Report - polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie

Report Overview

Submitted URL
polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
IP
196.247.58.211
ASN
#41564 Orion Network Limited
Submitted
2024-04-24 17:43:05
Access
public
Website Title
Buty Salomon Sneakersy męskie Najtaniej - Rozmiar eu 46
Final URL
polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
92

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
polandsalomon.com	unknown	2021-07-16	2021-07-16	2024-04-14	1.1 kB	41 kB	196.247.58.211
www.polandsalomon.com	unknown	unknown	No data	No data	20 kB	1.8 MB	196.247.58.211
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-23	536 B	60 kB	142.250.74.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed
2024-04-24	medium	polandsalomon.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	www.polandsalomon.com/js/jquery.jxb.js	158 kB	2023-03-07	2024-05-05
Pretty URL www.polandsalomon.com/js/jquery.jxb.js IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:53 Times Seen13525 Hash 6f3d61313966fcd43b0334aa5fad66b9 22b2b120da5b405a348e4abdd865c496625d87ab f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5 Loading...

	www.polandsalomon.com/js/jquery.mmenu.min.all.js	39 kB	2023-03-07	2024-05-05
Pretty URL www.polandsalomon.com/js/jquery.mmenu.min.all.js IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen7667 Hash 5b2edbe2f95659b625a0b919ebf98286 1c5722696e849953fccdf41e0f0a01e3f37a80da a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637 Loading...

	www.polandsalomon.com/js/jquery.ad-gallery.js	26 kB	2023-03-07	2024-04-30
Pretty URL www.polandsalomon.com/js/jquery.ad-gallery.js IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:14 Last Seen2024-04-30 10:03:41 Times Seen215 Hash 07a7605c4812477e9f8b3d307666fdf1 40b8142c5bf526dbffa3fa7fcde77d31db84c387 e4fbc5866e937957ece110a99b5ba37b8ff4123b1cdbe86379086bc149f3efe4 Loading...

	www.polandsalomon.com/js/slick.js	87 kB	2023-03-07	2024-04-28
Pretty URL www.polandsalomon.com/js/slick.js IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:30:42 Last Seen2024-04-28 20:37:19 Times Seen289 Hash cb8c0dc6f843a50cb85502d3c9a12ff3 c9f5c3790c425701877cdc79f57dd796b4d1aa63 30942d06349484470cbbe668f197871e87e7c4c8310c9d663c9628eb6c1c3cfa Loading...

	www.polandsalomon.com/js/jquery.jxa.js	2.7 kB	2023-03-07	2024-05-05
Pretty URL www.polandsalomon.com/js/jquery.jxa.js IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen7560 Hash ca643ec9e974f881e4c904db35bc40c7 759df5ef14b4e2c0c46770b5e408f600972294ca a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2 Loading...

	polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie	44 B	2023-03-07	2024-05-05
Pretty URL polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen4184 Hash 0f9f77c8d79923a94eaf9563663b37bf e9de64d20cf4f34a74de22d7b663634bd64f1be6 f401ef86148cd7087f19cbf14828ac17464cb4e1712f05305fb571d07521bb01 Loading...

	www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_1.11.1.min.js	86 kB	2023-03-07	2024-05-05
Pretty URL www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_1.11.1.min.js IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen7249 Hash 93c4b563622d278b1065690a3d93709e f00d128cf399f17322b1d4ee02fa8cd892e081bd 601c06474a16936670a0477da2a777ccfca3301e3857204ec9b55dfa2c45287e Loading...

	www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_2.2.0.min.js	143 kB	2023-04-05	2024-05-05
Pretty URL www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_2.2.0.min.js IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 13:52:00 Last Seen2024-05-05 19:40:52 Times Seen3267 Hash 391ebf61aa662184ec57e51ba5ce11c5 4359e99c16ac8e1dcc441465203d2025eaee8c48 a41091e7f49dd461b53a67d1fbbb715097796994077a2e7199f12c7a7d39c19e Loading...

	www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_lightbox.js	20 kB	2023-03-07	2024-05-05
Pretty URL www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_lightbox.js IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen4138 Hash 62160589e6cfe07633cf89ba5f6b850e 0ddc3da269bf68a7a86f82db9099181126c8aad5 c84699604527cf065821fe6ddb4aea785e99cfbcfbaec426a51cff1dfd617eca Loading...

	www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_slick.js	89 kB	2023-03-07	2024-05-05
Pretty URL www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_slick.js IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen8333 Hash 5f8f4aed010e1afe499184d8197309f9 097f6a1b4f115e9b6ebefa70d76d830733bcc9ba 0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4 Loading...

	polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie	311 B	2023-03-07	2024-05-05
Pretty URL polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07:14 Last Seen2024-05-05 19:17:49 Times Seen1375 Hash d70835bbf8fe8ba2123a94e4d82f747f 75de4d4e1704be292925f155abc7514d2d164617 17e98b785268fe290b82a465cc6f8c2084e98ebde2f80edd10c676a552dc2a31 Loading...

	polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie	765 B	2024-04-24	2024-04-28
Pretty URL polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 19:43:12 Last Seen2024-04-28 20:37:18 Times Seen2 Hash 7e7bdb1126086cc0d9b9f86020153803 f502e33b9ca40c4053610e2d37a1d9b05bd6d426 921600ae02c82d9ffb6cc478b37002015da394c2b81648ebaee772d5a516a7a7 Loading...

	www.polandsalomon.com/includes/templates/polandsalomon/jscript/jquery-price-slider.js	36 kB	2023-03-07	2024-05-05
Pretty URL www.polandsalomon.com/includes/templates/polandsalomon/jscript/jquery-price-slider.js IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen460 Hash 7f730a53f528a3b4571ecb35842dac9a b57a5bb69a7cc5386aee6cd1a3bc385de69cbf7c 3698640de183901071d26abf398014dbf19ca2e87298a5a8b2877c67ef526dbb Loading...

	polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie	409 B	2024-04-24	2024-04-28
Pretty URL polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 19:43:12 Last Seen2024-04-28 20:37:18 Times Seen2 Hash e6679aed0e54edaa87a0363aa38caaad 736a63c7ffe97a970b42a79c7851c55e20e4a7a0 28f8e505a2f7f510a41164750b45a3f213c26d7fccb64105df7be727c318cc91 Loading...

	www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_jquery.js	86 kB	2023-03-07	2024-05-05
Pretty URL www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_jquery.js IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen18156 Hash e85aed5c30d734f1e30646e030d7a817 b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad 8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a Loading...

	polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie	300 B	2024-04-24	2024-04-28
Pretty URL polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 19:43:12 Last Seen2024-04-28 20:37:18 Times Seen2 Hash 4df3beb8cda036c7fa1601be3a119bec 25779790a5d45275a91660b2d12061d21c65b219 a2577f0aaf18f7fe5ef3d62e10acae50b6175ca9bd1551998783bf00ca827f81 Loading...

	polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie	672 B	2023-03-07	2024-04-30
Pretty URL polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07:14 Last Seen2024-04-30 10:03:41 Times Seen115 Hash 0d8a57bcfe337a5b5ae99f55725d07d1 fe6b1d4c282931a0386c30ef1f83497c2cba4a7a 4c7ada21fbf1d0be2ba0c292448cd3b12c70e59c66417318c2a97c2ebd0f1449 Loading...

	polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie	200 B	2023-03-07	2024-04-28
Pretty URL polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:10:33 Last Seen2024-04-28 20:37:18 Times Seen194 Hash 23062f26c9727722dfeb562f0eadfb94 744f17ede953c9b2ec5d36c2215c29a780909fc0 471a3fd3356c2c097a8f09e1472779910a36c31a753752858975963a0f52d035 Loading...

	www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_jquery_kinSlideshow.js	10 kB	2023-04-11	2024-05-05
Pretty URL www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_jquery_kinSlideshow.js IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:28:27 Last Seen2024-05-05 19:40:52 Times Seen3555 Hash abbb3376ffd05856914efb567ee1f53b 4502bb187bd05f6bdc324546301c0fb3ededb453 f3e0eb53b3dc82b94ae4c1fe8c654bf827bf0d7f9f12cc01976e0689c5db9203 Loading...

	polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie	21 B	2023-03-07	2024-05-05
Pretty URL polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen2971 Hash 5a9b4911bc66f9e2f54bd20a9c333f26 8f357fb053913c958e71d7167e56aa68a698f1e4 2412af640fa9ba9f1a38f46e8b58e00b2cdd73ab4bd327a7d79be4132d960c65 Loading...

	www.polandsalomon.com/js/slick_new.js	1.9 kB	2023-03-07	2024-04-28
Pretty URL www.polandsalomon.com/js/slick_new.js IP 196.247.58.211 ASN #41564 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:00:43 Last Seen2024-04-28 20:37:19 Times Seen233 Hash cf6a546feff6db84279ebdd4d2230f7b dcfdde09278b7489541dc105c9350c7c8cccd24c 8b68bcff5c356392e2462cafe1b8deea01b92aaf65965390ad59c6065ef13f04 Loading...

		Size	First Seen	Last Seen
	#1 Eval - abf4a875d5948c9b1b39999a48ff7e87	13 kB	2023-03-07	2024-05-05
Pretty Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen3870 Hash abf4a875d5948c9b1b39999a48ff7e87 e686ced083517764a0dd7424d84ac5fa1b52f20b a824a97e1e060dcfc3950a4231c4510e369c17c0c8694340e873ff5bdc8397ea Loading...

HTTP Transactions (47)

URL IP Response Size

polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie

196.247.58.211

200 OK

36 kB

URL User Request GET HTTP/1.1
polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
HTML document, Non-ISO extended-ASCII text, with very long lines (3695), with CRLF, LF line terminators
Size
36 kB (36410 bytes)
Hash
8d34f879ec01ed723e98fe8e82c2e14b
504634050c561056364b8cbe97eefe72eb34a3d3
f4f6deef7597799762e7cac05bde8f1ae91f2dd4705cd51e65b1b3a4f166412f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie HTTP/1.1
Host: polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:38 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: zenid=epj49d87egua0cmqc5uf8ibse0; path=/; HttpOnly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheet.css

196.247.58.211

200 OK

0 B

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheet.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheet.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Thu, 10 Apr 2014 07:36:02 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheet0byT9.css

196.247.58.211

200 OK

3.3 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheet0byT9.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text, with CRLF line terminators
Size
3.3 kB (3348 bytes)
Hash
9f81673d729f5e8313d691debf025489
d563acbbf887b4aeb1af51fb9c42f4c2e4fd987b
fdc8f082d52c9999f57740e49daf498903840d187df5ec3f17baa14e9e675395

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheet0byT9.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Mon, 19 Jul 2021 09:46:29 GMT
Accept-Ranges: bytes
Content-Length: 3348
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheet2dkiL.css

196.247.58.211

200 OK

0 B

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheet2dkiL.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheet2dkiL.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Thu, 10 Apr 2014 07:36:02 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheet8qvGy.css

196.247.58.211

200 OK

4.2 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheet8qvGy.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text, with CRLF line terminators
Size
4.2 kB (4165 bytes)
Hash
2b754ee1ad33e21bfe8a39763db7cef3
b1253b5794cd11b6ea666dfc5383e23337888239
0028e9ded72001bc9ec6fa3c92ce52127e72acd736fbb5aa5922b4edc782572f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheet8qvGy.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Mon, 19 Jul 2021 09:46:29 GMT
Accept-Ranges: bytes
Content-Length: 4165
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetCVhW0.css

196.247.58.211

200 OK

11 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetCVhW0.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text
Size
11 kB (10929 bytes)
Hash
c8e17515ce58a6b12e64d89a2364cab3
bc604d70cc9201c02968490bbd8a9bcee2596d3b
4a02d9ad1bd751a9bb90953969d9f1f132c8d9e5890d2c93c236c4871661c007

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheetCVhW0.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 20:28:36 GMT
Accept-Ranges: bytes
Content-Length: 10929
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetFP6Np.css

196.247.58.211

200 OK

2.3 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetFP6Np.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text
Size
2.3 kB (2341 bytes)
Hash
77ac4aa1fc1b80426aa7ad8033dcb40c
fa30830acbbe5458aa445be97ecd00be2e1d60fa
93a60cfc2924d4c2d193bd12bd2ccd8d54b433b975bf842d9c2547a95efabdf0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheetFP6Np.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 20:17:14 GMT
Accept-Ranges: bytes
Content-Length: 2341
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheet1aKrC.css

196.247.58.211

200 OK

16 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheet1aKrC.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text, with very long lines (876)
Size
16 kB (16303 bytes)
Hash
aa3c9444779b2bce35eff6ff988aa4b7
008c96c463bdf04c2cbeb6cb9fb06af69b3dbb09
ff40312eb6ffe2e03f300ed243e6182de55f4060929f4273bf2b867c46e68eac

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheet1aKrC.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Mon, 19 Jul 2021 09:46:29 GMT
Accept-Ranges: bytes
Content-Length: 16303
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetG7Z0Y.css

196.247.58.211

200 OK

3.4 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetG7Z0Y.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text, with CRLF line terminators
Size
3.4 kB (3370 bytes)
Hash
b6431d4bb4cf95a71e8dd00ff8a249b9
442a417962255c0dbddacc6754126dfd888ff176
24542030ebf5705ee00238eba4369680edcadc7e470687a9803626793a74def6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheetG7Z0Y.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2021 20:10:48 GMT
Accept-Ranges: bytes
Content-Length: 3370
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetGgqIa.css

196.247.58.211

200 OK

2.4 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetGgqIa.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2370 bytes)
Hash
4156c4f3b3e8eb75b3f0ffc31b9b3c48
d2e2362789756890af0cd16178e7dc00b66a2032
9b1778227a7dc12daa8be9254e2f90de342d38c9c26140ffd85c82de5a1f70cd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheetGgqIa.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Mon, 19 Jul 2021 09:46:29 GMT
Accept-Ranges: bytes
Content-Length: 2370
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetM6cRJ.css

196.247.58.211

200 OK

4.1 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetM6cRJ.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text, with CRLF line terminators
Size
4.1 kB (4137 bytes)
Hash
75155839024b240fca3f0e0f43d2bb9d
550d82a27365f63a478dd34b45022bfa17e1f5e4
4530628643c1af4710bdfb0bd95ea7cc3843b3bb1fb5ca4580057f0f544bf0c1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheetM6cRJ.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 14:49:00 GMT
Accept-Ranges: bytes
Content-Length: 4137
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetX9Nta.css

196.247.58.211

200 OK

178 B

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetX9Nta.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text
Size
178 B (178 bytes)
Hash
3d372a1cb4a5c596147ea4123ced27d7
c77116d60116e0cbad041002a2afb14420be6d68
b356396cc5563c1983f4297821b0e8bddacc94ae2bc45ecc0dcda90cbf9e91c3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheetX9Nta.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Mon, 19 Jul 2021 09:46:29 GMT
Accept-Ranges: bytes
Content-Length: 178
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetvh0gN.css

196.247.58.211

200 OK

11 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetvh0gN.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text
Size
11 kB (10926 bytes)
Hash
150154886081384c02b67e9da93a8c4a
70a1909c28c29e56734cf7a63fd2a1570563e8e5
6ae6e89d21a64b52bcb7ec2d551ff0df108acd6a8de1bf270418d93252fefb92

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheetvh0gN.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 01:46:19 GMT
Accept-Ranges: bytes
Content-Length: 10926
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetJWLby.css

196.247.58.211

200 OK

66 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetJWLby.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
Unicode text, UTF-8 text
Size
66 kB (65858 bytes)
Hash
627234681765af01ff1f63b7ad2d5f30
d756c1ffad76e1fa8174ea1e4d35c39d2374e8bd
d8a7a01d44d25a0bf602bdf763bebaab6bda26c8cf82392efeaf180bcffe3d84

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheetJWLby.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Sun, 25 Apr 2021 14:58:30 GMT
Accept-Ranges: bytes
Content-Length: 65858
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetwDyFb.css

196.247.58.211

200 OK

16 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetwDyFb.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text, with very long lines (876)
Size
16 kB (16315 bytes)
Hash
89edf890881b58faa9c067723f575fc0
9fc3f8ee7b453b4998c216839442d3389a689e75
ef176c1278d8e3cd24f305999cf5c996f94e61465c4ae1810cf41357bd9b8ebc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheetwDyFb.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 18:57:34 GMT
Accept-Ranges: bytes
Content-Length: 16315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetHrg3u.css

196.247.58.211

200 OK

69 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetHrg3u.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text
Size
69 kB (68924 bytes)
Hash
49adea69e66e564a9e363f35d78d4e95
dce0f3250b37a0782160162f05c4e3e6a53d7e07
1a23a3b9409f0a5da2bb01097873677face1cef9cf43a9c6cc7dbc5860db3b15

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheetHrg3u.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2021 19:59:48 GMT
Accept-Ranges: bytes
Content-Length: 68924
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetJi6Z8.css

196.247.58.211

200 OK

69 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetJi6Z8.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text
Size
69 kB (68699 bytes)
Hash
488237223ab5806d97c7e59d5e9d6e22
f81fecd2884ff4b2e1411edb67470cd57cca9248
1bf3a6149b30ea918aee5b9fe8fd28867d81bdfc3b087f9f7b97e40aabbb3a30

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/stylesheetJi6Z8.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Wed, 29 Dec 2021 06:49:49 GMT
Accept-Ranges: bytes
Content-Length: 68699
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_jquery_kinSlideshow.js

196.247.58.211

200 OK

9.7 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_jquery_kinSlideshow.js
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JavaScript source, ISO-8859 text, with very long lines (8513), with CRLF line terminators
Size
9.7 kB (9674 bytes)
Hash
08a763acea723e1d88cbce2f1c9b3317
ea20687e4f773bf67907b0edb029ebafbc110fc1
c17caeebb94b90d9aae3dc3142cda848f67e8b9425a6d25e434af74d2978aba4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/jscript/jscript_jquery_kinSlideshow.js HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Sun, 21 Nov 2010 12:51:10 GMT
Accept-Ranges: bytes
Content-Length: 9674
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_lightbox.js

196.247.58.211

200 OK

20 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_lightbox.js
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JavaScript source, ISO-8859 text, with very long lines (797), with CRLF line terminators
Size
20 kB (20417 bytes)
Hash
3d79a6c53803295ef00c052546d76500
f1481ce4f6f2aaefd7a5b6af19be42c7b1606dcc
93acbf26510bd264764a43d220a984b78270cd37536e0aa6bf8deb1fb28338f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/jscript/jscript_lightbox.js HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Sun, 24 Oct 2010 07:36:54 GMT
Accept-Ranges: bytes
Content-Length: 20417
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_jquery.js

196.247.58.211

200 OK

86 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_jquery.js
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65168)
Size
86 kB (85925 bytes)
Hash
e85aed5c30d734f1e30646e030d7a817
b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad
8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/jscript/jscript_jquery.js HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2011 19:28:42 GMT
Accept-Ranges: bytes
Content-Length: 85925
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_1.11.1.min.js

196.247.58.211

200 OK

86 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_1.11.1.min.js
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JavaScript source, ASCII text, with very long lines (32069)
Size
86 kB (85588 bytes)
Hash
93c4b563622d278b1065690a3d93709e
f00d128cf399f17322b1d4ee02fa8cd892e081bd
601c06474a16936670a0477da2a777ccfca3301e3857204ec9b55dfa2c45287e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/jscript/jscript_1.11.1.min.js HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Wed, 29 Jul 2020 03:10:10 GMT
Accept-Ranges: bytes
Content-Length: 85588
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_2.2.0.min.js

196.247.58.211

200 OK

143 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_2.2.0.min.js
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (522)
Size
143 kB (142713 bytes)
Hash
674b896ffae27a70571b1fc5bd65919d
63c8c73c7e5ba15aa940aba8f1c43b6150a9f941
a7c32e459eae73c136b6eb07711a69b2cc7b557c085fc232dd42db7fb50e9374

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/jscript/jscript_2.2.0.min.js HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Fri, 24 Jul 2020 21:30:22 GMT
Accept-Ranges: bytes
Content-Length: 142713
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.polandsalomon.com/js/jquery.mmenu.min.all.js

196.247.58.211

200 OK

39 kB

URL GET HTTP/1.1
www.polandsalomon.com/js/jquery.mmenu.min.all.js
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JavaScript source, ASCII text, with very long lines (401)
Size
39 kB (38800 bytes)
Hash
5b2edbe2f95659b625a0b919ebf98286
1c5722696e849953fccdf41e0f0a01e3f37a80da
a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.mmenu.min.all.js HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 19:51:20 GMT
Accept-Ranges: bytes
Content-Length: 38800
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.polandsalomon.com/includes/templates/polandsalomon/jscript/jquery-price-slider.js

196.247.58.211

200 OK

36 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/jscript/jquery-price-slider.js
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JavaScript source, ASCII text, with very long lines (476)
Size
36 kB (35700 bytes)
Hash
7f730a53f528a3b4571ecb35842dac9a
b57a5bb69a7cc5386aee6cd1a3bc385de69cbf7c
3698640de183901071d26abf398014dbf19ca2e87298a5a8b2877c67ef526dbb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/jscript/jquery-price-slider.js HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Tue, 10 Nov 2020 17:46:48 GMT
Accept-Ranges: bytes
Content-Length: 35700
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_slick.js

196.247.58.211

200 OK

89 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/jscript/jscript_slick.js
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JavaScript source, ASCII text
Size
89 kB (88955 bytes)
Hash
5f8f4aed010e1afe499184d8197309f9
097f6a1b4f115e9b6ebefa70d76d830733bcc9ba
0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/jscript/jscript_slick.js HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Wed, 04 Oct 2017 05:49:30 GMT
Accept-Ranges: bytes
Content-Length: 88955
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.polandsalomon.com/js/jquery.ad-gallery.js

196.247.58.211

200 OK

26 kB

URL GET HTTP/1.1
www.polandsalomon.com/js/jquery.ad-gallery.js
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JavaScript source, ASCII text
Size
26 kB (26396 bytes)
Hash
07a7605c4812477e9f8b3d307666fdf1
40b8142c5bf526dbffa3fa7fcde77d31db84c387
e4fbc5866e937957ece110a99b5ba37b8ff4123b1cdbe86379086bc149f3efe4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.ad-gallery.js HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Thu, 30 Jul 2020 21:06:50 GMT
Accept-Ranges: bytes
Content-Length: 26396
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.polandsalomon.com/js/slick.js

196.247.58.211

200 OK

87 kB

URL GET HTTP/1.1
www.polandsalomon.com/js/slick.js
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JavaScript source, ASCII text
Size
87 kB (87028 bytes)
Hash
cb8c0dc6f843a50cb85502d3c9a12ff3
c9f5c3790c425701877cdc79f57dd796b4d1aa63
30942d06349484470cbbe668f197871e87e7c4c8310c9d663c9628eb6c1c3cfa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/slick.js HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Tue, 10 Nov 2020 17:37:40 GMT
Accept-Ranges: bytes
Content-Length: 87028
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.polandsalomon.com/js/slick_new.js

196.247.58.211

200 OK

1.9 kB

URL GET HTTP/1.1
www.polandsalomon.com/js/slick_new.js
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text, with very long lines (1920), with no line terminators
Size
1.9 kB (1920 bytes)
Hash
cf6a546feff6db84279ebdd4d2230f7b
dcfdde09278b7489541dc105c9350c7c8cccd24c
8b68bcff5c356392e2462cafe1b8deea01b92aaf65965390ad59c6065ef13f04

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/slick_new.js HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Tue, 10 Nov 2020 17:34:06 GMT
Accept-Ranges: bytes
Content-Length: 1920
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.polandsalomon.com/js/jquery.jxa.js

196.247.58.211

200 OK

2.7 kB

URL GET HTTP/1.1
www.polandsalomon.com/js/jquery.jxa.js
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
2.7 kB (2658 bytes)
Hash
ca643ec9e974f881e4c904db35bc40c7
759df5ef14b4e2c0c46770b5e408f600972294ca
a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.jxa.js HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 17:46:06 GMT
Accept-Ranges: bytes
Content-Length: 2658
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.polandsalomon.com/js/jquery-1.7.2.min.js

196.247.58.211

200 OK

158 kB

URL GET HTTP/1.1
www.polandsalomon.com/js/jquery-1.7.2.min.js
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JavaScript source, ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 20:22:20 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.polandsalomon.com/js/jquery.jxb.js

196.247.58.211

200 OK

158 kB

URL GET HTTP/1.1
www.polandsalomon.com/js/jquery.jxb.js
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JavaScript source, ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.jxb.js HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Fri, 05 May 2017 22:03:44 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.polandsalomon.com/includes/templates/polandsalomon/css/print_stylesheetVcsY7.css

196.247.58.211

200 OK

773 B

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/print_stylesheetVcsY7.css
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
ASCII text
Size
773 B (773 bytes)
Hash
bbd38cb1b3b2298d98121752e951e872
f18e1df8b85734180dbe990473e12b9854913ed1
5ec0e5addd6014a7f05030ad5de266ee15d8d5192ea2efcaccafc3e235a0bd29

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/print_stylesheetVcsY7.css HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Thu, 10 Apr 2014 07:36:02 GMT
Accept-Ranges: bytes
Content-Length: 773
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

www.polandsalomon.com/includes/templates/polandsalomon/images/flag/PLN.gif

196.247.58.211

200 OK

586 B

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/images/flag/PLN.gif
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
GIF image data, version 89a, 27 x 17
Size
586 B (586 bytes)
Hash
bc8a8747223590c9d2925ad78e4fc4df
a7ef2773ea4400228d5fe8d0bcda02e2038f67cb
e54e0d773062aec8d58cbffe2e283709159ffa32113cb5def1d62bedfa66c25d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/images/flag/PLN.gif HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Fri, 08 Apr 2016 21:50:28 GMT
Accept-Ranges: bytes
Content-Length: 586
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif

www.polandsalomon.com/includes/templates/polandsalomon/images/logo.png

196.247.58.211

200 OK

1.5 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/images/logo.png
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1542 bytes)
Hash
ae38d9f37a8e92fcf1fa16a8b1de8320
51446f1a5d23f6b3d2524997b308d7b83657d121
c4c9a847b5224aa5e851a5bae0c61c6b75f653513204cb9c7484304d7600e8e8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/images/logo.png HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Tue, 13 Jul 2021 21:40:28 GMT
Accept-Ranges: bytes
Content-Length: 1542
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

www.polandsalomon.com/images/img_Mens.jpg

196.247.58.211

200 OK

148 kB

URL GET HTTP/1.1
www.polandsalomon.com/images/img_Mens.jpg
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1180x500, components 3
Size
148 kB (148053 bytes)
Hash
b4658fa5318d179ad9afd91405d95222
88ca9ac56891457d3d6c7e072bc76dc783451d67
651512e285a24a9b4305d0ebfa0b555631ba26c6eddbccf7868a906e014d351a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/img_Mens.jpg HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2021 20:13:12 GMT
Accept-Ranges: bytes
Content-Length: 148053
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

fonts.gstatic.com/s/materialicons/v43/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2

142.250.74.131

200 OK

59 kB

URL GET HTTP/2
fonts.gstatic.com/s/materialicons/v43/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 59000, version 1.0
Size
59 kB (59000 bytes)
Hash
1750b32ed292c226aab4d340d0b5d5c6
6bb0d8cecc8438110f6ea3d2f7fe4f71a193bd49
f84eeec1a9a9760a55c720a15dff039b52b8ed2ecae60fa2b6951c47b5e95cbd

HTTP Headers

GET /s/materialicons/v43/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://polandsalomon.com
DNT: 1
Connection: keep-alive
Referer: https://www.polandsalomon.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 59000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 19:01:21 GMT
expires: Wed, 23 Apr 2025 19:01:21 GMT
cache-control: public, max-age=31536000
age: 81679
last-modified: Tue, 05 Feb 2019 18:09:49 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.polandsalomon.com/images/small/polandsalomon/Sneakersy%20Salomon%20ACRO%20CHUKKA%20WR%202%20M%20523_SMALL.jpg

196.247.58.211

200 OK

1.5 kB

URL GET HTTP/1.1
www.polandsalomon.com/images/small/polandsalomon/Sneakersy%20Salomon%20ACRO%20CHUKKA%20WR%202%20M%20523_SMALL.jpg
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 70x70, components 3
Size
1.5 kB (1457 bytes)
Hash
8dd16241917ad4ac126064a76ae6e863
c35f8669149a59d5c5c38f59ceedcdde0c81a58b
f6c7f0398413bee5b55827b4269bcc1b3c26fc1f69018e41640adad9943f3944

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/small/polandsalomon/Sneakersy%20Salomon%20ACRO%20CHUKKA%20WR%202%20M%20523_SMALL.jpg HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 19:38:36 GMT
Accept-Ranges: bytes
Content-Length: 1457
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.polandsalomon.com/images/small/polandsalomon/Sneakersy%20Salomon%20SPEEDSPIKE%20CS%20M%20sk%20424_SMALL.jpg

196.247.58.211

200 OK

1.5 kB

URL GET HTTP/1.1
www.polandsalomon.com/images/small/polandsalomon/Sneakersy%20Salomon%20SPEEDSPIKE%20CS%20M%20sk%20424_SMALL.jpg
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 70x70, components 3
Size
1.5 kB (1504 bytes)
Hash
5b40cc3acf6611704f3d066a39d67e3f
9a3e8e5c507a86e2539aa94492da266c54242174
cbc220cbe2964d1e75238dae8cae055b7462d3ea0e93991d55586e1f5d862457

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/small/polandsalomon/Sneakersy%20Salomon%20SPEEDSPIKE%20CS%20M%20sk%20424_SMALL.jpg HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 19:42:46 GMT
Accept-Ranges: bytes
Content-Length: 1504
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.polandsalomon.com/images/small/polandsalomon/Sneakersy%20Salomon%20S%20LAB%20XT-6%20SOFTGRO%20475_SMALL.jpg

196.247.58.211

200 OK

1.5 kB

URL GET HTTP/1.1
www.polandsalomon.com/images/small/polandsalomon/Sneakersy%20Salomon%20S%20LAB%20XT-6%20SOFTGRO%20475_SMALL.jpg
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 70x70, components 3
Size
1.5 kB (1473 bytes)
Hash
36ea4cc36957560d829684821c24c929
41e30b20c44dab01852bd82f7fca56880f3376e1
f3cb977317a07921ae1c06b5eee01f70b235216329d71de8946511669263cbc2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/small/polandsalomon/Sneakersy%20Salomon%20S%20LAB%20XT-6%20SOFTGRO%20475_SMALL.jpg HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 19:34:18 GMT
Accept-Ranges: bytes
Content-Length: 1473
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.polandsalomon.com/images/img_Womens.jpg

196.247.58.211

200 OK

311 kB

URL GET HTTP/1.1
www.polandsalomon.com/images/img_Womens.jpg
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 1500x678, components 3
Size
311 kB (310722 bytes)
Hash
000af41706c8bb7376d6ea975394103f
89d8cfaa0b488b420b770a1ef0cb31775b11cbcd
6b544672365e1d6051e020c4fb8b3ad387532df4ce9f6b8f88e2d7318df6c27b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/img_Womens.jpg HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2021 20:05:22 GMT
Accept-Ranges: bytes
Content-Length: 310722
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.polandsalomon.com/images/salomon.png

196.247.58.211

200 OK

3.7 kB

URL GET HTTP/1.1
www.polandsalomon.com/images/salomon.png
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
3.7 kB (3740 bytes)
Hash
0a437c8258d3fb621129b4c6b8b8fe12
bf26457f31308eae0168381d5cddb41ca312830a
f45206596b16cc10b966cafb0277dc04acdb2b1d658ec3f9410aac70de8c83a1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/salomon.png HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:39 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 18:54:20 GMT
Accept-Ranges: bytes
Content-Length: 3740
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

polandsalomon.com/favicon.ico

196.247.58.211

200 OK

4.3 kB

URL GET HTTP/1.1
polandsalomon.com/favicon.ico
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Size
4.3 kB (4286 bytes)
Hash
e0bebbec1832ab1e2cc5526172ac6490
149f58c074e6f905d847a7374bbd00f98feca26d
11a348b923997e3218968291f6231818f9e245fcc8601a849c3a0eb3559a19d3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Cookie: zenid=epj49d87egua0cmqc5uf8ibse0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:40 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2021 20:18:10 GMT
Accept-Ranges: bytes
Content-Length: 4286
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/x-icon

www.polandsalomon.com/includes/templates/polandsalomon/images/arr.png

196.247.58.211

200 OK

3.2 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/images/arr.png
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
PNG image data, 13 x 21, 8-bit/color RGBA, non-interlaced
Size
3.2 kB (3156 bytes)
Hash
ececf87d573fb10c313f40c06335e25f
4b4c6f1086144adb7ca53488ba5c81749b018c4b
a1838101881751e352091b47c127bbf5ab274c992a0f040d0c09217345477285

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/images/arr.png HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetJi6Z8.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:40 GMT
Server: Apache
Last-Modified: Sat, 03 Jun 2017 15:25:04 GMT
Accept-Ranges: bytes
Content-Length: 3156
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

www.polandsalomon.com/images/polandsalomon/Sneakersy%20Salomon%20ACRO%20CHUKKA%20WR%202%20M%20523.jpg

196.247.58.211

200 OK

11 kB

URL GET HTTP/1.1
www.polandsalomon.com/images/polandsalomon/Sneakersy%20Salomon%20ACRO%20CHUKKA%20WR%202%20M%20523.jpg
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x350, components 3
Size
11 kB (11300 bytes)
Hash
0df733a52d14dc9d8eee18fbe3e10e7b
70c91b19bbfad9b77c2d5687eb6b4769d007bb1a
3a273d98dbf3dce295267257bd44f04aed428f103c4d7fb1a8c4caabb5e7eb53

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/polandsalomon/Sneakersy%20Salomon%20ACRO%20CHUKKA%20WR%202%20M%20523.jpg HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:40 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 19:37:32 GMT
Accept-Ranges: bytes
Content-Length: 11300
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.polandsalomon.com/images/polandsalomon/Sneakersy%20Salomon%20S%20LAB%20XT-6%20SOFTGRO%20475.jpg

196.247.58.211

200 OK

10 kB

URL GET HTTP/1.1
www.polandsalomon.com/images/polandsalomon/Sneakersy%20Salomon%20S%20LAB%20XT-6%20SOFTGRO%20475.jpg
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x350, components 3
Size
10 kB (10444 bytes)
Hash
960779919dbf3664eb4c87390ddc2127
d631600757feac7c1e58a756ef122cc9db0b05b6
5503dc176a3cefaf3a247803a8dfae2cc83615d6807f0071a9ea0b3080aeb848

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/polandsalomon/Sneakersy%20Salomon%20S%20LAB%20XT-6%20SOFTGRO%20475.jpg HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:40 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 19:33:16 GMT
Accept-Ranges: bytes
Content-Length: 10444
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.polandsalomon.com/images/polandsalomon/Sneakersy%20Salomon%20SPEEDSPIKE%20CS%20M%20sk%20424.jpg

196.247.58.211

200 OK

13 kB

URL GET HTTP/1.1
www.polandsalomon.com/images/polandsalomon/Sneakersy%20Salomon%20SPEEDSPIKE%20CS%20M%20sk%20424.jpg
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x350, components 3
Size
13 kB (13128 bytes)
Hash
850baa34e20b21a628801e99fccc7482
906aa6c4365a2ddaa9475308da3b9331fde6c0b3
3859a3e7af56c80ab689245bb71988722e1937b955d303bd392e1a116270bca0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/polandsalomon/Sneakersy%20Salomon%20SPEEDSPIKE%20CS%20M%20sk%20424.jpg HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://polandsalomon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:42:40 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 19:41:44 GMT
Accept-Ranges: bytes
Content-Length: 13128
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

www.polandsalomon.com/includes/templates/polandsalomon/css/ajax-loader.gif

196.247.58.211

404 Not Found

17 kB

URL GET HTTP/1.1
www.polandsalomon.com/includes/templates/polandsalomon/css/ajax-loader.gif
IP
196.247.58.211:443
ASN
#41564 Orion Network Limited

Requested by
https://polandsalomon.com/buty-sneakersy-c-8_11.html?&size=eu%2046&gender=m%C4%99skie
Certificate
IssuerLet's Encrypt
Subjectpolandsalomon.com
FingerprintD7:30:D0:9E:B8:AB:AE:40:EC:B1:20:94:C4:06:7E:6C:97:FD:59:82
ValidityWed, 28 Feb 2024 21:07:31 GMT - Tue, 28 May 2024 21:07:30 GMT

File type
data
Size
17 kB (17029 bytes)
Hash
5f892e5d4cf28b447cae68c7a8e2d23b
81fd11bc1f807302138ef04f7e35cb3c4e6c2af8
1ba6e3e63728d482ed902c569e9a322152208cb8f4bc4fe7b704a1fdef39703d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/polandsalomon/css/ajax-loader.gif HTTP/1.1
Host: www.polandsalomon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.polandsalomon.com/includes/templates/polandsalomon/css/stylesheetM6cRJ.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Wed, 24 Apr 2024 17:42:40 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: zenid=sgofsrjqett7usn8mpb02adm34; path=/; HttpOnly
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML