Overview

URL farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
IP89.39.83.31
ASNROMARG SRL
Location Romania
Report completed2022-07-04 12:49:26 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-04 2 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip Malware
2022-07-04 2 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip Malware
2022-07-04 2 farmacia-organika.ro/wp-content/plugins/woocommerce/packages/woocommerce-bl (...) Malware
2022-07-04 2 farmacia-organika.ro/wp-content/plugins/js_composer/assets/css/js_composer. (...) Malware
2022-07-04 2 farmacia-organika.ro/wp-content/plugins/contact-form-7/includes/css/styles. (...) Malware
2022-07-04 2 farmacia-organika.ro/wp-content/plugins/mailchimp-for-wp/assets/css/form-ba (...) Malware
2022-07-04 2 farmacia-organika.ro/wp-content/uploads/sass/wc_email_inquiry_cart_options. (...) Malware
2022-07-04 2 farmacia-organika.ro/wp-content/themes/xstore/css/font-awesome.min.css?ver= (...) Malware
2022-07-04 2 farmacia-organika.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Malware
2022-07-04 2 farmacia-organika.ro/wp-content/themes/xstore/css/bootstrap.min.css?ver=ffc (...) Malware
2022-07-04 2 farmacia-organika.ro/wp-content/plugins/js_composer/assets/js/vendors/wooco (...) Malware
2022-07-04 2 farmacia-organika.ro/wp-content/themes/xstore/js/head.min.js?ver=ffc150dadb (...) Malware
2022-07-04 2 farmacia-organika.ro/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 Malware
2022-07-04 2 farmacia-organika.ro/wp-content/plugins/woocommerce/assets/js/js-cookie/js. (...) Malware
2022-07-04 2 farmacia-organika.ro/wp-includes/js/hoverIntent.min.js?ver=1.10.2 Malware
2022-07-04 2 farmacia-organika.ro/wp-content/themes/xstore/style.css?ver=ffc150dadb15811 (...) Malware
2022-07-04 2 farmacia-organika.ro/wp-content/themes/xstore/js/plugins.min.js?ver=ffc150d (...) Malware
2022-07-04 2 farmacia-organika.ro/?wc-ajax=get_refreshed_fragments Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (20)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] farmacia-organika.ro (37) 0 2019-06-07 14:15:45 UTC 2022-06-19 01:20:16 UTC 89.39.83.31 Unknown ranking
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-07-04 05:58:50 UTC 93.184.220.29
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-07-04 06:16:07 UTC 34.120.237.76
[Mnemonic Passive DNS] ocsp.pki.goog (15) 175 2017-06-14 07:23:31 UTC 2022-07-04 06:11:48 UTC 142.250.74.3
[Mnemonic Passive DNS] www.googleadservices.com (1) 107 2017-01-30 05:00:00 UTC 2021-02-23 08:54:56 UTC 172.217.21.162
[Mnemonic Passive DNS] www.google.com (1) 7 2012-05-22 04:23:54 UTC 2022-07-04 05:29:21 UTC 142.250.74.164
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.65
[Mnemonic Passive DNS] ajax.googleapis.com (1) 12905 2017-01-30 05:00:30 UTC 2019-10-16 05:01:16 UTC 142.250.74.138
[Mnemonic Passive DNS] fonts.googleapis.com (1) 8877 2017-01-30 04:59:43 UTC 2019-10-16 05:12:41 UTC 142.250.74.10
[Mnemonic Passive DNS] fonts.gstatic.com (2) 0 2017-01-30 04:59:51 UTC 2022-07-04 05:40:21 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] www.google-analytics.com (1) 40 2017-01-30 05:00:06 UTC 2022-07-04 07:50:42 UTC 142.250.74.174
[Mnemonic Passive DNS] r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-07-04 06:10:24 UTC 23.36.76.226
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-07-04 06:11:54 UTC 54.230.111.64
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-04 06:11:54 UTC 52.43.61.95
[Mnemonic Passive DNS] maxcdn.bootstrapcdn.com (1) 724 2017-01-30 05:00:47 UTC 2021-03-05 11:52:46 UTC 104.18.10.207
[Mnemonic Passive DNS] googleads.g.doubleclick.net (1) 42 2012-05-21 16:28:57 UTC 2021-02-23 09:01:54 UTC 142.250.74.98
[Mnemonic Passive DNS] www.google.no (1) 25607 2012-05-21 14:04:11 UTC 2014-08-11 22:10:14 UTC 142.250.74.3
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] www.googletagmanager.com (2) 75 2017-01-30 05:00:47 UTC 2022-07-04 06:20:16 UTC 142.250.74.72
[Mnemonic Passive DNS] stats.g.doubleclick.net (1) 96 2017-01-30 04:59:59 UTC 2022-07-04 05:40:42 UTC 173.194.222.155


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 89.39.83.31

Date UQ / IDS / BL URL IP
2022-08-14 13:51:04 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-14 02:23:19 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-11 14:34:50 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-09 13:32:26 +0000
0 - 0 - 17 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-09 03:11:00 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-08 18:45:23 +0000
0 - 0 - 18 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-04 04:17:29 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-07-31 10:48:50 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-07-31 02:46:33 +0000
0 - 0 - 18 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-07-28 03:46:56 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31

Last 10 reports on ASN: ROMARG SRL

Date UQ / IDS / BL URL IP
2022-08-14 22:38:30 +0000
0 - 0 - 1 vladimirghika.ro/et-dolor/documents.zip 89.42.218.232
2022-08-14 22:24:14 +0000
0 - 0 - 1 rdrcollect.ro/ad-sunt/documents.zip 89.42.218.226
2022-08-14 22:07:22 +0000
0 - 0 - 3 mediaworld.ro/minima-quasi/documents.zip 89.42.218.232
2022-08-14 22:03:07 +0000
0 - 0 - 1 arcb.ro/harum-laborum/documents.zip 89.42.218.232
2022-08-14 18:36:22 +0000
0 - 0 - 3 chop-shop.ro/maiores-repudiandae/documents.zip 89.47.242.199
2022-08-14 18:30:16 +0000
0 - 0 - 16 seinsweise.com/laborum-rerum/documents.zip 89.42.218.164
2022-08-14 18:11:36 +0000
0 - 0 - 2 turismtimis.ro/a-quas/documents.zip 89.42.218.164
2022-08-14 13:51:04 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-14 13:35:04 +0000
0 - 0 - 1 db.vnc.ro/ 89.39.246.44
2022-08-14 07:11:35 +0000
0 - 0 - 1 actualitatea-crestina.ro/laudantium-reiciendi (...) 89.42.218.232

Last 10 reports on domain: farmacia-organika.ro

Date UQ / IDS / BL URL IP
2022-08-14 13:51:04 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-14 02:23:19 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-11 14:34:50 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-09 13:32:26 +0000
0 - 0 - 17 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-09 03:11:00 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-08 18:45:23 +0000
0 - 0 - 18 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-04 04:17:29 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-07-31 10:48:50 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-07-31 02:46:33 +0000
0 - 0 - 18 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-07-28 03:46:56 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31


JavaScript

Executed Scripts (34)


Executed Evals (1)

#1 JavaScript::Eval (size: 24200, repeated: 1) - SHA256: 5b9dbbf3e70397a139a26790fed6461aa5464e027efe65a8b068e5abe60cbdb3

                                        if (typeof Object.create !== "function") {
    Object.create = function(e) {
        function t() {}
        t.prototype = e;
        return new t
    }
}(function(e, t, n, r) {
    var i = {
        init: function(t, n) {
            var r = this;
            r.$elem = e(n);
            r.options = e.extend({}, e.fn.owlCarousel.options, r.$elem.data(), t);
            r.userOptions = t;
            r.loadContent()
        },
        loadContent: function() {
            var t = this;
            if (typeof t.options.beforeInit === "function") {
                t.options.beforeInit.apply(this, [t.$elem])
            }
            if (typeof t.options.jsonPath === "string") {
                var n = t.options.jsonPath;

                function r(e) {
                    if (typeof t.options.jsonSuccess === "function") {
                        t.options.jsonSuccess.apply(this, [e])
                    } else {
                        var n = "";
                        for (var r in e["owl"]) {
                            n += e["owl"][r]["item"]
                        }
                        t.$elem.html(n)
                    }
                    t.logIn()
                }
                e.getJSON(n, r)
            } else {
                t.logIn()
            }
        },
        logIn: function(e) {
            var t = this;
            t.$elem.data("owl-originalStyles", t.$elem.attr("style")).data("owl-originalClasses", t.$elem.attr("class"));
            t.$elem.css({
                opacity: 0
            });
            t.orignalItems = t.options.items;
            t.checkBrowser();
            t.wrapperWidth = 0;
            t.checkVisible;
            t.setVars()
        },
        setVars: function() {
            var e = this;
            if (e.$elem.children().length === 0) {
                return false
            }
            e.baseClass();
            e.eventTypes();
            e.$userItems = e.$elem.children();
            e.itemsAmount = e.$userItems.length;
            e.wrapItems();
            e.$owlItems = e.$elem.find(".owl-item");
            e.$owlWrapper = e.$elem.find(".owl-wrapper");
            e.playDirection = "next";
            e.prevItem = 0;
            e.prevArr = [0];
            e.currentItem = 0;
            e.customEvents();
            e.onStartup()
        },
        onStartup: function() {
            var e = this;
            e.updateItems();
            e.calculateAll();
            e.buildControls();
            e.updateControls();
            e.response();
            e.moveEvents();
            e.stopOnHover();
            e.owlStatus();
            if (e.options.transitionStyle !== false) {
                e.transitionTypes(e.options.transitionStyle)
            }
            if (e.options.autoPlay === true) {
                e.options.autoPlay = 5e3
            }
            e.play();
            e.$elem.find(".owl-wrapper").css("display", "block");
            if (!e.$elem.is(":visible")) {
                e.watchVisibility()
            } else {
                e.$elem.css("opacity", 1)
            }
            e.onstartup = false;
            e.eachMoveUpdate();
            if (typeof e.options.afterInit === "function") {
                e.options.afterInit.apply(this, [e.$elem])
            }
        },
        eachMoveUpdate: function() {
            var e = this;
            if (e.options.lazyLoad === true) {
                e.lazyLoad()
            }
            if (e.options.autoHeight === true) {
                e.autoHeight()
            }
            e.onVisibleItems();
            if (typeof e.options.afterAction === "function") {
                e.options.afterAction.apply(this, [e.$elem])
            }
        },
        updateVars: function() {
            var e = this;
            if (typeof e.options.beforeUpdate === "function") {
                e.options.beforeUpdate.apply(this, [e.$elem])
            }
            e.watchVisibility();
            e.updateItems();
            e.calculateAll();
            e.updatePosition();
            e.updateControls();
            e.eachMoveUpdate();
            if (typeof e.options.afterUpdate === "function") {
                e.options.afterUpdate.apply(this, [e.$elem])
            }
        },
        reload: function(e) {
            var t = this;
            setTimeout(function() {
                t.updateVars()
            }, 0)
        },
        watchVisibility: function() {
            var e = this;
            if (e.$elem.is(":visible") === false) {
                e.$elem.css({
                    opacity: 0
                });
                clearInterval(e.autoPlayInterval);
                clearInterval(e.checkVisible)
            } else {
                return false
            }
            e.checkVisible = setInterval(function() {
                if (e.$elem.is(":visible")) {
                    e.reload();
                    e.$elem.animate({
                        opacity: 1
                    }, 200);
                    clearInterval(e.checkVisible)
                }
            }, 500)
        },
        wrapItems: function() {
            var e = this;
            e.$userItems.wrapAll('<div class="owl-wrapper">').wrap('<div class="owl-item"></div>');
            e.$elem.find(".owl-wrapper").wrap('<div class="owl-wrapper-outer">');
            e.wrapperOuter = e.$elem.find(".owl-wrapper-outer");
            e.$elem.css("display", "block")
        },
        baseClass: function() {
            var e = this;
            var t = e.$elem.hasClass(e.options.baseClass);
            var n = e.$elem.hasClass(e.options.theme);
            if (!t) {
                e.$elem.addClass(e.options.baseClass)
            }
            if (!n) {
                e.$elem.addClass(e.options.theme)
            }
        },
        updateItems: function() {
            var t = this;
            if (t.options.responsive === false) {
                return false
            }
            if (t.options.singleItem === true) {
                t.options.items = t.orignalItems = 1;
                t.options.itemsCustom = false;
                t.options.itemsDesktop = false;
                t.options.itemsDesktopSmall = false;
                t.options.itemsTablet = false;
                t.options.itemsTabletSmall = false;
                t.options.itemsMobile = false;
                return false
            }
            var n = e(t.options.responsiveBaseWidth).width();
            if (n > (t.options.itemsDesktop[0] || t.orignalItems)) {
                t.options.items = t.orignalItems
            }
            if (typeof t.options.itemsCustom !== "undefined" && t.options.itemsCustom !== false) {
                t.options.itemsCustom.sort(function(e, t) {
                    return e[0] - t[0]
                });
                for (var r in t.options.itemsCustom) {
                    if (typeof t.options.itemsCustom[r] !== "undefined" && t.options.itemsCustom[r][0] <= n) {
                        t.options.items = t.options.itemsCustom[r][1]
                    }
                }
            } else {
                if (n <= t.options.itemsDesktop[0] && t.options.itemsDesktop !== false) {
                    t.options.items = t.options.itemsDesktop[1]
                }
                if (n <= t.options.itemsDesktopSmall[0] && t.options.itemsDesktopSmall !== false) {
                    t.options.items = t.options.itemsDesktopSmall[1]
                }
                if (n <= t.options.itemsTablet[0] && t.options.itemsTablet !== false) {
                    t.options.items = t.options.itemsTablet[1]
                }
                if (n <= t.options.itemsTabletSmall[0] && t.options.itemsTabletSmall !== false) {
                    t.options.items = t.options.itemsTabletSmall[1]
                }
                if (n <= t.options.itemsMobile[0] && t.options.itemsMobile !== false) {
                    t.options.items = t.options.itemsMobile[1]
                }
            }
            if (t.options.items > t.itemsAmount && t.options.itemsScaleUp === true) {
                t.options.items = t.itemsAmount
            }
        },
        response: function() {
            var n = this,
                r;
            if (n.options.responsive !== true) {
                return false
            }
            var i = e(t).width();
            n.resizer = function() {
                if (e(t).width() !== i) {
                    if (n.options.autoPlay !== false) {
                        clearInterval(n.autoPlayInterval)
                    }
                    clearTimeout(r);
                    r = setTimeout(function() {
                        i = e(t).width();
                        n.updateVars()
                    }, n.options.responsiveRefreshRate)
                }
            };
            e(t).resize(n.resizer)
        },
        updatePosition: function() {
            var e = this;
            e.jumpTo(e.currentItem);
            if (e.options.autoPlay !== false) {
                e.checkAp()
            }
        },
        appendItemsSizes: function() {
            var t = this;
            var n = 0;
            var r = t.itemsAmount - t.options.items;
            t.$owlItems.each(function(i) {
                var s = e(this);
                s.css({
                    width: t.itemWidth
                }).data("owl-item", Number(i));
                if (i % t.options.items === 0 || i === r) {
                    if (!(i > r)) {
                        n += 1
                    }
                }
                s.data("owl-roundPages", n)
            })
        },
        appendWrapperSizes: function() {
            var e = this;
            var t = 0;
            var t = e.$owlItems.length * e.itemWidth;
            e.$owlWrapper.css({
                width: t * 2,
                left: 0
            });
            e.appendItemsSizes()
        },
        calculateAll: function() {
            var e = this;
            e.calculateWidth();
            e.appendWrapperSizes();
            e.loops();
            e.max()
        },
        calculateWidth: function() {
            var e = this;
            e.itemWidth = Math.round(e.$elem.width() / e.options.items)
        },
        max: function() {
            var e = this;
            var t = (e.itemsAmount * e.itemWidth - e.options.items * e.itemWidth) * -1;
            if (e.options.items > e.itemsAmount) {
                e.maximumItem = 0;
                t = 0;
                e.maximumPixels = 0
            } else {
                e.maximumItem = e.itemsAmount - e.options.items;
                e.maximumPixels = t
            }
            return t
        },
        min: function() {
            return 0
        },
        loops: function() {
            var t = this;
            t.positionsInArray = [0];
            t.pagesInArray = [];
            var n = 0;
            var r = 0;
            for (var i = 0; i < t.itemsAmount; i++) {
                r += t.itemWidth;
                t.positionsInArray.push(-r);
                if (t.options.scrollPerPage === true) {
                    var s = e(t.$owlItems[i]);
                    var o = s.data("owl-roundPages");
                    if (o !== n) {
                        t.pagesInArray[n] = t.positionsInArray[i];
                        n = o
                    }
                }
            }
        },
        buildControls: function() {
            var t = this;
            if (t.options.navigation === true || t.options.pagination === true) {
                t.owlControls = e('<div class="owl-controls"/>').toggleClass("clickable", !t.browser.isTouch).appendTo(t.$elem)
            }
            if (t.options.pagination === true) {
                t.buildPagination()
            }
            if (t.options.navigation === true) {
                t.buildButtons()
            }
        },
        buildButtons: function() {
            var t = this;
            var n = e('<div class="owl-buttons"/>');
            t.owlControls.append(n);
            t.buttonPrev = e("<div/>", {
                "class": "owl-prev",
                html: t.options.navigationText[0] || ""
            });
            t.buttonNext = e("<div/>", {
                "class": "owl-next",
                html: t.options.navigationText[1] || ""
            });
            n.append(t.buttonPrev).append(t.buttonNext);
            n.on("touchstart.owlControls mousedown.owlControls", 'div[class^="owl"]', function(e) {
                e.preventDefault()
            });
            n.on("touchend.owlControls mouseup.owlControls", 'div[class^="owl"]', function(n) {
                n.preventDefault();
                if (e(this).hasClass("owl-next")) {
                    t.next()
                } else {
                    t.prev()
                }
            })
        },
        buildPagination: function() {
            var t = this;
            t.paginationWrapper = e('<div class="owl-pagination"/>');
            t.owlControls.append(t.paginationWrapper);
            t.paginationWrapper.on("touchend.owlControls mouseup.owlControls", ".owl-page", function(n) {
                n.preventDefault();
                if (Number(e(this).data("owl-page")) !== t.currentItem) {
                    t.goTo(Number(e(this).data("owl-page")), true)
                }
            })
        },
        updatePagination: function() {
            var t = this;
            if (t.options.pagination === false) {
                return false
            }
            t.paginationWrapper.html("");
            var n = 0;
            var r = t.itemsAmount - t.itemsAmount % t.options.items;
            for (var i = 0; i < t.itemsAmount; i++) {
                if (i % t.options.items === 0) {
                    n += 1;
                    if (r === i) {
                        var s = t.itemsAmount - t.options.items
                    }
                    var o = e("<div/>", {
                        "class": "owl-page"
                    });
                    var u = e("<span></span>", {
                        text: t.options.paginationNumbers === true ? n : "",
                        "class": t.options.paginationNumbers === true ? "owl-numbers" : ""
                    });
                    o.append(u);
                    o.data("owl-page", r === i ? s : i);
                    o.data("owl-roundPages", n);
                    t.paginationWrapper.append(o)
                }
            }
            t.checkPagination()
        },
        checkPagination: function() {
            var t = this;
            if (t.options.pagination === false) {
                return false
            }
            t.paginationWrapper.find(".owl-page").each(function(n, r) {
                if (e(this).data("owl-roundPages") === e(t.$owlItems[t.currentItem]).data("owl-roundPages")) {
                    t.paginationWrapper.find(".owl-page").removeClass("active");
                    e(this).addClass("active")
                }
            })
        },
        checkNavigation: function() {
            var e = this;
            if (e.options.navigation === false) {
                return false
            }
            if (e.options.rewindNav === false) {
                if (e.currentItem === 0 && e.maximumItem === 0) {
                    e.buttonPrev.addClass("disabled");
                    e.buttonNext.addClass("disabled")
                } else if (e.currentItem === 0 && e.maximumItem !== 0) {
                    e.buttonPrev.addClass("disabled");
                    e.buttonNext.removeClass("disabled")
                } else if (e.currentItem === e.maximumItem) {
                    e.buttonPrev.removeClass("disabled");
                    e.buttonNext.addClass("disabled")
                } else if (e.currentItem !== 0 && e.currentItem !== e.maximumItem) {
                    e.buttonPrev.removeClass("disabled");
                    e.buttonNext.removeClass("disabled")
                }
            }
        },
        updateControls: function() {
            var e = this;
            e.updatePagination();
            e.checkNavigation();
            if (e.owlControls) {
                if (e.options.items >= e.itemsAmount) {
                    e.owlControls.hide()
                } else {
                    e.owlControls.show()
                }
            }
        },
        destroyControls: function() {
            var e = this;
            if (e.owlControls) {
                e.owlControls.remove()
            }
        },
        next: function(e) {
            var t = this;
            if (t.isTransition) {
                return false
            }
            t.currentItem += t.options.scrollPerPage === true ? t.options.items : 1;
            if (t.currentItem > t.maximumItem + (t.options.scrollPerPage == true ? t.options.items - 1 : 0)) {
                if (t.options.rewindNav === true) {
                    t.currentItem = 0;
                    e = "rewind"
                } else {
                    t.currentItem = t.maximumItem;
                    return false
                }
            }
            t.goTo(t.currentItem, e)
        },
        prev: function(e) {
            var t = this;
            if (t.isTransition) {
                return false
            }
            if (t.options.scrollPerPage === true && t.currentItem > 0 && t.currentItem < t.options.items) {
                t.currentItem = 0
            } else {
                t.currentItem -= t.options.scrollPerPage === true ? t.options.items : 1
            }
            if (t.currentItem < 0) {
                if (t.options.rewindNav === true) {
                    t.currentItem = t.maximumItem;
                    e = "rewind"
                } else {
                    t.currentItem = 0;
                    return false
                }
            }
            t.goTo(t.currentItem, e)
        },
        goTo: function(e, t, n) {
            var r = this;
            if (r.isTransition) {
                return false
            }
            if (typeof r.options.beforeMove === "function") {
                r.options.beforeMove.apply(this, [r.$elem])
            }
            if (e >= r.maximumItem) {
                e = r.maximumItem
            } else if (e <= 0) {
                e = 0
            }
            r.currentItem = r.owl.currentItem = e;
            if (r.options.transitionStyle !== false && n !== "drag" && r.options.items === 1 && r.browser.support3d === true) {
                r.swapSpeed(0);
                if (r.browser.support3d === true) {
                    r.transition3d(r.positionsInArray[e])
                } else {
                    r.css2slide(r.positionsInArray[e], 1)
                }
                r.afterGo();
                r.singleItemTransition();
                return false
            }
            var i = r.positionsInArray[e];
            if (r.browser.support3d === true) {
                r.isCss3Finish = false;
                if (t === true) {
                    r.swapSpeed("paginationSpeed");
                    setTimeout(function() {
                        r.isCss3Finish = true
                    }, r.options.paginationSpeed)
                } else if (t === "rewind") {
                    r.swapSpeed(r.options.rewindSpeed);
                    setTimeout(function() {
                        r.isCss3Finish = true
                    }, r.options.rewindSpeed)
                } else {
                    r.swapSpeed("slideSpeed");
                    setTimeout(function() {
                        r.isCss3Finish = true
                    }, r.options.slideSpeed)
                }
                r.transition3d(i)
            } else {
                if (t === true) {
                    r.css2slide(i, r.options.paginationSpeed)
                } else if (t === "rewind") {
                    r.css2slide(i, r.options.rewindSpeed)
                } else {
                    r.css2slide(i, r.options.slideSpeed)
                }
            }
            r.afterGo()
        },
        jumpTo: function(e) {
            var t = this;
            if (typeof t.options.beforeMove === "function") {
                t.options.beforeMove.apply(this, [t.$elem])
            }
            if (e >= t.maximumItem || e === -1) {
                e = t.maximumItem
            } else if (e <= 0) {
                e = 0
            }
            t.swapSpeed(0);
            if (t.browser.support3d === true) {
                t.transition3d(t.positionsInArray[e])
            } else {
                t.css2slide(t.positionsInArray[e], 1)
            }
            t.currentItem = t.owl.currentItem = e;
            t.afterGo()
        },
        afterGo: function() {
            var e = this;
            e.prevArr.push(e.currentItem);
            e.prevItem = e.owl.prevItem = e.prevArr[e.prevArr.length - 2];
            e.prevArr.shift(0);
            if (e.prevItem !== e.currentItem) {
                e.checkPagination();
                e.checkNavigation();
                e.eachMoveUpdate();
                if (e.options.autoPlay !== false) {
                    e.checkAp()
                }
            }
            if (typeof e.options.afterMove === "function" && e.prevItem !== e.currentItem) {
                e.options.afterMove.apply(this, [e.$elem])
            }
        },
        stop: function() {
            var e = this;
            e.apStatus = "stop";
            clearInterval(e.autoPlayInterval)
        },
        checkAp: function() {
            var e = this;
            if (e.apStatus !== "stop") {
                e.play()
            }
        },
        play: function() {
            var e = this;
            e.apStatus = "play";
            if (e.options.autoPlay === false) {
                return false
            }
            clearInterval(e.autoPlayInterval);
            e.autoPlayInterval = setInterval(function() {
                e.next(true)
            }, e.options.autoPlay)
        },
        swapSpeed: function(e) {
            var t = this;
            if (e === "slideSpeed") {
                t.$owlWrapper.css(t.addCssSpeed(t.options.slideSpeed))
            } else if (e === "paginationSpeed") {
                t.$owlWrapper.css(t.addCssSpeed(t.options.paginationSpeed))
            } else if (typeof e !== "string") {
                t.$owlWrapper.css(t.addCssSpeed(e))
            }
        },
        addCssSpeed: function(e) {
            var t = this;
            return {
                "-webkit-transition": "all " + e + "ms ease",
                "-moz-transition": "all " + e + "ms ease",
                "-o-transition": "all " + e + "ms ease",
                transition: "all " + e + "ms ease"
            }
        },
        removeTransition: function() {
            return {
                "-webkit-transition": "",
                "-moz-transition": "",
                "-o-transition": "",
                transition: ""
            }
        },
        doTranslate: function(e) {
            return {
                "-webkit-transform": "translate3d(" + e + "px, 0px, 0px)",
                "-moz-transform": "translate3d(" + e + "px, 0px, 0px)",
                "-o-transform": "translate3d(" + e + "px, 0px, 0px)",
                "-ms-transform": "translate3d(" + e + "px, 0px, 0px)",
                transform: "translate3d(" + e + "px, 0px,0px)"
            }
        },
        transition3d: function(e) {
            var t = this;
            t.$owlWrapper.css(t.doTranslate(e))
        },
        css2move: function(e) {
            var t = this;
            t.$owlWrapper.css({
                left: e
            })
        },
        css2slide: function(e, t) {
            var n = this;
            n.isCssFinish = false;
            n.$owlWrapper.stop(true, true).animate({
                left: e
            }, {
                duration: t || n.options.slideSpeed,
                complete: function() {
                    n.isCssFinish = true
                }
            })
        },
        checkBrowser: function() {
            var e = this;
            var r = "translate3d(0px, 0px, 0px)",
                i = n.createElement("div");
            i.style.cssText = "  -moz-transform:" + r + "; -ms-transform:" + r + "; -o-transform:" + r + "; -webkit-transform:" + r + "; transform:" + r;
            var s = /translate3d\(0px, 0px, 0px\)/g,
                o = i.style.cssText.match(s),
                u = o !== null && o.length === 1;
            var a = "ontouchstart" in t || navigator.msMaxTouchPoints;
            e.browser = {
                support3d: u,
                isTouch: a
            }
        },
        moveEvents: function() {
            var e = this;
            if (e.options.mouseDrag !== false || e.options.touchDrag !== false) {
                e.gestures();
                e.disabledEvents()
            }
        },
        eventTypes: function() {
            var e = this;
            var t = ["s", "e", "x"];
            e.ev_types = {};
            if (e.options.mouseDrag === true && e.options.touchDrag === true) {
                t = ["touchstart.owl mousedown.owl", "touchmove.owl mousemove.owl", "touchend.owl touchcancel.owl mouseup.owl"]
            } else if (e.options.mouseDrag === false && e.options.touchDrag === true) {
                t = ["touchstart.owl", "touchmove.owl", "touchend.owl touchcancel.owl"]
            } else if (e.options.mouseDrag === true && e.options.touchDrag === false) {
                t = ["mousedown.owl", "mousemove.owl", "mouseup.owl"]
            }
            e.ev_types["start"] = t[0];
            e.ev_types["move"] = t[1];
            e.ev_types["end"] = t[2]
        },
        disabledEvents: function() {
            var t = this;
            t.$elem.on("dragstart.owl", function(e) {
                e.preventDefault()
            });
            t.$elem.on("mousedown.disableTextSelect", function(t) {
                return e(t.target).is("input, textarea, select, option")
            })
        },
        gestures: function() {
            function o(e) {
                if (e.touches) {
                    return {
                        x: e.touches[0].pageX,
                        y: e.touches[0].pageY
                    }
                } else {
                    if (e.pageX !== r) {
                        return {
                            x: e.pageX,
                            y: e.pageY
                        }
                    } else {
                        return {
                            x: e.clientX,
                            y: e.clientY
                        }
                    }
                }
            }

            function u(t) {
                if (t === "on") {
                    e(n).on(i.ev_types["move"], f);
                    e(n).on(i.ev_types["end"], l)
                } else if (t === "off") {
                    e(n).off(i.ev_types["move"]);
                    e(n).off(i.ev_types["end"])
                }
            }

            function a(n) {
                var n = n.originalEvent || n || t.event;
                if (n.which === 3) {
                    return false
                }
                if (i.itemsAmount <= i.options.items) {
                    return
                }
                if (i.isCssFinish === false && !i.options.dragBeforeAnimFinish) {
                    return false
                }
                if (i.isCss3Finish === false && !i.options.dragBeforeAnimFinish) {
                    return false
                }
                if (i.options.autoPlay !== false) {
                    clearInterval(i.autoPlayInterval)
                }
                if (i.browser.isTouch !== true && !i.$owlWrapper.hasClass("grabbing")) {
                    i.$owlWrapper.addClass("grabbing")
                }
                i.newPosX = 0;
                i.newRelativeX = 0;
                e(this).css(i.removeTransition());
                var r = e(this).position();
                s.relativePos = r.left;
                s.offsetX = o(n).x - r.left;
                s.offsetY = o(n).y - r.top;
                u("on");
                s.sliding = false;
                s.targetElement = n.target || n.srcElement
            }

            function f(r) {
                var r = r.originalEvent || r || t.event;
                i.newPosX = o(r).x - s.offsetX;
                i.newPosY = o(r).y - s.offsetY;
                i.newRelativeX = i.newPosX - s.relativePos;
                if (typeof i.options.startDragging === "function" && s.dragging !== true && i.newRelativeX !== 0) {
                    s.dragging = true;
                    i.options.startDragging.apply(i, [i.$elem])
                }
                if (i.newRelativeX > 8 || i.newRelativeX < -8 && i.browser.isTouch === true) {
                    r.preventDefault ? r.preventDefault() : r.returnValue = false;
                    s.sliding = true
                }
                if ((i.newPosY > 10 || i.newPosY < -10) && s.sliding === false) {
                    e(n).off("touchmove.owl")
                }
                var u = function() {
                    return i.newRelativeX / 5
                };
                var a = function() {
                    return i.maximumPixels + i.newRelativeX / 5
                };
                i.newPosX = Math.max(Math.min(i.newPosX, u()), a());
                if (i.browser.support3d === true) {
                    i.transition3d(i.newPosX)
                } else {
                    i.css2move(i.newPosX)
                }
            }

            function l(n) {
                var n = n.originalEvent || n || t.event;
                n.target = n.target || n.srcElement;
                s.dragging = false;
                if (i.browser.isTouch !== true) {
                    i.$owlWrapper.removeClass("grabbing")
                }
                if (i.newRelativeX < 0) {
                    i.dragDirection = i.owl.dragDirection = "left"
                } else {
                    i.dragDirection = i.owl.dragDirection = "right"
                }
                if (i.newRelativeX !== 0) {
                    var r = i.getNewPosition();
                    i.goTo(r, false, "drag");
                    if (s.targetElement === n.target && i.browser.isTouch !== true) {
                        e(n.target).on("click.disable", function(t) {
                            t.stopImmediatePropagation();
                            t.stopPropagation();
                            t.preventDefault();
                            e(n.target).off("click.disable")
                        });
                        var o = e._data(n.target, "events")["click"];
                        var a = o.pop();
                        o.splice(0, 0, a)
                    }
                }
                u("off")
            }
            var i = this;
            var s = {
                offsetX: 0,
                offsetY: 0,
                baseElWidth: 0,
                relativePos: 0,
                position: null,
                minSwipe: null,
                maxSwipe: null,
                sliding: null,
                dargging: null,
                targetElement: null
            };
            i.isCssFinish = true;
            i.$elem.on(i.ev_types["start"], ".owl-wrapper", a)
        },
        getNewPosition: function() {
            var e = this,
                t;
            t = e.closestItem();
            if (t > e.maximumItem) {
                e.currentItem = e.maximumItem;
                t = e.maximumItem
            } else if (e.newPosX >= 0) {
                t = 0;
                e.currentItem = 0
            }
            return t
        },
        closestItem: function() {
            var t = this,
                n = t.options.scrollPerPage === true ? t.pagesInArray : t.positionsInArray,
                r = t.newPosX,
                i = null;
            e.each(n, function(s, o) {
                if (r - t.itemWidth / 20 > n[s + 1] && r - t.itemWidth / 20 < o && t.moveDirection() === "left") {
                    i = o;
                    if (t.options.scrollPerPage === true) {
                        t.currentItem = e.inArray(i, t.positionsInArray)
                    } else {
                        t.currentItem = s
                    }
                } else if (r + t.itemWidth / 20 < o && r + t.itemWidth / 20 > (n[s + 1] || n[s] - t.itemWidth) && t.moveDirection() === "right") {
                    if (t.options.scrollPerPage === true) {
                        i = n[s + 1] || n[n.length - 1];
                        t.currentItem = e.inArray(i, t.positionsInArray)
                    } else {
                        i = n[s + 1];
                        t.currentItem = s + 1
                    }
                }
            });
            return t.currentItem
        },
        moveDirection: function() {
            var e = this,
                t;
            if (e.newRelativeX < 0) {
                t = "right";
                e.playDirection = "next"
            } else {
                t = "left";
                e.playDirection = "prev"
            }
            return t
        },
        customEvents: function() {
            var e = this;
            e.$elem.on("owl.next", function() {
                e.next()
            });
            e.$elem.on("owl.prev", function() {
                e.prev()
            });
            e.$elem.on("owl.play", function(t, n) {
                e.options.autoPlay = n;
                e.play();
                e.hoverStatus = "play"
            });
            e.$elem.on("owl.stop", function() {
                e.stop();
                e.hoverStatus = "stop"
            });
            e.$elem.on("owl.goTo", function(t, n) {
                e.goTo(n)
            });
            e.$elem.on("owl.jumpTo", function(t, n) {
                e.jumpTo(n)
            })
        },
        stopOnHover: function() {
            var e = this;
            if (e.options.stopOnHover === true && e.browser.isTouch !== true && e.options.autoPlay !== false) {
                e.$elem.on("mouseover", function() {
                    e.stop()
                });
                e.$elem.on("mouseout", function() {
                    if (e.hoverStatus !== "stop") {
                        e.play()
                    }
                })
            }
        },
        lazyLoad: function() {
            var t = this;
            if (t.options.lazyLoad === false) {
                return false
            }
            for (var n = 0; n < t.itemsAmount; n++) {
                var i = e(t.$owlItems[n]);
                if (i.data("owl-loaded") === "loaded") {
                    continue
                }
                var s = i.data("owl-item"),
                    o = i.find(".lazyOwl"),
                    u;
                if (typeof o.data("src") !== "string") {
                    i.data("owl-loaded", "loaded");
                    continue
                }
                if (i.data("owl-loaded") === r) {
                    o.hide();
                    i.addClass("loading").data("owl-loaded", "checked")
                }
                if (t.options.lazyFollow === true) {
                    u = s >= t.currentItem
                } else {
                    u = true
                }
                if (u && s < t.currentItem + t.options.items && o.length) {
                    t.lazyPreload(i, o)
                }
            }
        },
        lazyPreload: function(e, t) {
            function s() {
                r += 1;
                if (n.completeImg(t.get(0)) || i === true) {
                    o()
                } else if (r <= 100) {
                    setTimeout(s, 100)
                } else {
                    o()
                }
            }

            function o() {
                e.data("owl-loaded", "loaded").removeClass("loading");
                t.removeAttr("data-src");
                n.options.lazyEffect === "fade" ? t.fadeIn(400) : t.show();
                if (typeof n.options.afterLazyLoad === "function") {
                    n.options.afterLazyLoad.apply(this, [n.$elem])
                }
            }
            var n = this,
                r = 0;
            if (t.prop("tagName") === "DIV") {
                t.css("background-image", "url(" + t.data("src") + ")");
                var i = true
            } else {
                t[0].src = t.data("src")
            }
            s()
        },
        autoHeight: function() {
            function s() {
                i += 1;
                if (t.completeImg(n.get(0))) {
                    o()
                } else if (i <= 100) {
                    setTimeout(s, 100)
                } else {
                    t.wrapperOuter.css("height", "")
                }
            }

            function o() {
                var n = e(t.$owlItems[t.currentItem]).height();
                t.wrapperOuter.css("height", n + "px");
                if (!t.wrapperOuter.hasClass("autoHeight")) {
                    setTimeout(function() {
                        t.wrapperOuter.addClass("autoHeight")
                    }, 0)
                }
            }
            var t = this;
            var n = e(t.$owlItems[t.currentItem]).find("img");
            if (n.get(0) !== r) {
                var i = 0;
                s()
            } else {
                o()
            }
        },
        completeImg: function(e) {
            if (!e.complete) {
                return false
            }
            if (typeof e.naturalWidth !== "undefined" && e.naturalWidth == 0) {
                return false
            }
            return true
        },
        onVisibleItems: function() {
            var t = this;
            if (t.options.addClassActive === true) {
                t.$owlItems.removeClass("active")
            }
            t.visibleItems = [];
            for (var n = t.currentItem; n < t.currentItem + t.options.items; n++) {
                t.visibleItems.push(n);
                if (t.options.addClassActive === true) {
                    e(t.$owlItems[n]).addClass("active")
                }
            }
            t.owl.visibleItems = t.visibleItems
        },
        transitionTypes: function(e) {
            var t = this;
            t.outClass = "owl-" + e + "-out";
            t.inClass = "owl-" + e + "-in"
        },
        singleItemTransition: function() {
            function u(e, t) {
                return {
                    position: "relative",
                    left: e + "px"
                }
            }
            var e = this;
            e.isTransition = true;
            var t = e.outClass,
                n = e.inClass,
                r = e.$owlItems.eq(e.currentItem),
                i = e.$owlItems.eq(e.prevItem),
                s = Math.abs(e.positionsInArray[e.currentItem]) + e.positionsInArray[e.prevItem],
                o = Math.abs(e.positionsInArray[e.currentItem]) + e.itemWidth / 2;
            e.$owlWrapper.addClass("owl-origin").css({
                "-webkit-transform-origin": o + "px",
                "-moz-perspective-origin": o + "px",
                "perspective-origin": o + "px"
            });
            var a = "webkitAnimationEnd oAnimationEnd MSAnimationEnd animationend";
            i.css(u(s, 10)).addClass(t).on(a, function() {
                e.endPrev = true;
                i.off(a);
                e.clearTransStyle(i, t)
            });
            r.addClass(n).on(a, function() {
                e.endCurrent = true;
                r.off(a);
                e.clearTransStyle(r, n)
            })
        },
        clearTransStyle: function(e, t) {
            var n = this;
            e.css({
                position: "",
                left: ""
            }).removeClass(t);
            if (n.endPrev && n.endCurrent) {
                n.$owlWrapper.removeClass("owl-origin");
                n.endPrev = false;
                n.endCurrent = false;
                n.isTransition = false
            }
        },
        owlStatus: function() {
            var e = this;
            e.owl = {
                userOptions: e.userOptions,
                baseElement: e.$elem,
                userItems: e.$userItems,
                owlItems: e.$owlItems,
                currentItem: e.currentItem,
                prevItem: e.prevItem,
                visibleItems: e.visibleItems,
                isTouch: e.browser.isTouch,
                browser: e.browser,
                dragDirection: e.dragDirection
            }
        },
        clearEvents: function() {
            var r = this;
            r.$elem.off(".owl owl mousedown.disableTextSelect");
            e(n).off(".owl owl");
            e(t).off("resize", r.resizer)
        },
        unWrap: function() {
            var e = this;
            if (e.$elem.children().length !== 0) {
                e.$owlWrapper.unwrap();
                e.$userItems.unwrap().unwrap();
                if (e.owlControls) {
                    e.owlControls.remove()
                }
            }
            e.clearEvents();
            e.$elem.attr("style", e.$elem.data("owl-originalStyles") || "").attr("class", e.$elem.data("owl-originalClasses"))
        },
        destroy: function() {
            var e = this;
            e.stop();
            clearInterval(e.checkVisible);
            e.unWrap();
            e.$elem.removeData()
        },
        reinit: function(t) {
            var n = this;
            var r = e.extend({}, n.userOptions, t);
            n.unWrap();
            n.init(r, n.$elem)
        },
        addItem: function(e, t) {
            var n = this,
                i;
            if (!e) {
                return false
            }
            if (n.$elem.children().length === 0) {
                n.$elem.append(e);
                n.setVars();
                return false
            }
            n.unWrap();
            if (t === r || t === -1) {
                i = -1
            } else {
                i = t
            }
            if (i >= n.$userItems.length || i === -1) {
                n.$userItems.eq(-1).after(e)
            } else {
                n.$userItems.eq(i).before(e)
            }
            n.setVars()
        },
        removeItem: function(e) {
            var t = this,
                n;
            if (t.$elem.children().length === 0) {
                return false
            }
            if (e === r || e === -1) {
                n = -1
            } else {
                n = e
            }
            t.unWrap();
            t.$userItems.eq(n).remove();
            t.setVars()
        }
    };
    e.fn.owlCarousel = function(t) {
        return this.each(function() {
            if (e(this).data("owl-init") === true) {
                return false
            }
            e(this).data("owl-init", true);
            var n = Object.create(i);
            n.init(t, this);
            e.data(this, "owlCarousel", n)
        })
    };
    e.fn.owlCarousel.options = {
        items: 5,
        itemsCustom: false,
        itemsDesktop: [1199, 4],
        itemsDesktopSmall: [979, 3],
        itemsTablet: [768, 2],
        itemsTabletSmall: false,
        itemsMobile: [479, 1],
        singleItem: false,
        itemsScaleUp: false,
        slideSpeed: 200,
        paginationSpeed: 800,
        rewindSpeed: 1e3,
        autoPlay: false,
        stopOnHover: false,
        navigation: false,
        navigationText: ["prev", "next"],
        rewindNav: true,
        scrollPerPage: false,
        pagination: true,
        paginationNumbers: false,
        responsive: true,
        responsiveRefreshRate: 200,
        responsiveBaseWidth: t,
        baseClass: "owl-carousel",
        theme: "owl-theme",
        lazyLoad: false,
        lazyFollow: true,
        lazyEffect: "fade",
        autoHeight: false,
        jsonPath: false,
        jsonSuccess: false,
        dragBeforeAnimFinish: true,
        mouseDrag: true,
        touchDrag: true,
        addClassActive: false,
        transitionStyle: false,
        beforeUpdate: false,
        afterUpdate: false,
        beforeInit: false,
        afterInit: false,
        beforeMove: false,
        afterMove: false,
        afterAction: false,
        startDragging: false,
        afterLazyLoad: false
    }
})(jQuery, window, document)
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 0, repeated: 1) - SHA256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                    


HTTP Transactions (82)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 04 Jul 2022 11:54:24 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Kl6qqu7dHGgTPfQ_ih6coGPg-kSGpLywaX453U3h4LeHB946LH3DXw==
Age: 3289


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    c98c56ff7bc7ba547517573963f425e3
Sha1:   58c8dccc28ecd76424af6ed9988575a35cf8a0c2
Sha256: d57d9d5e87e8761ffdf790ff762307f5c823e8e8241781797373c10e076ec44e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5CA12512DFBE8A007255191678A4ECD570026D865AE741C0D3025D8FE1A58659"
Last-Modified: Mon, 04 Jul 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8415
Expires: Mon, 04 Jul 2022 15:09:28 GMT
Date: Mon, 04 Jul 2022 12:49:13 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.64
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 04 Jul 2022 03:26:45 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Wk0ntjm0BFgY0OhrS_iH-5anwDIVWhVf5emx5ZRvhEW9rhp7IwZklA==
age: 33750
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Mon, 04 Jul 2022 12:49:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 04 Jul 2022 11:52:20 GMT
Cache-Control: max-age=3600
Expires: Mon, 04 Jul 2022 12:18:20 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fUp5qY35Zi8Aulawvvgv7ESJCl5u4LSPU-S7bZBx6cPxMJ0oDp3zog==
Age: 3414


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /doc/bME/o3Y/j3S/LR3cf33.zip HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         89.39.83.31
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 04 Jul 2022 12:49:13 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Set-Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_e4ec1480dbba72ea04f2654d0d0333%7C%7C1657111754%7C%7C1657108154%7C%7C6ddb66cd1f46d8e2e642bcc9075a19b6; expires=Wed, 06-Jul-2022 12:49:14 GMT; Max-Age=172800; path=/; HttpOnly
Location: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4633
Cache-Control: 'max-age=158059'
Date: Mon, 04 Jul 2022 12:49:14 GMT
Last-Modified: Mon, 04 Jul 2022 11:32:01 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3eVxH3BibV/tKzxzFibDZQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.43.61.95
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DC6xNSa7nsdpbEGVwX0G1sSl31w=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5282
Expires: Mon, 04 Jul 2022 14:17:17 GMT
Date: Mon, 04 Jul 2022 12:49:15 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5282
Expires: Mon, 04 Jul 2022 14:17:17 GMT
Date: Mon, 04 Jul 2022 12:49:15 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5282
Expires: Mon, 04 Jul 2022 14:17:17 GMT
Date: Mon, 04 Jul 2022 12:49:15 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5282
Expires: Mon, 04 Jul 2022 14:17:17 GMT
Date: Mon, 04 Jul 2022 12:49:15 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1a7b42f-503a-4cd9-8182-c62c15fd9aae.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6375
x-amzn-requestid: a43ee797-ff84-4cf6-9905-8904a93e9952
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UtcBsHteIAMFZfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c20d3d-6ab67ea95c91261019e2fe74;Sampled=0
x-amzn-remapped-date: Sun, 03 Jul 2022 21:42:21 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8wpN07on6ZS6my8Ax0tnO2D5BzvNr-D4QCvXoTV75Rg3kA9D0Kq3xw==
via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 03 Jul 2022 21:58:56 GMT
age: 53419
etag: "a20fd925f64dcec2f2ad1fbf96576dba7a4db86b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6375
Md5:    653c1ab8e32aa165297ca981f190de30
Sha1:   a20fd925f64dcec2f2ad1fbf96576dba7a4db86b
Sha256: c7a9a0ca953a70a98dd95c119928af0d2ad1311695cd9b087dbd7000b633c10b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20165510-22d4-4fd3-a7a0-a05de8f30a73.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8819
x-amzn-requestid: e6b0eb97-425a-40cd-90f2-5ad0a29f6d1c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UtbSXF_OoAMFZvg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c20c0e-05a61ec7164824ac14a8123c;Sampled=0
x-amzn-remapped-date: Sun, 03 Jul 2022 21:37:18 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TwFB0wPQvtAedduPHe6AQZ5OvQHJuBuy2DmoUZxddGnEdKI3bMSrDg==
via: 1.1 ece5d4a731ece5ff46c564ab2b946ede.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 03 Jul 2022 22:00:39 GMT
age: 53316
etag: "70b335824065f60c310468051b28e3d9b3a5d576"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8819
Md5:    20c802789b33d6fb0e0281e414dc026b
Sha1:   70b335824065f60c310468051b28e3d9b3a5d576
Sha256: ea8dd804ffee3932e68eabd3ea401de17f3341e59136227a0c73b886cf3eaf61
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F612de43b-a086-46ac-8411-4ea92f4e2986.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9691
x-amzn-requestid: 050aaa7d-e6d7-47f2-8a47-0a73e686585e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UtbR2Gn8oAMFphg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c20c0b-6b4ce8d231a1ad9010832949;Sampled=0
x-amzn-remapped-date: Sun, 03 Jul 2022 21:37:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: HebGuB1bkkJ206CvRboGBvl4lOO5WGCj5ldchTbO2Ek8YhKQ0Q3gpg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 03 Jul 2022 21:44:20 GMT
age: 54295
etag: "f7bfd4701af5e6f3c456433ac47cc619e26a986f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9691
Md5:    30e998b98bc262213ba27f0afcae191e
Sha1:   f7bfd4701af5e6f3c456433ac47cc619e26a986f
Sha256: d059a00e67531223f7e25aca9fe7afc6f1da54d60da0d016e2dd2ab04af48494
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6092705b-a730-4ef6-b5e0-054a41533f39.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9590
x-amzn-requestid: a8dd72e6-701d-4a3b-8037-4b202fa6f941
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ua_WQHtpIAMFg_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62baac27-1c391b355d2b4aa165c63b54;Sampled=0
x-amzn-remapped-date: Tue, 28 Jun 2022 07:22:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7N60UZKQhOQukLOUq3NObjbyzEfPQELZRQq_z1ODgestsBbeAeaarg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 04 Jul 2022 11:20:10 GMT
age: 5345
etag: "12a8ae0bd9f1d4c19bc634a9cbf7a16d81efa7d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9590
Md5:    012d3fe7906ec0557a83d5e5ceda83b4
Sha1:   12a8ae0bd9f1d4c19bc634a9cbf7a16d81efa7d0
Sha256: cfc95bd6ef03032ad63bedc8629677bffa269477607a130d8aae4c4435c74379
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881dc336-ba45-4163-a10a-70d2770e36fb.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 12090
x-amzn-requestid: 949f9618-4fbb-45d0-bb11-a4b5f5ec8654
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UtbR1G0CIAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c20c0b-3c9166b94e5626ea66ea4610;Sampled=0
x-amzn-remapped-date: Sun, 03 Jul 2022 21:37:15 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y7mnbF2xtkvX-pcLBo5VpTIGhLFZlf1N8GOxTNCW12YSUkIR6U28VA==
via: 1.1 27f6faf9790b5a2877fb528fa31f7922.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 03 Jul 2022 21:44:20 GMT
age: 54295
etag: "0bbc8043425f3f96baaa4a73782f6b8f399c4e7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12090
Md5:    e15767b142f1f21b962bbde09cd89208
Sha1:   0bbc8043425f3f96baaa4a73782f6b8f399c4e7d
Sha256: d2f1682703d0512c358a29fdb00b1f6ea2818c7670dcd2ca3b6d7ba0653014d9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66b20085-8cd8-4748-ac31-58ca1a241d34.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9347
x-amzn-requestid: 6d8b5c8e-c88f-4884-9676-e48de12c1cf6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UtcKdFr9IAMF51g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c20d75-3c3915f8408903687548b539;Sampled=0
x-amzn-remapped-date: Sun, 03 Jul 2022 21:43:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e-tUuJFvLJo29q-ngNGReew8jUiJ2vc4bvhKw4QV2DCK7OVvNen_Sw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 03 Jul 2022 21:58:56 GMT
age: 53419
etag: "15b180ba60ecc0d9164ec35b33255f2097f409dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9347
Md5:    351e41f043f5fa1d3c4e4a742a556492
Sha1:   15b180ba60ecc0d9164ec35b33255f2097f409dd
Sha256: f51c2423e80c3a7127c9e1a3ad1af2b862e9ffa082c9010c590b0a99c4109637
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ajax/libs/jqueryui/1.11.2/themes/smoothness/jquery-ui.css HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.138
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 8060
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 01 Jul 2022 12:31:00 GMT
expires: Sat, 01 Jul 2023 12:31:00 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 260295
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/css; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2363)
Size:   8060
Md5:    1930141d1ccd3409ebbe8c2db4c43fcf
Sha1:   8d6b59aa365bf686ab7408353fd232d7ca7feab5
Sha256: f2094ee57e84b8403b58f45dbe68411e3b02fe3f0cb465fdec48b206ab66d48f
                                        
                                            GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.10.207
HTTP/2 200 OK
                                        
date: Mon, 04 Jul 2022 12:49:15 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 565, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 2021-06-08 19:04:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: e9a84d03a1f7c6aa17012c712a6e5dd5
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 2383203
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7257fadaade41c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27303)
Size:   6638
Md5:    150a707848335d30df958014113e4cbc
Sha1:   b7fe7c3c83d8426421f2068b1726a84951ff71fe
Sha256: 028e22c4d1cdbb6e82897859980a5181f8ec56f88d31e1ce7a2e84231c1ee2bc
                                        
                                            GET /gtm.js?id=GTM-KTJWX2Q HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
                                        
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 04 Jul 2022 12:49:16 GMT
expires: Mon, 04 Jul 2022 12:49:16 GMT
cache-control: private, max-age=900
last-modified: Mon, 04 Jul 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45945
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1581)
Size:   45945
Md5:    c899d5be26894e76e190c800a2bfe7d4
Sha1:   2efbbcb8557725ad6350ea86038c6e965396d351
Sha256: 23b2ac819a411a102cb6a89143ed7e2f98338f37dfb1476f8cb85b5a863338e6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.9.0 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:39:09 GMT
ETag: "1345-5da3f683a2e82-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1286
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (4933), with no line terminators
Size:   1286
Md5:    d2d7f4c273d3b4cd972a337969b14754
Sha1:   b441775d1dcba61a5234df0256a40c7f58a8b059
Sha256: fcfdbdf2a45072bbb545934d419cf76e5272d3193742eb8b659e938cafab4cdf
                                        
                                            GET /gtag/js?id=UA-106162848-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.72
HTTP/2 200 OK
                                        
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 04 Jul 2022 12:49:16 GMT
expires: Mon, 04 Jul 2022 12:49:16 GMT
cache-control: private, max-age=900
last-modified: Mon, 04 Jul 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 40334
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1596)
Size:   40334
Md5:    3c77049c030df06e808cbb83a4cadfdb
Sha1:   42450eafbbc4640a5aa22a2b0887c06bd4bdb72e
Sha256: 5c5760d01a9945a045ba07f8b8a43566f44630b9f1ef413c96453e20e4efcad6
                                        
                                            GET /doc/bME/o3Y/j3S/LR3cf33.zip HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         89.39.83.31
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 04 Jul 2022 12:49:14 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://farmacia-organika.ro/wp-json/>; rel="https://api.w.org/"
Set-Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; expires=Wed, 06-Jul-2022 12:49:15 GMT; Max-Age=172800; path=/; secure; HttpOnly
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23474)
Size:   165211
Md5:    6e94ff4b2a06c08d275e624d1249f505
Sha1:   314891598a487186dddff589da70be55f503ca35
Sha256: b724f3efb84f85ac21d4272d0dd1a1e78c0e8450c20c907877fbecab0c4c1b54

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/ajax-search-for-woocommerce/assets/css/style.min.css?ver=1.18.1 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Wed, 22 Jun 2022 08:41:12 GMT
ETag: "6d2e-5e2054ca996ed-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 5077
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (27949)
Size:   5077
Md5:    27bb4e87a0b6abf68deaa29ed8987f09
Sha1:   4fa66802b45a13606520928c3edb7e2123ff20b6
Sha256: 4d0e653d2265bb899b55112eb6b272471dc2cdbb04726eb7e2a472a0e91c6036
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.9.0 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:39:10 GMT
ETag: "333a7-5da3f683a7ca2-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 22147
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size:   22147
Md5:    b76a3b581159ef8b7af537f21a8987a5
Sha1:   f4fda12a4b6a1224aac48e69124f4acfba2e42bf
Sha256: 5762e246dcc1c89862a3c28fe756932f3bdb7b444a30d52b9d5a082fad1693b0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.12 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 14:10:12 GMT
ETag: "6f602-5506de5495900-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 43844
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   43844
Md5:    8642ba13aa690384cbbe0b22790def1b
Sha1:   fcc63ec24d9c15e56a19921d7aa7776498b31a2c
Sha256: c0d0b8ca26f8a0f9a99c893223cb87ffbea59ba0b3af9212bc66593e341e8792

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:40:10 GMT
ETag: "aab-5da3f6bd04a64-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 972
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   972
Md5:    8bf268dfcca7cb20719b7ea14373ef4a
Sha1:   58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
Sha256: eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce-email-inquiry-cart-options/assets/css/wc_email_inquiry_style.css?ver=2.7.0 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:40:28 GMT
ETag: "ef7-5da3f6ce8f62d-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1040
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1040
Md5:    1fd0b01c59e6d2d2c086aae4ee51f2d9
Sha1:   3bbaa95ca2252fcb56f28acaa8624f1724383d47
Sha256: 47c138f74531fdc4ce963dab8ba52595ba0a33d4f08bf23bd2e62dc1e4d49b74
                                        
                                            GET /wp-content/plugins/mailchimp-for-wp/assets/css/form-basic.css?ver=4.8.7 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:34:46 GMT
ETag: "692-5da3f58875aee-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 564
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1682), with no line terminators
Size:   564
Md5:    6205092ad27790a14eed0ea9cf67d3d9
Sha1:   60940a311152a9f199bfba9a30b3aa2a96adb574
Sha256: faafc2df9989625a6a3a1af4a3f31eef0f33f5c496e43278e14ea30a08403ac7

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/sass/wc_email_inquiry_cart_options.min.css?ver=1648202677 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Fri, 25 Mar 2022 10:04:37 GMT
ETag: "e68-5db0817221a10-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 790
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3688), with no line terminators
Size:   790
Md5:    a440e7908b7f243826f0d611dc91fae1
Sha1:   e3bf98c107317c33e99f387fc5dc4f2dbf7e73f4
Sha256: 28581645b84bd5fa10b74d8f259fe6dacafeafca8e0d40ae8d4e30a9d479789a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/xstore/css/font-awesome.min.css?ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 15:10:04 GMT
ETag: "7946-5506ebb62eb00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 7064
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (30884)
Size:   7064
Md5:    cb4b2750d14f5b4888b6d96dd9477664
Sha1:   cc146e9e654c39a5bd509ee4ee60e973001e9933
Sha256: 13c5697df63846ed7c5d44834b915e9d9fccf16a980f956a66c2da3ef9e3ca1a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
ETag: "2bd8-5b45debe27b80-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 4169
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   4169
Md5:    5629711d7fdd5b28441bac39b851299f
Sha1:   4e0bf2b7383097f7c352023a1b1b1b48a50356b6
Sha256: 44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/xstore/css/bootstrap.min.css?ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 15:10:04 GMT
ETag: "1b2b4-5506ebb62eb00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 18256
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   18256
Md5:    2e8a76c02e6e99e35c362914213dff92
Sha1:   6314e9b33bd48110488c2aa6725fe34f303245f3
Sha256: dbae29df598fc85f088261f3caab3f47d99ce157df5d947e6d934addb439996c

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.3.1 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:39:09 GMT
ETag: "253d-5da3f68389071-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 3493
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (9139)
Size:   3493
Md5:    d6c87c7221011e280d3bb60eb9c598e4
Sha1:   93aa9b7f17b91719689519d4439c10d884063296
Sha256: 0acd2e4b6cc50829b1fb1e12b55ed2b72b201631e908a80171d39ef4a9570724
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.3.1 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:39:09 GMT
ETag: "bdd-5da3f683880d1-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1086
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (3037), with no line terminators
Size:   1086
Md5:    f46e666160800ab91bb12cccc7555662
Sha1:   63b98922823c1f54ed1a96e1dcd0c227e3e51419
Sha256: f5cc9892eb6b336791126838b53edfe9dc4b12b99aae085cadf52d8e734f5c68
                                        
                                            GET /pagead/conversion.js HTTP/1.1 
Host: www.googleadservices.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.217.21.162
HTTP/2 200 OK
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 04 Jul 2022 12:49:16 GMT
expires: Mon, 04 Jul 2022 12:49:16 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3151637731994422235
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 17003
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2154)
Size:   17003
Md5:    ccc7d58a0d9fc81ecdd013b48818096f
Sha1:   f43048d4f5915fa611f86978d553c8060ae16a10
Sha256: af462ab0c711a0981c98c334480f9b07e75281c9d6e8aaa965c57901cf156cee
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=4.12 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 14:10:12 GMT
ETag: "37f-5506de5495900-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 351
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   351
Md5:    caa6ca5d23d1adf35e63b219631fff8e
Sha1:   786acb0cf5a9033939c4c4b8f5c4109e2e15401f
Sha256: 50973c0a98e9463c4417b2ccd9424a5f89a9924b80878548f19422b25d23d901

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/xstore/js/head.min.js?ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 15:10:04 GMT
ETag: "dadc-5506ebb62eb00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 18879
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (33004)
Size:   18879
Md5:    b9e994aac6ade5848b12912d94a080c6
Sha1:   7ed227c9a6f7c22c9adddd7c0ffd732fedfcedc2
Sha256: 518b427ac32abe6704e7c7bf80078fcab1042aba756d1e0984cc12f93c2709ae

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css?family=Lato%3A300%2C400%2C700%2C900%2C300italic%2C400italic&ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.10
HTTP/2 200 OK
                                        
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 04 Jul 2022 12:49:16 GMT
date: Mon, 04 Jul 2022 12:49:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15224)
Size:   5399
Md5:    d53b3f6770be83f6ea8b1935d23346ad
Sha1:   33f798a009fe0882f0a5d3ea2d8f16d9072fb0d3
Sha256: dba99e8358e4c6588e70606812e5128fea614ec28cbc495db9b255b2b9ababb4
                                        
                                            GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Fri, 25 Mar 2022 10:03:03 GMT
ETag: "195e-5db08117d9f9c-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 2422
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6494), with no line terminators
Size:   2422
Md5:    c16f2821df385b57b616cb7c867e1253
Sha1:   6327ed04bc2d7c294db8358cdf8b06ff62c3eb13
Sha256: ff1c71b966df6e007b9175772a52be12d7dd9b65aafcb78a55046f60e792ae42
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Fri, 25 Mar 2022 10:03:03 GMT
ETag: "4b3d-5db08117d97cc-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 7013
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (19111)
Size:   7013
Md5:    3d97cdcc7f05c2b5782d39b135850bc3
Sha1:   d4427472e22221d71413745415a7b1e959da28f3
Sha256: 3b9a4010e3156a9143b38a24e91a5b34d898b1eeab165f49cda8c16212a968f7

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
ETag: "15db1-5bd3006388300-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 30908
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30908
Md5:    9640915738503451aa21181699feab5b
Sha1:   c053eaf36ef0da96619706b3abda326305063bd6
Sha256: f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.3.1 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:39:09 GMT
ETag: "72a-5da3f6838abca-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 982
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1668)
Size:   982
Md5:    e66463f2023b738680c9bdefece69a37
Sha1:   315dc8e6ebdfb18c662851244ee33e2758ad3c83
Sha256: fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.3.1 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:39:09 GMT
ETag: "85b-5da3f683888a1-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 794
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2139), with no line terminators
Size:   794
Md5:    29307e8dec33cf3411ca4e1f2c84e9d0
Sha1:   484402289464d7ffb1475827f3438329d520bfc6
Sha256: a2db59efaa416ef0c9d5d58f142cd5e44c475348cff20a664586fd3cda1b5f5b
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.3.1 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:39:09 GMT
ETag: "b7a-5da3f683884b9-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1039
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2938), with no line terminators
Size:   1039
Md5:    45db3d2887c26700a51bf469e3bb3aa1
Sha1:   d070b5fb53d2fbb66964bbfd482270b855d0ee96
Sha256: 1abc0cff49f82d9a063c04cd086b991af6ad00467efc4cb8d8d4e3c9a0f95777
                                        
                                            GET /wp-content/plugins/woo-confirmation-email/assets/js/woo-confirmation-email-admin.js?ver=3.5.0 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 09:06:41 GMT
ETag: "95f-5da3e1d81052b-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 609
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   609
Md5:    16caa86480b4f28a82e91b2140b368f9
Sha1:   578dafc85128d6e7d95f199c14c898e36435cd78
Sha256: 11ed66e60e925e0fd0ec71791de5e0bc34219884540b864a3cfa17b746ebdae1
                                        
                                            GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Fri, 25 Mar 2022 10:03:03 GMT
ETag: "5dc-5db08117cb924-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 705
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1465)
Size:   705
Md5:    19bbc441740a1a6f3a64155bdfc3dba5
Sha1:   55a4beb22cd76a1d66c4a6947968408f337b4890
Sha256: ed5fdb40d566079267ca224b2d9bbe7235a66ce393c083c28c64be9c24a0dfda

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/xstore/js/etheme.min.js?ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 15:10:04 GMT
ETag: "8871-5506ebb62eb00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 10095
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32002)
Size:   10095
Md5:    25656c9752012587f2a713db97455a2d
Sha1:   7944823485ed0d12ca3bbf08e88793d531a37828
Sha256: 23ab4ca722add09ce04076bc48372a65f6eb67f0f7a9bf9500882e4f7e0c7824
                                        
                                            GET /wp-content/themes/xstore/style.css?ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Fri, 25 Mar 2022 10:29:27 GMT
ETag: "b682a-5db086fe57aad-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (1335)
Size:   106964
Md5:    fafbd0c7dd161da585a7e115b7b8be6d
Sha1:   e1aef4d0bebfb3fc3ae5f1370b850fea29169c52
Sha256: d7082a2ec628324562d1eb22cded00cafbc11dcdc587871504ab5a89120e813b

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/xstore/js/plugins.min.js?ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 15:10:04 GMT
ETag: "45a19-5506ebb62eb00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (32035)
Size:   85626
Md5:    1ad2a18045bc392984b6a510530a0f37
Sha1:   844feaba3fc9dce5000aede55090a3c4bda99189
Sha256: ee50e09c1299ec6840178ea7c289dee6874ba4c6ccc36f72949e910639e32b86

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2017/10/info.png HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Sat, 28 Oct 2017 16:18:37 GMT
ETag: "922-55c9dc1f17140"
Accept-Ranges: bytes
Content-Length: 2338
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size:   2338
Md5:    2ba6023fd720b5890e582f24df1b1339
Sha1:   aa2af6ba4b529f2aafb9963b0240b52c74ffbb1d
Sha256: e43d911c5653a864f3977f14232749da4459f2e766a4eb23ede4b84f58cec465
                                        
                                            GET /wp-content/uploads/2017/04/Organika-Com-Logo.png HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Sat, 28 Oct 2017 15:05:38 GMT
ETag: "2008-55c9cbcef3480"
Accept-Ranges: bytes
Content-Length: 8200
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 250 x 150, 8-bit colormap, non-interlaced\012- data
Size:   8200
Md5:    1f94d9fa8ad0099dcf537078fb392f62
Sha1:   40cbc2f1e4d4daa42de0b73c6736cbba40bad624
Sha256: 7d49d7139cabb37cd25c9329ce5fe07bb2ddb370c8966c185b87cf98e363e8e2
                                        
                                            GET /wp-content/uploads/2017/10/doctor.png HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Sat, 28 Oct 2017 16:18:58 GMT
ETag: "99a-55c9dc331e080"
Accept-Ranges: bytes
Content-Length: 2458
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size:   2458
Md5:    25b3243dd1516fadf120f3ea15b66264
Sha1:   7fd85099d59cdba269da6532ce3de1e6e1b8550f
Sha256: bfd1f11a7fd60f63e57dfa6257f1e7429da0b4d226f4b43599369471025a83d4
                                        
                                            GET /wp-content/themes/xstore/images/preloader.png HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Sat, 28 Oct 2017 10:39:56 GMT
ETag: "5d7a-55c9906b79700"
Accept-Ranges: bytes
Content-Length: 23930
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size:   23930
Md5:    69d422030f88f3a1c0818ebc3c57174e
Sha1:   fe649847033c2cc2fff22953d29a30d77b0316cb
Sha256: c245f92ddfeffd6ae6b90ea55ad909e0e12e721dfd04261631f258abf58ba9f2
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/woocommerce-email-inquiry-cart-options/assets/images/loading.gif HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:40:28 GMT
ETag: "f9e2-5da3f6ce8f62d"
Accept-Ranges: bytes
Content-Length: 63970
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 200\012- data
Size:   63970
Md5:    f101cdc8d95a8266529d17d2140444cf
Sha1:   c6600b6a96f07f1e00d66acb7c02255e052be629
Sha256: 3d5e8c674599fd255d1e209e8a45d3f9f0b6aab4365984c86e13de7af8fea585
                                        
                                            GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://farmacia-organika.ro
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Jun 2022 17:10:21 GMT
expires: Wed, 28 Jun 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 502735
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size:   23580
Md5:    e1b3b5908c9cf23dfb2b9c52b9a023ab
Sha1:   fcd4136085f2a03481d9958cc6793a5ed98e714c
Sha256: 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://farmacia-organika.ro
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Jun 2022 19:34:08 GMT
expires: Thu, 29 Jun 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 407708
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2017/04/favicon-organika-1-205x205.png HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 12:49:17 GMT
Server: Apache
Last-Modified: Mon, 23 Oct 2017 14:38:40 GMT
ETag: "6c0d-55c37c7499c00"
Accept-Ranges: bytes
Content-Length: 27661
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:17 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 205 x 205, 8-bit/color RGBA, non-interlaced\012- data
Size:   27661
Md5:    ab53a601773d55ea4f72cdfcdb59a6c6
Sha1:   516310b74535079b1aa2b79172da7d9e168ded46
Sha256: 4cd81f02737d66bf9a375aed1f92ae57fbb8d0fb61df81187aafeef01081c350
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Mon, 04 Jul 2022 12:41:12 GMT
expires: Mon, 04 Jul 2022 14:41:12 GMT
cache-control: public, max-age=7200
age: 485
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/viewthroughconversion/835067631/?random=1656938956586&cv=9&fst=1656938956586&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Ffarmacia-organika.ro%2Fdoc%2FbME%2Fo3Y%2Fj3S%2FLR3cf33.zip&tiba=Nu%20am%20g%C4%83sit%20pagina%20-%20Farmacia%20Organika&hn=www.googleadservices.com&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.98
HTTP/2 200 OK
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 04 Jul 2022 12:49:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1047
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 04-Jul-2022 13:04:17 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2268), with no line terminators
Size:   1047
Md5:    c46a7ea1e6567798ff1896b857687aeb
Sha1:   4883ff8a4634356c8bf2f54e7022a36eee8fd70c
Sha256: d732ec221d2a45941ea621790ed7a83ae0b428dd9aeed9182a26d2f1aba7c4e0
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-106162848-1&cid=789651334.1656938957&jid=822222290&gjid=1598225451&_gid=1777544457.1656938957&_u=YEBAAUAAAAAAAC~&z=103194470 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://farmacia-organika.ro
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         173.194.222.155
HTTP/2 200 OK
                                        
access-control-allow-origin: https://farmacia-organika.ro
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 04 Jul 2022 12:49:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            GET /pagead/1p-user-list/835067631/?random=1656938956586&cv=9&fst=1656936000000&num=1&guid=ON&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=0&url=https%3A%2F%2Ffarmacia-organika.ro%2Fdoc%2FbME%2Fo3Y%2Fj3S%2FLR3cf33.zip&tiba=Nu%20am%20g%C4%83sit%20pagina%20-%20Farmacia%20Organika&fmt=3&is_vtc=1&random=981250598&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 04 Jul 2022 12:49:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/835067631/?random=1656938956586&cv=9&fst=1656936000000&num=1&guid=ON&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=0&url=https%3A%2F%2Ffarmacia-organika.ro%2Fdoc%2FbME%2Fo3Y%2Fj3S%2FLR3cf33.zip&tiba=Nu%20am%20g%C4%83sit%20pagina%20-%20Farmacia%20Organika&fmt=3&is_vtc=1&random=981250598&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 04 Jul 2022 12:49:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /wp-content/themes/xstore/images/404-bg.png HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/wp-content/themes/xstore/style.css?ver=ffc150dadb158112032d70bbf4fdc8fb
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 15:10:04 GMT
ETag: "2cbe95-5506ebb62eb00"
Accept-Ranges: bytes
Content-Length: 2932373
Cache-Control: max-age=31536000
Expires: Tue, 04 Jul 2023 12:49:16 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 1920 x 1080, 8-bit/color RGB, non-interlaced\012- data
Size:   2932373
Md5:    510dbd9da99188760fbdc51b949ff444
Sha1:   7a2daf571b14edeba13f6ed659440c7b75f808d9
Sha256: 3eb7d83ba381b3635fb14da3a3573feb75eedfce69e8b201c5f938307ff0b529
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /?wc-ajax=get_refreshed_fragments HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://farmacia-organika.ro
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
                                        
Date: Mon, 04 Jul 2022 12:49:16 GMT
Server: Apache
Access-Control-Allow-Origin: https://farmacia-organika.ro
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 332
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- exported SGML document, ASCII text, with very long lines (681), with no line terminators
Size:   332
Md5:    c26924739e571bb84c19c9e7877f7d4c
Sha1:   ea4801e7055cf655ac9d4606fa53358bcc19bf7c
Sha256: b89f21da0f5ba83900286a1041baf72d703a72793500247159ef34cf2ae6b235

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Jul 2022 12:49:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-admin/admin-ajax.php?action=etheme_wishlist_fragments HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_0a052ad9df467f3f397f90e2d20d6b%7C%7C1657111755%7C%7C1657108155%7C%7Ce56cb24915f18f2f43766103a8fd9c0a; _gcl_au=1.1.1720619224.1656938956
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
                                        
Date: Mon, 04 Jul 2022 12:49:17 GMT
Server: Apache
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
Content-Length: 268
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (459), with no line terminators
Size:   268
Md5:    6562c21ef30b8270a7e651a08537ebf6
Sha1:   d7086f4902da55a5e89b96503d33fb112282469e
Sha256: 364ff4332b4fdba277f4da919ca1094c1ef1057b48c4b41c64f4a67d782262db