin: *
vary: Accept-Encoding
x-content-type-options: nosniff
x-request-id: acbfc23c-3838-4f8c-82f3-6a6b4b88e658
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
x-download-options: noopen
x-permitted-cross-domain-policies: none
last-modified: Tue, 08 Aug 2023 17:41:14 GMT
cf-cache-status: HIT
age: 636433
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EgnXxXwPzvvozEmo9mnG43d9KXh5L%2BcmcKk36oCh7Bfple3iY4DzpVfnaIyfKX1prhHG2biExVlsnU53xJMYwxqBYvYDeJ%2BRvsVyEWEp2LH7PBu%2FZWyQoOYQRGzcYgQ8IoM1EnqMuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 7f763e7c1cc32e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.browsealoud.com/modules/3.9.1/139.df46ca07f44d2220dd86.js

143.204.55.103

200 OK

103 kB

URL GET HTTP/2
www.browsealoud.com/modules/3.9.1/139.df46ca07f44d2220dd86.js
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subjectwww.browsealoud.com
Fingerprint41:0E:DB:C1:48:55:38:40:3D:FE:85:FC:4F:E7:74:DF:47:25:F9:FA
ValidityFri, 17 Feb 2023 00:00:00 GMT - Mon, 11 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
103 kB (103181 bytes)
Hash
87abc35c3644ed19f9edaaea5765271a
94ddc37bf0b325c94c2a6cb3f01ca30b4d7b0568
5d10a5610dd9af81f5ba8dac7dd12b8340f5081ff3485e4cac32841843f8e7c6

HTTP Headers

GET /modules/3.9.1/139.df46ca07f44d2220dd86.js HTTP/1.1
Host: www.browsealoud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Thu, 10 Aug 2023 07:23:56 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 15 Aug 2023 18:44:17 GMT
etag: W/"87abc35c3644ed19f9edaaea5765271a"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: II6DpVqeOnPYCC2p6RFJ5KzQbEgWzrRx6ffundWSSFU7YmAjbhHvaw==
age: 27854
X-Firefox-Spdy: h2

servicify-appointments.herokuapp.com/api/settings?storeUrl=quantumrlv.myshopify.com

54.243.129.215

200 OK

5.5 kB

URL GET HTTP/1.1
servicify-appointments.herokuapp.com/api/settings?storeUrl=quantumrlv.myshopify.com
IP
54.243.129.215:443
ASN
#14618 AMAZON-AES

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subject*.herokuapp.com
Fingerprint4C:55:4D:FA:EF:B6:8F:4B:A4:20:50:54:EA:57:18:36:89:66:F0:08
ValiditySun, 02 Apr 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT

File type
HTML document text\012- troff or preprocessor input, ASCII text, with very long lines (5792), with no line terminators
Size
5.5 kB (5498 bytes)
Hash
00dd4e4cf7082e5cfaea58b58d677a62
d7b4162b908566bf5b80b751b6d9d2d10bb75dc1
b99a5dd66983ee83114ba5a57d412cb26fa1e82ec9aae86db56992e7514d6085

HTTP Headers

GET /api/settings?storeUrl=quantumrlv.myshopify.com HTTP/1.1
Host: servicify-appointments.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Vary: Origin, Accept-Encoding
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Content-Encoding: gzip
Date: Wed, 16 Aug 2023 02:28:31 GMT
Transfer-Encoding: chunked
Via: 1.1 vegur

www.quantumrlv.com.au/wpm@b13c7215wdd28e49cpfc97f3d0m364e80e8/web-pixel-shopify-custom-pixel@0559/sandbox/modern/online/login.php

23.227.38.74

404 Not Found

0 B

URL GET HTTP/3
www.quantumrlv.com.au/wpm@b13c7215wdd28e49cpfc97f3d0m364e80e8/web-pixel-shopify-custom-pixel@0559/sandbox/modern/online/login.php
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wpm@b13c7215wdd28e49cpfc97f3d0m364e80e8/web-pixel-shopify-custom-pixel@0559/sandbox/modern/online/login.php HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 16 Aug 2023 02:28:29 GMT
content-type: text/plain; charset=utf-8
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
x-storefront-renderer-rendered: 1
x-shopify-granular-consent-beta: 1
set-cookie: cart_currency=AUD; path=/; expires=Wed, 30 Aug 2023 02:28:29 GMT; SameSite=Lax
etag: W/"cacheable:fedea6f4f582bad13cf5b907813db0d4"
x-cache: miss
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
access-control-allow-origin: *
strict-transport-security: max-age=7889238
x-shopid: 51416989864
x-shardid: 167
vary: Accept, Accept-Encoding
content-language: en
powered-by: Shopify
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: 81278015-471b-434c-9042-5186fa737473
x-xss-protection: 1; mode=block
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=93oTEnUWfMSVGE7W6W0MgdVfjpqNfd1jxasCcROXuXjRylyEHS%2FEvVrYxQDDF5ObmQ%2FLh6xJoewNzY43Y%2FioyZmf23ZSvz8k7VtnNva%2BybOFFrZN7bPp6thcvH79ERHwpkqQ1YgmsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=16, db;dur=6, asn;desc="50304", edge;desc="ARN", country;desc="NO", servedBy;desc="8kq9", requestID;desc="81278015-471b-434c-9042-5186fa737473", cfRequestDuration;dur=73.999882
server: cloudflare
cf-ray: 7f763e81ee412e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906

23.227.38.74

200 OK

50 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
ASCII text, with very long lines (32761)
Size
50 kB (50276 bytes)
Hash
f049b24dfb8d1422b5725cca57e35036
3177dd6e7e895bf38920d4cb665ce158096cd472
c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906 HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/javascript
x-sorting-hat-podid: -1
x-storefront-renderer-rendered: 1
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 8fa9028b-6f1f-4e7b-b78b-6f2ba5ef2f50
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
x-download-options: noopen
x-permitted-cross-domain-policies: none
last-modified: Wed, 12 Apr 2023 16:44:47 GMT
cf-cache-status: HIT
age: 10229040
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AGmWZAUA1gUsBKbvoBDETmVNd0Fm0XCAjitQ1Tim2eXLpsTNNZkxleuLLpxs9Qh4V1Z%2Ft%2BkDxFEHk%2BLNTPZNzuLVzTT4Zlzrx8Qg2ddM5DUEQsxvYEWpq4lZhNCh3FcTtGa4U4OHAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 7f763e7c1cc02e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.quantumrlv.com.au/cdn/fonts/helvetica/helvetica_o4.f9832a0fc1ee8fc5a359636e410d6941e1e4ca03.woff2?h1=cXVhbnR1bXJsdi5jb20uYXU&h2=cXVhbnR1bXRlY2hub2xvZ3kuY29tLmF1&h3=cXVhbnR1bXJsdi5hY2NvdW50Lm15c2hvcGlmeS5jb20&hmac=a4a5c98c7b24e96264b15bfddad1c68aba38c8f73f34816851d09ea19221dba2

23.227.38.74

200 OK

20 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/fonts/helvetica/helvetica_o4.f9832a0fc1ee8fc5a359636e410d6941e1e4ca03.woff2?h1=cXVhbnR1bXJsdi5jb20uYXU&h2=cXVhbnR1bXRlY2hub2xvZ3kuY29tLmF1&h3=cXVhbnR1bXJsdi5hY2NvdW50Lm15c2hvcGlmeS5jb20&hmac=a4a5c98c7b24e96264b15bfddad1c68aba38c8f73f34816851d09ea19221dba2
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20468, version 1.0\012- data
Size
20 kB (20468 bytes)
Hash
0db3f39099bc84f6562b0e3ab5253bd6
f9832a0fc1ee8fc5a359636e410d6941e1e4ca03
d8589996007b2539afd944b637a56b5ae05ac1c043002518530f2bc4f491584e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/fonts/helvetica/helvetica_o4.f9832a0fc1ee8fc5a359636e410d6941e1e4ca03.woff2?h1=cXVhbnR1bXJsdi5jb20uYXU&h2=cXVhbnR1bXRlY2hub2xvZ3kuY29tLmF1&h3=cXVhbnR1bXJsdi5hY2NvdW50Lm15c2hvcGlmeS5jb20&hmac=a4a5c98c7b24e96264b15bfddad1c68aba38c8f73f34816851d09ea19221dba2 HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: font/woff2
content-length: 20468
cf-ray: 7f763e805dd92e09-ARN
cf-cache-status: DYNAMIC
accept-ranges: bytes
access-control-allow-origin: *
age: 1820773
cache-control: max-age=2629800, immutable
last-modified: Thu, 20 Jul 2023 00:34:39 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/helvetica/helvetica_o4.f9832a0fc1ee8fc5a359636e410d6941e1e4ca03.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P%2FjdE6nGTx0O2V58e81kyUIQYcQgr7S6OrP7Va1G%2FwC5s55cXsJYL3sewxubpY1uQdPcXGIZGKco9PM8WWVSmFx3irbW6wTetXiX%2FNkOGad4WbXSVIT%2BcnIMiv0rjNYuaWuLcxKaiKJncc5so86X"}],"group":"cf-nel","max_age":604800}
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-central1
x-request-id: cae57dda-c7fa-40b9-bf75-e9c371313e9d
x-xss-protection: 1; mode=block
server-timing: imagery;dur=27.611, imageryFetch;dur=27.200, cfRequestDuration;dur=9.999990, cfRequestDuration;dur=16.000032, cfRequestDuration;dur=25.000095
server: cloudflare

www.quantumrlv.com.au/cdn/shop/t/1/assets/servicify-asset.js?v=9391740801321792721658300754

23.227.38.74

200 OK

5.7 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/shop/t/1/assets/servicify-asset.js?v=9391740801321792721658300754
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
ASCII text, with very long lines (5954), with no line terminators
Size
5.7 kB (5708 bytes)
Hash
ce843867ed6f755385810493e3c1b8fb
9818b024f44a1c1707b3dad969b713e54d4e19de
6339b9ad90ebb60d53f2cdcde637815fdbe22ddc8fa79283b4b7875875637254

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/shop/t/1/assets/servicify-asset.js?v=9391740801321792721658300754 HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/javascript
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0514/1698/9864/t/1/assets/servicify-asset.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 90cc48a1-65ed-4304-b91b-120ae5bea26c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
x-download-options: noopen
x-permitted-cross-domain-policies: none
last-modified: Mon, 26 Jun 2023 17:29:16 GMT
cf-cache-status: HIT
age: 226040
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cq9B88LNY%2F3F58ar9%2B6sxqWw879nS2%2BqQS%2BCNMtMpCfySul8Z3jgk8PhK%2FCcqn3iwKmt%2BAfclcYsvIM52s1vLMhstzEcsLLWdz%2Bk%2FRIVi8Y03HtVXf3YkFxlWFlKX85gxv65UNhS%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=7.999897
server: cloudflare
cf-ray: 7f763e7c1cc52e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

display.popt.in/APIRequest/shopify/get-price-rules/cefd457b73aff

172.64.175.6

200 OK

85 B

URL GET HTTP/2
display.popt.in/APIRequest/shopify/get-price-rules/cefd457b73aff
IP
172.64.175.6:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectpopt.in
Fingerprint75:BD:38:CB:63:72:63:01:87:4C:A9:22:E2:F8:DB:16:38:A7:5B:55
ValiditySat, 15 Jul 2023 08:21:34 GMT - Fri, 13 Oct 2023 08:21:33 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
85 B (85 bytes)
Hash
f56faf8d88dcb5af6273ba95536e1b8b
c9a895adc902011d642c15c87a50493273c5a09c
cee2c7f909c4ca55e55279d58c88ae6c6a18319ce8805fa273e74c15a3b722ae

HTTP Headers

GET /APIRequest/shopify/get-price-rules/cefd457b73aff HTTP/1.1
Host: display.popt.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 16 Aug 2023 02:28:32 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: Origin, Content-Type
content-security-policy: frame-ancestors https://bc.popt.in https://*.mybigcommerce.com https://*.jumpseller.com https://*.myshopline.com https://*.myshopify.com https://*.grisynava.com
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff, nosniff
cache-control: max-age=0, must-revalidate, no-store, nocache, private
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: XSRF-TOKEN=eyJpdiI6IkNoM09lenFYTU9YekJsUVY2dGRyUUE9PSIsInZhbHVlIjoiNUQ0OEs2OHp4WFNWV2hkM29rSDRIRHRPdU91XC9tVXZDUmR0WlJwSDBKZWt4ZEpmczIrZzV6Y1hcL3gxRGdqaXFHIiwibWFjIjoiYTIyZWU5YzAxNmUxYWY0NGI5YzM2Yjc4NmJhMzJiNGI1MTlhNTkzOTM4MTlmZmU5ODJlZDc3NWI0ZjYwYTg4MSJ9; expires=Wed, 16-Aug-2023 02:38:32 GMT; Max-Age=600; path=/
laravel_session=eyJpdiI6IkdqZ05sSEV1NGVcLzdWNXp6dXJwSG5BPT0iLCJ2YWx1ZSI6ImxQbUZSRDk2NmoyUGtWeXRWdU9mVU9kTUJwRzdiTStQanIyOGN4OE5cLzREZ3Zsd2ZvUHpsYVwvSVYzK3hIUWd2UyIsIm1hYyI6ImUxMTg0NjQ5NmY0MTI2ZTY2MzZjOTAzNTRkNWNjZWI2OWFkZTljMjAxM2VkNDAxNWIxZjIyMzllZjQ0YzFjYWQifQ%3D%3D; expires=Wed, 16-Aug-2023 02:38:32 GMT; Max-Age=600; path=/; httponly
ZvpzSMNgaqe8r6cVIC0yHKsUqsplEZZWjlzS8FeD=eyJpdiI6IlR5QWJKT05VMGd5QW5CaEFmY0luMFE9PSIsInZhbHVlIjoiNXIwQis3aUZjWmROSTB0eWFZcXJxUDNFTXR1V09PQ0F2dzJ0SHhBTTM2T1ZvR2s5WE5cL005MlZKbGh5cjFobFNYTVdpbTBPenREZVpjRW40aDd0N3hKdFJvWDNOSDA5KzN6OWxvdXZtNm9cL2FmMWEzZk82OVRxWWZOWUgzUWhCWnlKV1ljUnR1SEZtTEcxQUlPT1VxT0lWNVlLVU52TytcL1Z5SDFKS1dhWm9hdHk5OWU2MFlyNVpIVUFDd3NWSVI0NXowV2xTU1QrWHpoR1BcL3k2YWJnVldIbWhDNDJramMydFljNU9iN1VoU1RlZ25sN2ViZ1BaZ0dadDJ4cjNtblB3bVhtRFgzdXJcL1dYUnFUbk9HSkd3MzI3Vk1EYTZEd2EzTHZITjhUK1I3Rk5TRVBOdE5PdmlZb2xmQW1KNk9hUmlYQkJWVFp2eWZTNGVOODFYdUFwUFpETVVXcjBRQnR5am11eG54SjZCZ2JXT3Q2ZStyb21NMEJsRXdxd3VkcEQiLCJtYWMiOiI1YjVmMThlNGNmOTZkNjNlMzI5Nzk0ODM5ZmE0NTFmODU4Y2ExYmYzOTliMDVmMTc2ZjcxOGY3OTJhN2VkZjA4In0%3D; expires=Wed, 16-Aug-2023 02:38:32 GMT; Max-Age=600; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EMxwpDDo26B3JnxM4trCq%2FxUZPU9gsCy1JDcZ07u0gAc0VOjPVuwEyTSEQtl1EJ7%2FvlE4KAr6zw0v1VKZeaaOekry7OkG%2FMUj5kWzxo%2FBF6jAthLzTV%2FElrMWp4kmpwYFIU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7f763e931c6576db-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.shopify.com/shopifycloud/checkout-web/assets/vendors~app.baseline.en.954db6995929b6f1f646.css

23.227.60.200

200 OK

181 kB

URL GET HTTP/3
cdn.shopify.com/shopifycloud/checkout-web/assets/vendors~app.baseline.en.954db6995929b6f1f646.css
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
181 kB (180614 bytes)
Hash
fe06583cd554639f62077e8d4b1b1d3c
45f36ef2ddea64883141f10cb85f2f80fb401a03
3350eb724aef54c5f43168571dba7f93e074f9248a9ed1b8e8b6fc7a381e629e

HTTP Headers

GET /shopifycloud/checkout-web/assets/vendors~app.baseline.en.954db6995929b6f1f646.css HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:30 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
link: <https://cdn.shopify.com/shopifycloud/checkout-web/assets/vendors~app.baseline.en.954db6995929b6f1f646.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 63bb276f-496d-448e-9279-27a6752c28bf
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Mon, 13 Mar 2023 17:43:04 GMT
cf-cache-status: HIT
age: 13423525
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UMCY3uoxWqOQeTqOe5sBUnK0hltK%2FFIePSMhc2qGRXT3%2Bitb1I8TVPDpsADlyLZhnIm0H5%2FOv0SR60LsBjrrO%2BjBKclm%2Bv82g6k62K9Dvc5A0cFlCQwcXK9d96AaPo%2Bhnw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=5.770, imageryFetch;dur=5.452, cfRequestDuration;dur=8.999825
server: cloudflare
cf-ray: 7f763e8d4a78b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

servicify-appointments.herokuapp.com/public/frontend-v1.0.0.js?shop=quantumrlv.myshopify.com

54.243.129.215

200 OK

1.5 MB

URL GET HTTP/1.1
servicify-appointments.herokuapp.com/public/frontend-v1.0.0.js?shop=quantumrlv.myshopify.com
IP
54.243.129.215:443
ASN
#14618 AMAZON-AES

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subject*.herokuapp.com
Fingerprint4C:55:4D:FA:EF:B6:8F:4B:A4:20:50:54:EA:57:18:36:89:66:F0:08
ValiditySun, 02 Apr 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT

File type

Size
1.5 MB (1456144 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /public/frontend-v1.0.0.js?shop=quantumrlv.myshopify.com HTTP/1.1
Host: servicify-appointments.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Vary: Origin, Accept-Encoding
Last-Modified: Mon, 14 Aug 2023 14:22:35 GMT
Cache-Control: max-age=0
Content-Type: application/javascript; charset=utf-8
Content-Encoding: gzip
Date: Wed, 16 Aug 2023 02:28:30 GMT
Transfer-Encoding: chunked
Via: 1.1 vegur

www.quantumrlv.com.au/cart.js

23.227.38.74

200 OK

283 B

URL GET HTTP/3
www.quantumrlv.com.au/cart.js
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (313), with no line terminators
Size
283 B (283 bytes)
Hash
6504acd6fb663f01ce490278aa2edf38
274d3094f09efac63691c41a8c6796e9264ae5a2
453ffb1c4cac73e22138c69a89c2991a8f88189379b2cc58a6a7677670796668

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cart.js HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903; _shopify_sa_t=2023-08-16T02%3A28%3A24.101Z; _shopify_sa_p=; _ga_3TPLQVT3XT=GS1.1.1692152904.1.0.1692152904.60.0.0; _ga=GA1.1.720249409.1692152904; _ga_BZCV507WSK=GS1.1.1692152904.1.0.1692152904.0.0.0; shopify_pay_redirect=pending; poptin_old_user=true; poptin_user_id=0.fqkkwx5cx3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:31 GMT
content-type: text/javascript; charset=utf-8
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
x-storefront-renderer-rendered: 1
vary: Accept-Encoding, Accept
x-shopify-granular-consent-beta: 1
set-cookie: secure_customer_sig=; path=/; expires=Fri, 16 Aug 2024 02:28:31 GMT; secure; HttpOnly; SameSite=Lax
cart_currency=AUD; path=/; expires=Wed, 30 Aug 2023 02:28:31 GMT; SameSite=Lax
_y=44a6f7ba-e484-472e-942b-592643dcc26f; Expires=Thu, 15-Aug-24 02:28:31 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
_s=3f18f663-4a5c-430b-9a0e-e099faae8647; Expires=Wed, 16-Aug-23 02:58:31 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
_shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; Expires=Thu, 15-Aug-24 02:28:31 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
_shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; Expires=Wed, 16-Aug-23 02:58:31 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
x-cartjs-updatedat: 0
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 51416989864
x-shardid: 167
content-language: en
powered-by: Shopify
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: a3bf65c6-c2ea-4ba1-8d85-c15fccf355a8
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=chWuGCVSE%2FzH2fndN9VIMBpMGg%2BDNQBtFP3LXKq2dV6jEtygGyvM2Zt7JlgnUb5hnDxCd%2FOxXk9QIK5m2ipoWaBVdsy6djRkvxcd1l8dXdfNQ7epLQenLhBtQaF4cKO4ONno%2F47rxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=12, db;dur=3, asn;desc="50304", edge;desc="ARN", country;desc="NO", servedBy;desc="wvrm", requestID;desc="a3bf65c6-c2ea-4ba1-8d85-c15fccf355a8", cfRequestDuration;dur=78.999996
server: cloudflare
cf-ray: 7f763e91ba322e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.browsealoud.com/modules/3.9.1/12.df46ca07f44d2220dd86.js

143.204.55.103

200 OK

9.4 kB

URL GET HTTP/2
www.browsealoud.com/modules/3.9.1/12.df46ca07f44d2220dd86.js
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subjectwww.browsealoud.com
Fingerprint41:0E:DB:C1:48:55:38:40:3D:FE:85:FC:4F:E7:74:DF:47:25:F9:FA
ValidityFri, 17 Feb 2023 00:00:00 GMT - Mon, 11 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (9885), with no line terminators
Size
9.4 kB (9423 bytes)
Hash
71b1f91ac2ede16c27b3ae357a9056f0
d8d80b218be20d73ae3245bd51c322e59948d603
1ebf46410ee112b411c984885800602ddb3eee3ee71ecbe8a4a646242c4657d3

HTTP Headers

GET /modules/3.9.1/12.df46ca07f44d2220dd86.js HTTP/1.1
Host: www.browsealoud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 15 Aug 2023 20:21:18 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Thu, 10 Aug 2023 07:23:51 GMT
etag: W/"ed997112e7207e15f4f1e6c5a49739aa"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bxumXBdnibjieuar1aXIe5Z7Xgu243t95vJmWH2xM9wPq97UAcVA_A==
age: 22033
X-Firefox-Spdy: h2

www.quantumrlv.com.au/cart.js

23.227.38.74

200 OK

283 B

URL GET HTTP/3
www.quantumrlv.com.au/cart.js
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (313), with no line terminators
Size
283 B (283 bytes)
Hash
398e9196c2a3ca5d4fefb9a5a6d5f88c
5d197d93bc25b98fb15e5ba165ee2275fe764ccd
925a23d22c3bf627854422aa8542b216a25062ec37a7b7a15b3839c8196c0715

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cart.js HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903; _shopify_sa_t=2023-08-16T02%3A28%3A24.101Z; _shopify_sa_p=; _ga_3TPLQVT3XT=GS1.1.1692152904.1.0.1692152904.60.0.0; _ga=GA1.1.720249409.1692152904; _ga_BZCV507WSK=GS1.1.1692152904.1.0.1692152904.0.0.0; shopify_pay_redirect=pending; poptin_old_user=true; poptin_user_id=0.fqkkwx5cx3; secure_customer_sig=; poptin_previous_url=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:32 GMT
content-type: text/javascript; charset=utf-8
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
x-storefront-renderer-rendered: 1
vary: Accept-Encoding, Accept
x-shopify-granular-consent-beta: 1
set-cookie: secure_customer_sig=; path=/; expires=Fri, 16 Aug 2024 02:28:32 GMT; secure; HttpOnly; SameSite=Lax
cart_currency=AUD; path=/; expires=Wed, 30 Aug 2023 02:28:32 GMT; SameSite=Lax
_y=44a6f7ba-e484-472e-942b-592643dcc26f; Expires=Thu, 15-Aug-24 02:28:32 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
_s=3f18f663-4a5c-430b-9a0e-e099faae8647; Expires=Wed, 16-Aug-23 02:58:32 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
_shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; Expires=Thu, 15-Aug-24 02:28:32 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
_shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; Expires=Wed, 16-Aug-23 02:58:32 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
x-cartjs-updatedat: 0
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 51416989864
x-shardid: 167
content-language: en
powered-by: Shopify
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: 9720e7aa-b111-4357-b945-4aa500e65b57
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5x5yLX1NOVm1jPJAEX9nvUQEbOSZak4Xw1npoJz%2BB4rteSAsJ8m9qS0NhcvtqtPemPyaB1L6S9n8mlWc3BRifZkULMjYMw2Xj%2BDByfXTBdu%2BE07UMEq7wCOQV18LZ7rTdmMKWM%2FnNg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=13;desc="gc:1", db;dur=3, asn;desc="50304", edge;desc="ARN", country;desc="NO", servedBy;desc="wvrm", requestID;desc="9720e7aa-b111-4357-b945-4aa500e65b57", cfRequestDuration;dur=69.999933
server: cloudflare
cf-ray: 7f763e95bb8b2e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.shopify.com/shopifycloud/checkout-web/assets/checkout-web-ui~app.baseline.en.26a0342d355a675e2801.js

23.227.60.200

200 OK

372 kB

URL GET HTTP/3
cdn.shopify.com/shopifycloud/checkout-web/assets/checkout-web-ui~app.baseline.en.26a0342d355a675e2801.js
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type

Size
372 kB (371579 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /shopifycloud/checkout-web/assets/checkout-web-ui~app.baseline.en.26a0342d355a675e2801.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:30 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
link: <https://cdn.shopify.com/shopifycloud/checkout-web/assets/checkout-web-ui~app.baseline.en.26a0342d355a675e2801.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f06f77c7-62af-43ac-9219-141a2de647eb
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 13 Mar 2023 17:40:07 GMT
cf-cache-status: HIT
age: 3611
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x4QtIqB47lqlKqz2wsblSdoTpcu0al1U%2FuQQEwg2pQvCqj6pL6rc7i3fnGDK5SKFt8fFGFTiGrjQKiSuLsN4vAys%2BKAkDp%2BMbxMCPn9yBE78beZ1vKru9ZOcDgJV3mtnWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=4.941, imageryFetch;dur=4.745, cfRequestDuration;dur=7.999897
server: cloudflare
cf-ray: 7f763e8b5962b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

display.popt.in/APIRequest/cefd457b73aff?domain=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&referrer=&previous_url=&cookies=%20poptin_old_user%3Dtrue%20poptin_user_id%3D0.fqkkwx5cx3%20poptin_previous_url%3D%20poptin_new_user%3Dtrue%20poptin_viewed_session%3Dfalse%20&triggers=&cc=false&if_mobile=false&page_title=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&origin_landing_page=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&if_page_refreshed=false&poptin_viewed_url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&previous_visited_pages=&shopify_customer_id=0&cart_total_items=0&cart_total_price=0&cart_products_ids_list=&cart_products_org_ids_list=

172.64.175.6

200 OK

95 B

URL GET HTTP/2
display.popt.in/APIRequest/cefd457b73aff?domain=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&referrer=&previous_url=&cookies=%20poptin_old_user%3Dtrue%20poptin_user_id%3D0.fqkkwx5cx3%20poptin_previous_url%3D%20poptin_new_user%3Dtrue%20poptin_viewed_session%3Dfalse%20&triggers=&cc=false&if_mobile=false&page_title=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&origin_landing_page=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&if_page_refreshed=false&poptin_viewed_url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&previous_visited_pages=&shopify_customer_id=0&cart_total_items=0&cart_total_price=0&cart_products_ids_list=&cart_products_org_ids_list=
IP
172.64.175.6:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectpopt.in
Fingerprint75:BD:38:CB:63:72:63:01:87:4C:A9:22:E2:F8:DB:16:38:A7:5B:55
ValiditySat, 15 Jul 2023 08:21:34 GMT - Fri, 13 Oct 2023 08:21:33 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
95 B (95 bytes)
Hash
197730b652db900d7fcc43ae766d87ea
415b713a86cbc0cb4188624a57ebed1d2d94fe32
673e6d430ed372533db1c66e1b6c326d39c513fb98abd6a73df6eeddfb3e80e7

HTTP Headers

GET /APIRequest/cefd457b73aff?domain=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&referrer=&previous_url=&cookies=%20poptin_old_user%3Dtrue%20poptin_user_id%3D0.fqkkwx5cx3%20poptin_previous_url%3D%20poptin_new_user%3Dtrue%20poptin_viewed_session%3Dfalse%20&triggers=&cc=false&if_mobile=false&page_title=404%20Not%20Found%20%E2%80%93%20Quantum%20Reading%20Learning%20Vision&origin_landing_page=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&if_page_refreshed=false&poptin_viewed_url=https%3A%2F%2Fwww.quantumrlv.com.au%2Fonline%2Flogin.php&previous_visited_pages=&shopify_customer_id=0&cart_total_items=0&cart_total_price=0&cart_products_ids_list=&cart_products_org_ids_list= HTTP/1.1
Host: display.popt.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 16 Aug 2023 02:28:32 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: Origin, Content-Type
content-security-policy: frame-ancestors https://bc.popt.in https://*.mybigcommerce.com https://*.jumpseller.com https://*.myshopline.com https://*.myshopify.com https://*.grisynava.com
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff, nosniff
cache-control: max-age=0, must-revalidate, no-store, nocache, private
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: XSRF-TOKEN=eyJpdiI6ImNHKzZtS1wvOTdYZ0ZvUWU1NnQ1bW5nPT0iLCJ2YWx1ZSI6InlUTWRYN0VCczlkNXVHczVnQVRya0tWeTc2Um5xSHdPRnVHU0VnTllwWGxHWEdcLzB1NHZqVzdvREE5T3dIUHVXIiwibWFjIjoiOWYwZmY3ZmU4YTdhZmMzZDAyNzYzMDk1NzI4MTAwYzU1ZjE1OGY3YjAyOTAzY2Y1ZDNlNWJhODczNmUzNWM2YyJ9; expires=Wed, 16-Aug-2023 02:38:32 GMT; Max-Age=600; path=/
laravel_session=eyJpdiI6Ijk1c0lwNzExUzRDQ2RPakNhSFlaOGc9PSIsInZhbHVlIjoiSXR0MXB1OG5XNDVCRUxaNHBRN2JhZG5zenBoTXlrcWhyOU9KXC9mUlNmYXdZMENLRzFpV013WWtmcUUxM2ZicjYiLCJtYWMiOiI1OWQwOWRiZDY5NTJmMTgxZWMwM2FmYWM1Njk0MDI2ODI0NGY4YzIyMjdiYzE0ZTY1MjgzZDEyNjkyNTMzYmM4In0%3D; expires=Wed, 16-Aug-2023 02:38:32 GMT; Max-Age=600; path=/; httponly
Tp4m6SKiqsBcxWIS4WdcyQ5aubuPIOQBlVwhoOcg=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; expires=Wed, 16-Aug-2023 02:38:32 GMT; Max-Age=600; path=/; httponly
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LP17KduCkjgs2FazmvGVCPVnF1y4zM5trD9qNmwMGHnjThGLvfB0Hg9oqtJA0gbzTKVxH%2BtItNsfk1N4HmkgF9gO3Yj5dwPUFmen2QH7WHQkdnr3hY%2BQBB%2BaLa2yJ2cOUxo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7f763e965e2076db-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.browsealoud.com/modules/3.9.1/browsealoud.js

143.204.55.103

200 OK

59 kB

URL GET HTTP/2
www.browsealoud.com/modules/3.9.1/browsealoud.js
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subjectwww.browsealoud.com
Fingerprint41:0E:DB:C1:48:55:38:40:3D:FE:85:FC:4F:E7:74:DF:47:25:F9:FA
ValidityFri, 17 Feb 2023 00:00:00 GMT - Mon, 11 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (59363), with no line terminators
Size
59 kB (59363 bytes)
Hash
0f5d3262299be26f942483feee94b4c3
f31b775cd1ab7d51242b1e858e6c83b8f4095982
d97407ccb9fdc833377ff3394ca062d80e0141511dc255f140fc80407df7c236

HTTP Headers

GET /modules/3.9.1/browsealoud.js HTTP/1.1
Host: www.browsealoud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Thu, 10 Aug 2023 07:24:26 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 15 Aug 2023 16:36:29 GMT
etag: W/"0f5d3262299be26f942483feee94b4c3"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SRV29DCqazQRggwrI03Ai6bdNqw5U-Eq9DEgS4WE6H4lVpAUuuPfyA==
age: 35522
X-Firefox-Spdy: h2

www.browsealoud.com/modules/3.9.1/157.df46ca07f44d2220dd86.js

143.204.55.103

200 OK

22 kB

URL GET HTTP/2
www.browsealoud.com/modules/3.9.1/157.df46ca07f44d2220dd86.js
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subjectwww.browsealoud.com
Fingerprint41:0E:DB:C1:48:55:38:40:3D:FE:85:FC:4F:E7:74:DF:47:25:F9:FA
ValidityFri, 17 Feb 2023 00:00:00 GMT - Mon, 11 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (22413), with no line terminators
Size
22 kB (22413 bytes)
Hash
a56f08ae99a164b0bae08fd2b278d4a7
502739fe1900edd2f80e38bde455b46bb86cb3bd
9774e89ea3fd9d6a63faa6c7d52a8f6c1d654c530e4369a6d5631a6c05038ef8

HTTP Headers

GET /modules/3.9.1/157.df46ca07f44d2220dd86.js HTTP/1.1
Host: www.browsealoud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Thu, 10 Aug 2023 07:24:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 15 Aug 2023 18:44:16 GMT
etag: W/"a56f08ae99a164b0bae08fd2b278d4a7"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0zm6jT1Dv6AHWG6qUixzvRC9L-5lb0jhXhKhD3D1CTeoC-2NC9eifw==
age: 27855
X-Firefox-Spdy: h2

cdn.shopify.com/shopifycloud/checkout-web/assets/app.baseline.en.dd733f21b66b59afc26d.css

23.227.60.200

200 OK

9.0 kB

URL GET HTTP/3
cdn.shopify.com/shopifycloud/checkout-web/assets/app.baseline.en.dd733f21b66b59afc26d.css
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type
ASCII text, with very long lines (8980), with no line terminators
Size
9.0 kB (8976 bytes)
Hash
40cbce5e334cf13c1b3efe0619130b36
04d40abf6ec3a835307b5808476273504a15ef1b
6bc27f4207caa7286f310915dd7288137ca7050e452f3aa4ed3ffbf0200c6a54

HTTP Headers

GET /shopifycloud/checkout-web/assets/app.baseline.en.dd733f21b66b59afc26d.css HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:30 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
link: <https://cdn.shopify.com/shopifycloud/checkout-web/assets/app.baseline.en.dd733f21b66b59afc26d.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 4b82b285-ca91-4cf8-b888-20c1e123c424
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
last-modified: Mon, 13 Mar 2023 17:47:03 GMT
cf-cache-status: HIT
age: 13423287
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1BsvQzQWjc4fEEbD9BoKkqX0T6nKFPPVyAO3y6mVkZtkmYFy%2BGloYTcUQH3614FwTBQ1VGFB5dSA7t8C0QjFxODcmAv2%2F03vrVUuaT9jGASUQhRIl9BWKruArJeSLWeeRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=2.081, imageryFetch;dur=1.904, cfRequestDuration;dur=7.999897
server: cloudflare
cf-ray: 7f763e8d7aa2b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.shopify.com/shopifycloud/checkout-web/assets/Information.baseline.en.6d08f77e3a864d9cf367.css

23.227.60.200

200 OK

26 kB

URL GET HTTP/3
cdn.shopify.com/shopifycloud/checkout-web/assets/Information.baseline.en.6d08f77e3a864d9cf367.css
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type
ASCII text, with very long lines (25602), with no line terminators
Size
26 kB (25602 bytes)
Hash
b25d329a33b67482ea0f12a53e8e3934
1e3cc2462ccbbce2dfa7195f7ec0ddd035447cea
52bdcc3db9c50239c4c969bc5c34a2bd310355e6f43a384ea6cc18a480c56254

HTTP Headers

GET /shopifycloud/checkout-web/assets/Information.baseline.en.6d08f77e3a864d9cf367.css HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:31 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
link: <https://cdn.shopify.com/shopifycloud/checkout-web/assets/Information.baseline.en.6d08f77e3a864d9cf367.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 6f1d5ba9-c072-496b-91e0-fc910c76d3a3
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Mon, 13 Mar 2023 17:53:21 GMT
cf-cache-status: HIT
age: 13422909
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jRffVWDXH%2BqPs5TI7Ku2yPn3RLv%2FG8SDFmQTUO8SNNm5q%2FEykRSeAiPsGCBowNy%2F2%2FJXyAZ%2FDIedRzSy5fICPL4biKeHL9JsP%2BzHtwa%2BuGfNvLPX4akOZF2Jmgz8ZkzcrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=2.236, imageryFetch;dur=1.977, cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 7f763e8ddacab50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.gstatic.com/wcm/loader.js

216.58.211.3

200 OK

3.0 kB

URL GET HTTP/2
www.gstatic.com/wcm/loader.js
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintCC:0B:9E:F2:35:30:16:40:11:59:40:74:E5:04:3C:D5:D2:3C:30:70
ValidityMon, 17 Jul 2023 08:21:33 GMT - Mon, 09 Oct 2023 08:21:32 GMT

File type
ASCII text, with very long lines (3129), with no line terminators
Size
3.0 kB (3038 bytes)
Hash
0b4c49704af0e15367bdc74e09d287ba
593570e4029114655241f2bfbc2a3432fdecac46
c45a57e2eef8ace315138ffe8361d06ca5e5e9d6cbda4c42f999fe858ec93757

HTTP Headers

GET /wcm/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1339
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Aug 2023 02:25:29 GMT
expires: Wed, 16 Aug 2023 03:25:29 GMT
cache-control: public, max-age=3600
age: 180
last-modified: Mon, 15 Mar 2021 16:45:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v4.7.0/css/font-awesome-css.min.css

172.64.102.11

200 OK

30 kB

URL GET HTTP/3
use.fontawesome.com/releases/v4.7.0/css/font-awesome-css.min.css
IP
172.64.102.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
Fingerprint44:A2:80:0B:1D:01:55:DA:4F:BB:6B:A2:11:12:B1:BB:BD:07:AF:E9
ValidityTue, 04 Jul 2023 05:06:19 GMT - Mon, 02 Oct 2023 05:06:18 GMT

File type
ASCII text, with very long lines (30343)
Size
30 kB (30344 bytes)
Hash
36082410df2ef7f83932219089dc1443
7961402d7d01e19387fe609a38454b0bc8c6cca4
5b9573e1023da775390e9284ec0eb1c606df9b468a28980055b4a6aa804f4350

HTTP Headers

GET /releases/v4.7.0/css/font-awesome-css.min.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/56c7b3252e.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:29 GMT
content-type: text/css
x-amz-id-2: 5k9qOXcGQ5UpKANQ9mwCeJoL1xvZ4vz2bJZbgys8S4CP5W2YNnWHHIWjZ6BSKPA05JuZDUuZSyc=
x-amz-request-id: HK32HMM081QRCVZK
last-modified: Wed, 30 Jun 2021 15:26:48 GMT
etag: W/"36082410df2ef7f83932219089dc1443"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 461354
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BGDaD9CxX7PSIhD0pYwHqzbGjhCg%2B7hJDkGXKzKgpnCtUSNCdH2Y1pMeF2WWPvuNf8%2BVsKQwotrTIn3U61NZIWC2MepTeDuurqYxwQgby%2F%2Ff4hV5pEny3%2Bampu69SO1ORUq8ySu0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7f763e844bdc71f2-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.shopify.com/shopifycloud/checkout-web/assets/checkout-web-packages~Information~NoAddressLocation~Payment~PostPurchase~Review~Shipping~ShopPay~Sho~cf13f96e.baseline.en.8d3a709bcf8c04f77ed7.js

23.227.60.200

200 OK

1.7 kB

URL GET HTTP/3
cdn.shopify.com/shopifycloud/checkout-web/assets/checkout-web-packages~Information~NoAddressLocation~Payment~PostPurchase~Review~Shipping~ShopPay~Sho~cf13f96e.baseline.en.8d3a709bcf8c04f77ed7.js
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type
ASCII text, with very long lines (1716), with no line terminators
Size
1.7 kB (1659 bytes)
Hash
a17d43c375e3cd4325b96f2e3de8c062
6beb4bbc2ae8c04b30bf5b956b9bdf69fa3f2aa5
150eb018e9949c9c34a820c761c9e1f71c580ddd4b8eb744a5b4f500ac04486f

HTTP Headers

GET /shopifycloud/checkout-web/assets/checkout-web-packages~Information~NoAddressLocation~Payment~PostPurchase~Review~Shipping~ShopPay~Sho~cf13f96e.baseline.en.8d3a709bcf8c04f77ed7.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:30 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
link: <https://cdn.shopify.com/shopifycloud/checkout-web/assets/checkout-web-packages~Information~NoAddressLocation~Payment~PostPurchase~Review~Shipping~ShopPay~Sho~cf13f96e.baseline.en.8d3a709bcf8c04f77ed7.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: eb795be8-3dc8-4da9-bace-08e0452a4f8d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Mon, 13 Mar 2023 17:28:25 GMT
cf-cache-status: HIT
age: 13424402
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mh4XlWXWNc6eX6QXqRrqAZszWLFgzzPc9HUUkv3pwRRYm3ZDhSaztqsMgWvGydyxklwTjg8FuXijkOQFpnAeQjyhYtCxRiYd6VdxV6UNxlC33dqfCuy5RmdO%2Br2UEQCrag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=2.004, imageryFetch;dur=1.774, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 7f763e89d8a7b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.shopify.com/shopifycloud/checkout-web/assets/Information~Payment~ShopPay.baseline.en.935f71e1b5e37b1a673d.js

23.227.60.200

200 OK

77 kB

URL GET HTTP/3
cdn.shopify.com/shopifycloud/checkout-web/assets/Information~Payment~ShopPay.baseline.en.935f71e1b5e37b1a673d.js
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type

Size
77 kB (77307 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /shopifycloud/checkout-web/assets/Information~Payment~ShopPay.baseline.en.935f71e1b5e37b1a673d.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:30 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
link: <https://cdn.shopify.com/shopifycloud/checkout-web/assets/Information~Payment~ShopPay.baseline.en.935f71e1b5e37b1a673d.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c3980cfc-c968-4ee8-8419-31c637c0e1c8
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 13 Mar 2023 17:24:00 GMT
cf-cache-status: HIT
age: 13424669
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m4ubVWZRi7VuFiTb9zKddsyVMk6XpsT5F8Lzy7KneX9m8O%2FnYWCmPl2tmj4%2B6ZHVDbL5deBOsbQRsWGsYRr7%2F42cR2N0faJUN7%2F%2BdFq6lRyOcrb8UlY2i5GIoGFPCOHGkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=2.301, imageryFetch;dur=2.152, cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 7f763e8a18cbb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.shopify.com/s/trekkie.storefront.700693e2d3750a524f284ea8561edbb1c8c62b04.min.js

23.227.60.200

200 OK

118 kB

URL GET HTTP/2
cdn.shopify.com/s/trekkie.storefront.700693e2d3750a524f284ea8561edbb1c8c62b04.min.js
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
118 kB (118380 bytes)
Hash
2c0ccdb44a728a48da4434dacb6ced56
250b86ec4f1b5b13f7bff48d760da11ee5c9578b
0238fa8104d47cd51841366c9fe2829234d81a5239aa7a9994256506029f9ad1

HTTP Headers

GET /s/trekkie.storefront.700693e2d3750a524f284ea8561edbb1c8c62b04.min.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/javascript
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31536000
link: <https://cdn.shopify.com/s/trekkie.storefront.700693e2d3750a524f284ea8561edbb1c8c62b04.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 9e7d0f90-3f3e-42fe-add0-31c3818e96d1
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Mon, 14 Aug 2023 19:29:19 GMT
cf-cache-status: HIT
age: 111548
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wH4dX9%2BHkY4fbPZ37aMNZ5%2F6Dzi5fJ0nQibWERwuZzOQ2vyJfkV2%2BhQXp1MYFDz8xCJKFAfbsgJbHX2ao7YNrTeBL%2BdLFLC8pCqnJuz30mw713XAPLsh%2F3oaMVQ7otA7%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=79.846, imageryFetch;dur=79.584, cfRequestDuration;dur=7.999897
server: cloudflare
cf-ray: 7f763e806ef3b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.shopify.com/shopifycloud/checkout-web/assets/app.baseline.en.d102fc12c433371f18b0.js

23.227.60.200

200 OK

1.0 MB

URL GET HTTP/3
cdn.shopify.com/shopifycloud/checkout-web/assets/app.baseline.en.d102fc12c433371f18b0.js
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type

Size
1.0 MB (1042772 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /shopifycloud/checkout-web/assets/app.baseline.en.d102fc12c433371f18b0.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:30 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
link: <https://cdn.shopify.com/shopifycloud/checkout-web/assets/app.baseline.en.d102fc12c433371f18b0.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 7c92e48e-ecd8-425a-91cc-962eb4deea03
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 13 Mar 2023 16:47:02 GMT
cf-cache-status: HIT
age: 13426886
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S2%2FEqYLTypLxWWkOYao22krElU0GOotCo369v0Eit5b%2Fstx3o5oINQU3NU7cIkeqLHa2Da%2FGqFRfJhTV6qzwjrruqZXJ5eXXbBfz1sdpJMTbsRL%2FQWybR8lf3DNuJDUGSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=7.870, imageryFetch;dur=7.672, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 7f763e8c6a14b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.shopify.com/shopifycloud/checkout-web/assets/vendors~app.baseline.en.1188b9033722bc012e84.js

23.227.60.200

200 OK

460 kB

URL GET HTTP/3
cdn.shopify.com/shopifycloud/checkout-web/assets/vendors~app.baseline.en.1188b9033722bc012e84.js
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type

Size
460 kB (459676 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /shopifycloud/checkout-web/assets/vendors~app.baseline.en.1188b9033722bc012e84.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:30 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
link: <https://cdn.shopify.com/shopifycloud/checkout-web/assets/vendors~app.baseline.en.1188b9033722bc012e84.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: fc710684-baba-4a96-b16e-46518221f51c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Mon, 13 Mar 2023 16:56:39 GMT
cf-cache-status: HIT
age: 13426310
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mKlah3WgmtWbeLBiamUdXQg4Ev%2B3BeS1aCJ8YTL%2FTjO%2F0e7b1tCsOCVydf66evATGV1BUE9A1zJ%2FUHfQZbAboSSWFlZ1WO13hzdDlKhfF1Of819i5I5AEkYqnFgsNUjZfA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=7.830, imageryFetch;dur=7.608, cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 7f763e8bb990b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.shopify.com/shopifycloud/checkout-web/assets/checkout-web-packages~app.baseline.en.4e70883e139eb5a799c1.js

23.227.60.200

200 OK

162 kB

URL GET HTTP/3
cdn.shopify.com/shopifycloud/checkout-web/assets/checkout-web-packages~app.baseline.en.4e70883e139eb5a799c1.js
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type

Size
162 kB (161668 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /shopifycloud/checkout-web/assets/checkout-web-packages~app.baseline.en.4e70883e139eb5a799c1.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:30 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
link: <https://cdn.shopify.com/shopifycloud/checkout-web/assets/checkout-web-packages~app.baseline.en.4e70883e139eb5a799c1.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 19c74bc4-3221-4142-9d7d-0a9c94a65ead
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Mon, 13 Mar 2023 17:51:18 GMT
cf-cache-status: HIT
age: 13423030
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7vmNSvO6XzJdwO0fgzmq%2FpO0oYnT5tZskGamvfx74vwmRy8%2FhqD2CtcPftM%2FRcRYh3sS3JpMOl9VcP%2B1oH%2FSmtX6eeBbsxxjeVaUV8%2BiccjmLBprAZ5cRZZTk6HiyAJGGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=2.663, imageryFetch;dur=2.485, cfRequestDuration;dur=7.000208
server: cloudflare
cf-ray: 7f763e8c19f7b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.browsealoud.com/modules/3.9.1/143.df46ca07f44d2220dd86.js

143.204.55.103

200 OK

35 kB

URL GET HTTP/2
www.browsealoud.com/modules/3.9.1/143.df46ca07f44d2220dd86.js
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subjectwww.browsealoud.com
Fingerprint41:0E:DB:C1:48:55:38:40:3D:FE:85:FC:4F:E7:74:DF:47:25:F9:FA
ValidityFri, 17 Feb 2023 00:00:00 GMT - Mon, 11 Dec 2023 23:59:59 GMT

File type

Size
35 kB (35201 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /modules/3.9.1/143.df46ca07f44d2220dd86.js HTTP/1.1
Host: www.browsealoud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Thu, 10 Aug 2023 07:23:57 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 15 Aug 2023 16:36:31 GMT
etag: W/"f6b787f90dabc21a5778f1d6f7da99a8"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: peP4l2g3ZLL__j-89WOFfdh1y9Z50vhYGtkBcPNVApjlya2Mnzqc5g==
age: 35520
X-Firefox-Spdy: h2

www.browsealoud.com/modules/3.9.1/2.df46ca07f44d2220dd86.js

143.204.55.103

200 OK

66 kB

URL GET HTTP/2
www.browsealoud.com/modules/3.9.1/2.df46ca07f44d2220dd86.js
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subjectwww.browsealoud.com
Fingerprint41:0E:DB:C1:48:55:38:40:3D:FE:85:FC:4F:E7:74:DF:47:25:F9:FA
ValidityFri, 17 Feb 2023 00:00:00 GMT - Mon, 11 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
66 kB (66142 bytes)
Hash
227d0b2cb6658ffc51750712a9e48103
d3176690b908889454d12715d9a7f43e5913f546
2d808a8e68ac3294ca38c09ac6048c2d0d756170ff7e13b4cc285c91f40d28ab

HTTP Headers

GET /modules/3.9.1/2.df46ca07f44d2220dd86.js HTTP/1.1
Host: www.browsealoud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Thu, 10 Aug 2023 07:24:08 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 15 Aug 2023 16:36:33 GMT
etag: W/"227d0b2cb6658ffc51750712a9e48103"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gVuZLuGMzyDRXYZSlKOA8RcQq-vKHCUxyTqOWl6s7xEttNt5H-NVyg==
age: 35518
X-Firefox-Spdy: h2

cdn.shopify.com/shopifycloud/checkout-web/assets/checkout-web-ui~app.baseline.en.ba7746e3965877991bae.css

23.227.60.200

200 OK

199 kB

URL GET HTTP/3
cdn.shopify.com/shopifycloud/checkout-web/assets/checkout-web-ui~app.baseline.en.ba7746e3965877991bae.css
IP
23.227.60.200:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectcdn.shopify.com
FingerprintC7:18:EF:66:A1:DD:65:8F:CA:30:E8:8D:01:08:43:75:51:CD:A6:E6
ValidityThu, 13 Jul 2023 13:06:00 GMT - Wed, 11 Oct 2023 13:05:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
199 kB (199030 bytes)
Hash
4bfe80a9b4876fe4adf0007b1f07557a
0a34cac00749fb5a7b1e8efcbfd91828edde9c82
deb54f564f61a2c2c602c11a9fc110c5b97ad4c416beac956c2925ea592633e7

HTTP Headers

GET /shopifycloud/checkout-web/assets/checkout-web-ui~app.baseline.en.ba7746e3965877991bae.css HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:30 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
link: <https://cdn.shopify.com/shopifycloud/checkout-web/assets/checkout-web-ui~app.baseline.en.ba7746e3965877991bae.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0315122a-6e9c-4b96-b0b7-d5da5780bcfa
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Thu, 02 Mar 2023 10:08:13 GMT
cf-cache-status: HIT
age: 14401215
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yZ2E74hHBVAbCfSHKqFFtk1WyWEidwVb0HJgSCTAGvIx2XyPLrG6535pvfNB6chU%2BFlSAa8pfpY4XYz3EYj%2BBeNeFASQt1L7oMc%2BaXez70jVUZiHpygDfMoiJSLg9d8BJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=84.874, imageryFetch;dur=2.984, cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 7f763e8cda48b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/storefront/load_feature-6ad832dfb33d267eb5f892acb8c16c6c291694632098e7307cb0cf79497d576b.js

23.227.38.74

200 OK

12 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/shopifycloud/shopify/assets/storefront/load_feature-6ad832dfb33d267eb5f892acb8c16c6c291694632098e7307cb0cf79497d576b.js
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
ASCII text, with very long lines (12184), with no line terminators
Size
12 kB (12184 bytes)
Hash
05da6217d51b01c8f9fa9c994e77b89e
7c814f19455eae66a3b2aa435da830b56f9ce345
6ad832dfb33d267eb5f892acb8c16c6c291694632098e7307cb0cf79497d576b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/shopifycloud/shopify/assets/storefront/load_feature-6ad832dfb33d267eb5f892acb8c16c6c291694632098e7307cb0cf79497d576b.js HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/javascript
x-sorting-hat-podid: -1
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-6ad832dfb33d267eb5f892acb8c16c6c291694632098e7307cb0cf79497d576b.js>; rel="canonical"
timing-allow-origin: *
vary: Accept-Encoding
x-content-type-options: nosniff
x-request-id: 386f1daf-bc9b-44df-8073-3b60588f5700
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
x-download-options: noopen
x-permitted-cross-domain-policies: none
last-modified: Fri, 11 Aug 2023 14:29:22 GMT
cf-cache-status: HIT
age: 388688
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ItJKxSw3weZ9k%2FbA8VdSkf%2B0MK%2BJI%2FsDfeKyLi2OLmOTqjDaQ0lzm1HJJg49BCkmZXOsp07xRAQFYJ4%2B7%2BvXUn8zn5e5Ycs1PIn108Ha228rySxCJwR3OY4tUTQaEbecJN8vH6XUbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=7.999897
server: cloudflare
cf-ray: 7f763e7c1cbe2e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.quantumrlv.com.au/cdn/wpm/bb13c7215wdd28e49cpfc97f3d0m364e80e8m.js

23.227.38.74

200 OK

74 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/wpm/bb13c7215wdd28e49cpfc97f3d0m364e80e8m.js
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type

Size
74 kB (73638 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/wpm/bb13c7215wdd28e49cpfc97f3d0m364e80e8m.js HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/javascript
vary: Accept-Encoding, Accept-Encoding
x-sorting-hat-podid: -1
access-control-allow-origin: *
cache-control: public, max-age=31536000
link: <https://cdn.shopify.com/wpm/bb13c7215wdd28e49cpfc97f3d0m364e80e8m.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 6d1c60cf-2e17-4e8a-a2cb-21246eea686f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
x-download-options: noopen
x-permitted-cross-domain-policies: none
last-modified: Mon, 14 Aug 2023 13:03:33 GMT
cf-cache-status: HIT
age: 134692
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WFZEEbK8nprHkAoAa%2BqAVE6VFfeMcoPyvPO3mkEJKon9SKTLOte5yA7sXw79nxI%2FPGDf0F%2FDO%2F%2F5G992H39ffS9f%2BJHtZU44S%2FeJh257k76X2T5%2FKtE6Usyl%2FBtWR0s71jqvaxSyWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 7f763e800dc82e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.quantumrlv.com.au/cdn/shopifycloud/boomerang/shopify-boomerang-1.0.0.min.js

23.227.38.74

200 OK

60 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/shopifycloud/boomerang/shopify-boomerang-1.0.0.min.js
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
ASCII text, with very long lines (59534)
Size
60 kB (59535 bytes)
Hash
15576e32757a2679f1129d0f746e173a
26d705ede2baccdcab970b31ac3d35a8baf8d0cf
3d4f19e27ee9a32aa646c33e89666ff5b295cfd9d96cb4a983edb4ae3c011dbd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/shopifycloud/boomerang/shopify-boomerang-1.0.0.min.js HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; _gcl_au=1.1.1287916827.1692152903
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/javascript
x-sorting-hat-podid: -1
x-storefront-renderer-rendered: 1
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, s-maxage=31536000, max-age=3600, must-revalidate
link: <https://cdn.shopify.com/shopifycloud/boomerang/shopify-boomerang-1.0.0.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 798c537a-bc4e-4848-ab01-b8004fc87e0f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
x-download-options: noopen
x-permitted-cross-domain-policies: none
last-modified: Mon, 10 Apr 2023 17:31:01 GMT
cf-cache-status: HIT
age: 10229095
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wuy6Rq%2FGkJeZW%2Bl9ur%2FRONJ2OazIoPctCwEIxRzm5aPJlgThYuRZUSjhk8UJ5tX1Mm7Cz2CfqEP54HVjB5dUfWNwPi4FT4OcGYxM4ULMl2lk8gyPHDYMJ064G5puSbFxzBC%2FrbnfOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=7.999897
server: cloudflare
cf-ray: 7f763e802dd12e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.quantumrlv.com.au/online/login.php

23.227.38.74

404 Not Found

163 kB

URL User Request GET HTTP/3
www.quantumrlv.com.au/online/login.php
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type

Size
163 kB (163357 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /online/login.php HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 16 Aug 2023 02:28:27 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
x-storefront-renderer-rendered: 1
set-cookie: keep_alive=904f54c9-c5ab-450b-87ec-806dd6de0b22; path=/; expires=Wed, 16 Aug 2023 02:58:27 GMT; HttpOnly; SameSite=Lax
cart_currency=AUD; path=/; expires=Wed, 30 Aug 2023 02:28:27 GMT
_cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=quantumrlv.com.au; path=/; expires=Thu, 17 Aug 2023 02:28:27 GMT; SameSite=Lax
_y=44a6f7ba-e484-472e-942b-592643dcc26f; Expires=Thu, 15-Aug-24 02:28:27 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
_s=3f18f663-4a5c-430b-9a0e-e099faae8647; Expires=Wed, 16-Aug-23 02:58:27 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
_shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; Expires=Thu, 15-Aug-24 02:28:27 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
_shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647; Expires=Wed, 16-Aug-23 02:58:27 GMT; Domain=quantumrlv.com.au; Path=/; SameSite=Lax
etag: W/"cacheable:cb971ea44521eadd38e41923232be55f"
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-shopify-granular-consent-beta: 1
x-cache: hit, server
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 51416989864
x-shardid: 167
vary: Accept
content-language: en
powered-by: Shopify
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: de2caf13-0e1d-48fe-a4f4-c99f5f691533
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zZimhN%2Bjbp5ZWEaVqB5YemZYxTLv0pvKJthsBShsDhgaWAORADhfZAxeTrDBWYeAVfpob4rVQqSz3ySKJlNv%2BxHoHTwqPKbMN0jX1UUJxNSFsiHmiimXL5HCn5awkjBld8U2g0elug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=21, db;dur=7, asn;desc="50304", edge;desc="ARN", country;desc="NO", theme;desc="115844612264", pageType;desc="404", servedBy;desc="wvrm", requestID;desc="de2caf13-0e1d-48fe-a4f4-c99f5f691533", cfRequestDuration;dur=105.000019
server: cloudflare
cf-ray: 7f763e77fbc82e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.popt.in/pixel.js?id=cefd457b73aff&shop=quantumrlv.myshopify.com

172.64.175.6

200 OK

231 kB

URL GET HTTP/2
cdn.popt.in/pixel.js?id=cefd457b73aff&shop=quantumrlv.myshopify.com
IP
172.64.175.6:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectpopt.in
Fingerprint75:BD:38:CB:63:72:63:01:87:4C:A9:22:E2:F8:DB:16:38:A7:5B:55
ValiditySat, 15 Jul 2023 08:21:34 GMT - Fri, 13 Oct 2023 08:21:33 GMT

File type

Size
231 kB (231160 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel.js?id=cefd457b73aff&shop=quantumrlv.myshopify.com HTTP/1.1
Host: cdn.popt.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 16 Aug 2023 02:28:30 GMT
content-type: text/javascript
last-modified: Tue, 15 Aug 2023 11:33:10 GMT
etag: W/"4398a5fa47dc4476a9cdf3e74a784a22"
x-amz-server-side-encryption: AES256
x-amz-version-id: 1ZFyJ3Y9uXYkmkgsqE0w6u69mU22vBI_
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 942cb3fbe68b5c10602773b4d1b1c0e8.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P3
x-amz-cf-id: mM_tNAaFIrsftaT7rDS89-WqYuIIYf-x2K3H6cuX-S1khN0OEDrjyA==
age: 3308
cache-control: max-age=1800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KoIpbVWwThF6Iwz%2FKP6mEjfc34t9QhbmfyzuHzn%2Fq9zgg46B81ZBCJcfchZzZn1HvY106A%2BdsMLuTUuRVBlQ2GCEJWjgs2I%2B4oCvyr%2BAI4TRasnY6sgrtOTcmSvUVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7f763e8a2f61491c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.browsealoud.com/modules/3.9.1/3.df46ca07f44d2220dd86.js

143.204.55.103

200 OK

305 kB

URL GET HTTP/2
www.browsealoud.com/modules/3.9.1/3.df46ca07f44d2220dd86.js
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subjectwww.browsealoud.com
Fingerprint41:0E:DB:C1:48:55:38:40:3D:FE:85:FC:4F:E7:74:DF:47:25:F9:FA
ValidityFri, 17 Feb 2023 00:00:00 GMT - Mon, 11 Dec 2023 23:59:59 GMT

File type

Size
305 kB (305047 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /modules/3.9.1/3.df46ca07f44d2220dd86.js HTTP/1.1
Host: www.browsealoud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Thu, 10 Aug 2023 07:24:13 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 15 Aug 2023 18:44:16 GMT
etag: W/"23ee6b7c60a6620aad357383f7cd05da"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vV7KElF2yyfFYeC6VcKVWVHyUqJ3AsLcu2n6pUnlZPI0rCy-DxLh9w==
age: 27855
X-Firefox-Spdy: h2

use.fontawesome.com/56c7b3252e.js

172.64.102.11

200 OK

9.5 kB

URL GET HTTP/2
use.fontawesome.com/56c7b3252e.js
IP
172.64.102.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
Fingerprint44:A2:80:0B:1D:01:55:DA:4F:BB:6B:A2:11:12:B1:BB:BD:07:AF:E9
ValidityTue, 04 Jul 2023 05:06:19 GMT - Mon, 02 Oct 2023 05:06:18 GMT

File type
Unicode text, UTF-8 text, with very long lines (9729), with no line terminators
Size
9.5 kB (9494 bytes)
Hash
7bb95ce25cd4a368b0da2839286b1fbd
8dcaddef0d8fb1f4934095d70322a07e6f4314a2
e0e62490028e8879e768f56564ecbde5147d5712f3570b87a09fc62b6df88ca3

HTTP Headers

GET /56c7b3252e.js HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/javascript
x-amz-id-2: GJxcQpHG3Eq+S8ZaJA66kHESy4V8oB0IPCsawH6GyQ6dUxHv3mF3Io8PEeKpVdVIKH2aupI4Cik=
x-amz-request-id: 4HJ52JNDMV07FX2Q
last-modified: Wed, 30 Jun 2021 19:30:11 GMT
etag: W/"6bef91c8aa11c67b41902c2d88eb9f26"
cache-control: max-age=1800
cf-cache-status: HIT
age: 1197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=txi36zwpzaodGH7N1uap5D1U3tBzIb96R7uT92mp2LDjt8FkPq3HhUKGMZ4TDNWZpDVilF6CaXyPbgXmddSzNKa0l5l27JL3y6xz8ioD3KX2UigtIZ%2B2TkoJHEmW%2FMAKpdy6bmVe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7f763e7d5e5e23be-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.quantumrlv.com.au/cdn/shop/t/1/assets/custom.css?v=140945296339909451571641831266

23.227.38.74

200 OK

5.6 kB

URL GET HTTP/3
www.quantumrlv.com.au/cdn/shop/t/1/assets/custom.css?v=140945296339909451571641831266
IP
23.227.38.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerLet's Encrypt
Subjectwww.quantumrlv.com.au
Fingerprint94:17:67:D2:C2:DC:62:D6:A8:C3:D6:D0:9E:04:3B:30:D3:93:4E:A6
ValidityThu, 13 Jul 2023 23:26:54 GMT - Wed, 11 Oct 2023 23:26:53 GMT

File type
ASCII text, with very long lines (5573), with no line terminators
Size
5.6 kB (5569 bytes)
Hash
f3eb1b851de5d4d492eab833fce8441a
1d2c0fdd2e40250100562622dcfb58256ddbee03
3c7dcbdcb2610dd9b5a9e5aa340ad1f959f60d1a054419bdb36ed9a0dc9a9df0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/shop/t/1/assets/custom.css?v=140945296339909451571641831266 HTTP/1.1
Host: www.quantumrlv.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/online/login.php
Cookie: keep_alive=e603c4ef-7576-4269-8053-b1d4e2a68229; cart_currency=AUD; _cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22AU%22%2C%22sale_of_data_region%22%3Afalse%7D; _y=44a6f7ba-e484-472e-942b-592643dcc26f; _s=3f18f663-4a5c-430b-9a0e-e099faae8647; _shopify_y=44a6f7ba-e484-472e-942b-592643dcc26f; _shopify_s=3f18f663-4a5c-430b-9a0e-e099faae8647
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Aug 2023 02:28:28 GMT
content-type: text/css
x-sorting-hat-podid: 167
x-sorting-hat-shopid: 51416989864
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0514/1698/9864/t/1/assets/custom.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 2cbd9892-37fd-4178-b27f-e1f832e21b4a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
x-download-options: noopen
x-permitted-cross-domain-policies: none
last-modified: Mon, 26 Jun 2023 17:27:48 GMT
cf-cache-status: HIT
age: 226040
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eBfSk8qVMKMhbt7kGdzy9XfIxGGaDSX8ugDl2pbYw0P%2Fe36KJKR2ouQiGKDrZsn1jeG0jCLVIshlhdj5GZ0Haj9CN3jPeWh435GpJvqP4zGPPgrpOKU%2BXe5L6nRj%2BXtZ%2Bu8Mpl%2Fmfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 7f763e7c0cbc2e09-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.browsealoud.com/modules/3.9.1/144.df46ca07f44d2220dd86.js

143.204.55.103

200 OK

11 kB

URL GET HTTP/2
www.browsealoud.com/modules/3.9.1/144.df46ca07f44d2220dd86.js
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://www.quantumrlv.com.au/online/login.php
Certificate
IssuerAmazon
Subjectwww.browsealoud.com
Fingerprint41:0E:DB:C1:48:55:38:40:3D:FE:85:FC:4F:E7:74:DF:47:25:F9:FA
ValidityFri, 17 Feb 2023 00:00:00 GMT - Mon, 11 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (11181), with no line terminators
Size
11 kB (11181 bytes)
Hash
3425888faf4d4dbf17e669bbe7ec40d0
c9a0c831229439a5466376261080c042f73a6a7f
0e76e74f270e0df1fb7957cd8f69ce2b37a62a6ebec97e3e47a2e631d22abad6

HTTP Headers

GET /modules/3.9.1/144.df46ca07f44d2220dd86.js HTTP/1.1
Host: www.browsealoud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.quantumrlv.com.au
DNT: 1
Connection: keep-alive
Referer: https://www.quantumrlv.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
last-modified: Thu, 10 Aug 2023 07:23:57 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Wed, 16 Aug 2023 02:08:33 GMT
etag: W/"3425888faf4d4dbf17e669bbe7ec40d0"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gV9faJ5tF5wKMkSpD20teHY086UHKTAr-xdsYs-cmM5BYiGGFwps6g==
age: 35518
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (67)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash