firefox.settings.services.mozilla.com/v1/
54.230.111.7200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 3f17af4e8a1739eda4a518039f4892f9
c3feba08ae7e8f57e0fe9bcd2ebedea6bda67cbb
c485b09cad08b5233fe8753682faf59219fe0d18fcc34d90dc88fb0971295f5f
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 12 Oct 2022 11:21:36 GMT
Expires: Wed, 12 Oct 2022 11:32:41 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: O4Q9TanpM-aLk14TmZMgK4zyvHX2SKkYRlmYDJM5ywt1kZDw4vSCJg==
Age: 2265
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0602913f3d432ffbfaa654440972ee1
e5aaf31749e65875fd840091f9a3bba641de413d
5495ad212166703dcd1d17d7aa6ff4d1c40e73dfad703d24f00f60f35bc7d56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5495AD212166703DCD1D17D7AA6FF4D1C40E73DFAD703D24F00F60F35BC7D56C"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7675
Expires: Wed, 12 Oct 2022 14:07:16 GMT
Date: Wed, 12 Oct 2022 11:59:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ceb45134349ef6afcb5b4bb730678041
15dc3ecb18e30e77cd7c694dd237bff9be583e7a
a39e0827fa31257562bb681e312ec2944a862e9ad4e568a803f6e09e994a6018
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A39E0827FA31257562BB681E312EC2944A862E9AD4E568A803F6E09E994A6018"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18799
Expires: Wed, 12 Oct 2022 17:12:40 GMT
Date: Wed, 12 Oct 2022 11:59:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kaw0Iktli79YHDAEnufVqtVUa5FFOQB6lZafQv1gT8BQ60aHIgQ43lVNp1Dfi2esVgZixgNorL4=
x-amz-request-id: PAV5WBH3ZSVX80KR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 12 Oct 2022 11:33:19 GMT
age: 1562
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 12 Oct 2022 11:59:21 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 87b6d383ddc0b1295f3c1223e67c72df
c3a694f44a6d47ee44010dcf9deed194bf201d94
4146d86d5499aa78287a00baea8b9b6038742f2a5b2bf215747b034c385bf411
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4146D86D5499AA78287A00BAEA8B9B6038742F2A5B2BF215747B034C385BF411"
Last-Modified: Tue, 11 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9137
Expires: Wed, 12 Oct 2022 14:31:38 GMT
Date: Wed, 12 Oct 2022 11:59:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.7200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 12 Oct 2022 11:29:41 GMT
Cache-Control: max-age=3600
Expires: Wed, 12 Oct 2022 11:44:13 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Hh4bcw5c0_u7DXp5iHFEBGlMjEA-4-3uIxTMX0ZM16O9gAJ08FEgWw==
Age: 1781
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 63604bda613d148120c491e2f095255f
0fc63ecaff8a0f36dc2a82f3fb187725d0064d69
8478a84e8513fb9afb0d1c369b668bd37ca98943a624ac3a3a69165536bd1748
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6182
Cache-Control: max-age=165029
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 11:59:22 GMT
Etag: "63467599-1d7"
Expires: Fri, 14 Oct 2022 09:49:51 GMT
Last-Modified: Wed, 12 Oct 2022 08:06:49 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.165.41.15101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.41.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JnrFlS+zI1u8cYzCzH7v6Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0XraEYJr4skNqUoAh9j8f+Cu5HA=
salasarlaminates.com/lna/iiqepisrtiascpsu
103.21.58.156301 Moved Permanently 0 B URL HTTP/2 salasarlaminates.com/lna/iiqepisrtiascpsu
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /lna/iiqepisrtiascpsu HTTP/1.1
Host: salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Wed, 12 Oct 2022 11:59:22 GMT
server: Apache
content-type: text/html; charset=UTF-8
content-length: 0
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
x-server-cache: true
x-proxy-cache: MISS
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20182
Expires: Wed, 12 Oct 2022 17:35:45 GMT
Date: Wed, 12 Oct 2022 11:59:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20182
Expires: Wed, 12 Oct 2022 17:35:45 GMT
Date: Wed, 12 Oct 2022 11:59:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20182
Expires: Wed, 12 Oct 2022 17:35:45 GMT
Date: Wed, 12 Oct 2022 11:59:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20182
Expires: Wed, 12 Oct 2022 17:35:45 GMT
Date: Wed, 12 Oct 2022 11:59:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20182
Expires: Wed, 12 Oct 2022 17:35:45 GMT
Date: Wed, 12 Oct 2022 11:59:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd952f4-819b-4d3c-91a1-0f9020bae81c.png
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd952f4-819b-4d3c-91a1-0f9020bae81c.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d31330d47548d966e50813d7e2253551
ec0a371cca2d4e43f3375dd6b699478c5af62884
309f2cf9ccd62d5c2fd8713836b602317875f4273ef560f3bf3d681aa868b9d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd952f4-819b-4d3c-91a1-0f9020bae81c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9325
x-amzn-requestid: 6a0388e5-97d6-42f4-b54d-a3f4826f2293
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZxMaDE2JoAMFieg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63438dd9-76ff69230ce03c033b35a4c4;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 03:13:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oUdj3LVRzke7i9j4pQRCGqss6LC-l1Qf4gvtAnrM9ZH1Bzu6Adezuw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 04:22:04 GMT
age: 27439
etag: "ec0a371cca2d4e43f3375dd6b699478c5af62884"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b429ef-0b4d-4ac1-a57e-0512cbe70108.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b429ef-0b4d-4ac1-a57e-0512cbe70108.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e885fe35564ed7fefe0fb0fda2b9ebe7
bf37aa53466c3764d205de17070753b3204d78e4
187a99359986ae3131d303c09baf25ffa0dcf1ca80e09c9bee56434bff6f07d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b429ef-0b4d-4ac1-a57e-0512cbe70108.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13724
x-amzn-requestid: 3f358e0a-786b-48fc-9e45-bda97026e544
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3Ak_FbjoAMFfQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e152-134d2c6f4efafecb71df10e6;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:34:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C2z9SP8_BZ-lf9NPNR-24Tjtc98JRz54D4Lmeie9QmTKNIDCR9knNg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:48:15 GMT
age: 51068
etag: "bf37aa53466c3764d205de17070753b3204d78e4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b15495e3e13c06fd0d67523870405ed
3cb8b43735e86c93733affa10818c47693c80fce
f65edddef18295076f79a48e9a6c95d07ed244a2ae618cb4229b6c1bd434cd57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12187
x-amzn-requestid: e0271885-6c76-4a8c-98a2-4df8ee86a688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZzuA_FmaoAMF3AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6344906c-6fe5dce86e61bd8027759559;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:36:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ROEKJli245ZEsFkeeHB5X8rleZ5J_guNsrNe50nMZIQO-KFzJsk7Kw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 04:00:27 GMT
age: 28736
etag: "3cb8b43735e86c93733affa10818c47693c80fce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fece197fe-b9f6-4fd7-9f1f-0167fe4259ce.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fece197fe-b9f6-4fd7-9f1f-0167fe4259ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a262392688d01838edbe02f500679711
f9be0ceee7f5b14e1f17ab938596977cde016e63
f1555b8b9f4363bdae50d426e8601ff5d3d07605259c2e289006e16a10f4b5fb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fece197fe-b9f6-4fd7-9f1f-0167fe4259ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9359
x-amzn-requestid: adbd5dff-817b-4fa1-b935-300d7ebb0f3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3BPxHtuIAMF5jg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e264-1950f5c44861d16c43b2a71c;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:38:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Q5RFd5vuloivw1efJ1SlJn1CbJM-4F3zSzeV0b8iodCgy4pG8WcsHQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:48:25 GMT
age: 51058
etag: "f9be0ceee7f5b14e1f17ab938596977cde016e63"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbb15fc1-cc74-4918-8e82-688ede90f3df.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbb15fc1-cc74-4918-8e82-688ede90f3df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a61ea2d6a9b25c5567339c60f503bc6
19dd911262d941074183edd995d59abc84a42cd5
0ff68c4572b0eda2ddce4ce76b39cd268dcf5182acdaacb0274c23e2c5f50b3d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbb15fc1-cc74-4918-8e82-688ede90f3df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12284
x-amzn-requestid: 7df5e0e3-155f-4cfd-b1e1-62310edf4516
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3B7JFbxIAMFxnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e37a-0882e1333f26304f1d89c3c9;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:43:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7WAk09ANiNHmH9U2PMQRQ8WjASq6GKpEw-zsLtg97Y-DedBaEumK5A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:59:07 GMT
age: 50416
etag: "19dd911262d941074183edd995d59abc84a42cd5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5dcf5ef-7db7-4ea1-94ab-4f64163898dc.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5dcf5ef-7db7-4ea1-94ab-4f64163898dc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c44735cb9a0eba8f445262a24c9cc478
ef570c9938890ec942e4786cc549d687cb8a2e95
5974dbdba95af9dbaeb5ef6ff4a2e045e88482987c296e6afba5381b14da9600
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5dcf5ef-7db7-4ea1-94ab-4f64163898dc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6504
x-amzn-requestid: 21151bfb-93e7-485c-9ab3-13b7439e09ce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3B7uE1iIAMFnww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e37e-54087c9c7a4b72962bf78531;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:43:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: vINWu8ABGbLR_tD2eMQaKXFxdY34qMkAQIpOvNq5qchVYpLetmPzqw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 22:09:04 GMT
etag: "ef570c9938890ec942e4786cc549d687cb8a2e95"
content-type: image/jpeg
age: 49819
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b45d7f40a93a062e11d3152f4c8cc386
118b3c9ba2d1939c87d45bc232b6833eb2190623
85f94ae27cef37d4aa23385459ae771386e0d4f2f794ccbf43174de141601b9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 11:59:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b45d7f40a93a062e11d3152f4c8cc386
118b3c9ba2d1939c87d45bc232b6833eb2190623
85f94ae27cef37d4aa23385459ae771386e0d4f2f794ccbf43174de141601b9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 11:59:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.salasarlaminates.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.8
103.21.58.156200 OK 4.5 kB URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.8
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (21597)
Hash 7f01d3c2dd8fdc231241f6a3b10def8c
76646b14e9ce97d384b9adb20c622f09c7ecd140
999c4a983cd4b5a1a7652aa436630a18c1a6dbf91de090c903ab507b07df536a
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.8 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Oct 2022 20:09:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4487
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/LayerSlider/assets/static/layerslider/css/layerslider.css?ver=6.11.6
103.21.58.156200 OK 5.3 kB URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/LayerSlider/assets/static/layerslider/css/layerslider.css?ver=6.11.6
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash c8aa804a9ad4a73caac14a2ffb234e33
ec2187bf1868edaef6e878d6e09f3e5a15e4e063
efff24bc675dedf58a62be134b3116346b479a943d951727e06281bb2c015b01
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/assets/static/layerslider/css/layerslider.css?ver=6.11.6 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5342
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
103.21.58.156200 OK 1.3 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (4186), with no line terminators
Hash 91bab39b98d7e5c1632717b9ebe349e4
e639a447d06fc7827be5b5b35d603ff16b5f7bb1
47ff151faeb23a5654f6ec58b404e51193f6714849a69de241c2ee79662f74c6
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1298
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
103.21.58.156200 OK 17 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (43771)
Hash 2a67a4888baa44de739f3fe56203ce07
da175eae57f26b655747d79f055477e3fee1abb9
3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Jul 2022 12:10:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16594
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
103.21.58.156200 OK 3.2 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (11256), with no line terminators
Hash 1054d0d53548e8bae51665b11acc6413
2eea6a05fe18db61fff58c431d34a86b3e0b7ade
cb8b0f0f3f871d9776da32ee6d9e1af9277a211be61e97a831c7f8c98fbebfae
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3239
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/style.css?ver=6.0.2
103.21.58.156200 OK 390 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/style.css?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash c453676e8ed05a8395eac0dedaf427c8
9d9fe7ac5c3ae35ff81e41eabdb0c5335f2df691
c5bb55e19ce3fc33d4acd0f9b85deb80c45181dc4cb3bce9de2e42e138575a2b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/style.css?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 390
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=6.0.2
103.21.58.156200 OK 7.1 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (30889)
Hash 8264c85288db9c6dca61fccd050481d6
4a2927bc685992686b1fd9ad59dc34a0b605d45a
5393492c1c5d4f74e8758b890bbabab3d50d1303e167cfd6f293f8336990ae24
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7141
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=6.0.2
103.21.58.156200 OK 4.8 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (21769), with no line terminators
Hash ebe915368a848704d89b0d5c9dd46c6e
dba0dfa573fb9c94c5a68fb9e17166e261b7f0f4
a35ce17c1cc4bceaf92a42b47fe298ed9ae49d52bb3224f371bb43646262a93f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/elegant-icons/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4848
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.5
103.21.58.156200 OK 17 kB URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.5
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 5b0ccebb7e4b4e95064494b9f01d0dfd
fab4ac0f9ab41d9eafae0ca5b04a03db8c03d7e1
2a0f020bf9756c4bec3fc9d0527902ba81c2d1bf43673787425592dfcbdbc287
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.5 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:44:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 17424
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/uploads/2022/04/logo-white-1.png
103.21.58.156200 OK 6.2 kB URL HTTP/1.1 www.salasarlaminates.com/wp-content/uploads/2022/04/logo-white-1.png
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 250 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 40e38a58befc464eb754207b77950130
f3d496e5955e01423679a3c4c3466e08d55f4720
ff4938611b3177e25dc7126633b5b839f7b5a1500d88574acf08af7a71463ee2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/logo-white-1.png HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 11:59:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Wed, 20 Apr 2022 06:44:53 GMT
Accept-Ranges: bytes
Content-Length: 6152
Content-Type: image/png
www.salasarlaminates.com/wp-content/uploads/2022/04/logo.png
103.21.58.156200 OK 6.1 kB URL HTTP/1.1 www.salasarlaminates.com/wp-content/uploads/2022/04/logo.png
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 250 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 7e8a0bdb1db6c22d7c714733ebb9f120
41e574a861f5b4d87623354487c2f6168666e44a
017f33e6d102e6ff4167d39293b0a4396b0e5209931fab1d34b4c1abf30d40dd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/logo.png HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 11:59:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Wed, 20 Apr 2022 06:44:54 GMT
Accept-Ranges: bytes
Content-Length: 6118
Content-Type: image/png
www.salasarlaminates.com/wp-content/themes/bridge/css/dripicons/dripicons.css?ver=6.0.2
103.21.58.156200 OK 1.8 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/css/dripicons/dripicons.css?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash fa89bd2d911d93348561874006dceeaa
74f390258cc4e7443d10cf0357d44c655537e90b
2e48c780699f2a35f105089bc98a94294941cc223b0729816369e984bc15c5f7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/dripicons/dripicons.css?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1794
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/css/kiko/kiko-all.css?ver=6.0.2
103.21.58.156200 OK 3.4 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/css/kiko/kiko-all.css?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 74aa7ac6abcb8dfa20114cb926332cdd
ac0bac96352da3236ac2762bdd03eb9ae6a70574
82798a52b70a45b1126c9607c8473aa81c9d72465a332a999a960e61da5ae774
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/kiko/kiko-all.css?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3353
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/css/font-awesome-5/css/font-awesome-5.min.css?ver=6.0.2
103.21.58.156200 OK 12 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/css/font-awesome-5/css/font-awesome-5.min.css?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (62469)
Hash bd772d1299d4b80c03f6f34337e8edf4
c05604688964a8616139300ba43462819fa32d80
189de916f3c7c37feab00bf27e1c95a49a14c1b119edd3a6f1dd60a5f443f4d0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/font-awesome-5/css/font-awesome-5.min.css?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12340
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/css/print.css?ver=6.0.2
103.21.58.156200 OK 278 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/css/print.css?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 65c71980e5be735100af2998415693ef
9abf52e15a61c0c1500840c5fb6354e218d46c41
214c04787bd2ff1bcc29b8836a954085ba6be60f7ad0fbbcb938c26c84afacd2
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/print.css?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 278
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1665455985
103.21.58.156200 OK 386 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1665455985
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash c152d2919abeb41af201cc02806a9c11
8b772fe03ca4724759156549a036439f34f0866a
658d12c1c6b035b3aac6ede38e21bd09f28737c63dd1fd80314a6bb3847d00b8
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/style_dynamic_responsive.css?ver=1665455985 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 02:39:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 386
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/css/linea-icons/style.css?ver=6.0.2
103.21.58.156200 OK 9.3 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/css/linea-icons/style.css?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (369)
Hash ae6963e207f82602baad4d83d04d904d
d1ff2ae003bd69a0249b82d54f389b89b24929bf
96d980b9e9d64febb24fc3567ea051a0269ea041ab946f984003eb77d48ef9f2
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/linea-icons/style.css?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9346
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/css/style_dynamic.css?ver=1665455985
103.21.58.156200 OK 8.3 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/css/style_dynamic.css?ver=1665455985
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (353)
Hash 975abf1126c090c48f157930027ed6cf
c4a3812a7c21dafac875b00c5e8dbfa14b1d111e
dbb33aadaeb1804eba4701bb9edda3d4c14c9417e902a722bee2534a3ede84e6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/style_dynamic.css?ver=1665455985 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 02:39:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8314
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.1
103.21.58.156200 OK 3.4 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (8339)
Hash 11f4c6b39049f5f99fffa84fbe7db4f9
37e5526e34d4e465f4b646e94e6cd4846664f974
2cf8e5a67fbc058c9abe066e1d432ed720a02a0ed09ee255600c1a520a1b964e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3432
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
103.21.58.156200 OK 8.3 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash e49f0561a452c9d04fb7d1510a23cc8c
9e8fc2e3129da4fe2790eee565a6478b864bea83
ab4f9f418b022ab34d617ee2f95d70afff005ed4d4d92e313ce84a56b40bce75
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8254
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/spinner.min.js?ver=1.13.1
103.21.58.156200 OK 2.8 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/spinner.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (7451)
Hash 6f533dc7c466101e14a41fa476e28be9
675d98c5bc00ed93a178f47ee0378e28548f3506
542fe8efb87403230e423f8c8d26a21cba65a36757eed8edeab68d4f7fe3ae8e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/spinner.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2798
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/bridge-core/modules/core-dashboard/assets/css/core-dashboard.min.css?ver=6.0.2
103.21.58.156200 OK 3.7 kB URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/bridge-core/modules/core-dashboard/assets/css/core-dashboard.min.css?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (20160), with no line terminators
Hash 3fc4d9708ec24070705e63b9d52e148c
6c5f22c56db9d63b37507badef24ad6eef2b9c38
6066eeebe14da7a111d3041dc65991b8cf4eb4bc14f6bc6e7d7572d63bcb2bce
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/bridge-core/modules/core-dashboard/assets/css/core-dashboard.min.css?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3732
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
103.21.58.156200 OK 5.3 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 05:56:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/dist/dom-ready.min.js?ver=d996b53411d1533a84951212ab6ac4ff
103.21.58.156200 OK 331 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/dist/dom-ready.min.js?ver=d996b53411d1533a84951212ab6ac4ff
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (463)
Hash ba2b50662c393ff6ba69961f66b24d5d
d5694f33b1072b13fc4c3989e90252c0b28030a2
79ad638f020827a6db341526b430e65459aa712bfbdcabf28bb013c6b2c715e9
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/dom-ready.min.js?ver=d996b53411d1533a84951212ab6ac4ff HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 331
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/dist/a11y.min.js?ver=a38319d7ba46c6e60f7f9d4c371222c5
103.21.58.156200 OK 999 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/dist/a11y.min.js?ver=a38319d7ba46c6e60f7f9d4c371222c5
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (2472)
Hash 05e2ccec781ae289719bb26320d5cc40
60f3adc6dccea4df940d0f1579b83b06e715d0ed
1242f50bffe2d7745a712e1702f3f26a58d955fc110abf58599730fb6380a91c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/dist/a11y.min.js?ver=a38319d7ba46c6e60f7f9d4c371222c5 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 999
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-explode.min.js?ver=1.13.1
103.21.58.156200 OK 661 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-explode.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (918)
Hash 446ec418b6c87d2dead45c5b9ee01b57
71d0447417d3a3eaac20fcdc7682f3f56e165676
1cb7264ff0f24a08382dacbd53fd843e089ff37f4dbcb72a6eb9ad489eb275d1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect-explode.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Jan 2022 16:44:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 661
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge-child/style.css?ver=6.0.2
103.21.58.156200 OK 190 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge-child/style.css?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 430f75c49b333882e1931abf2022ea42
1ec5776ab407e67f3f4445578e6843a8ddbb95d1
6b5e79f571bf5c4a76470a1e1dadcc9d333977bc81adcfbd39c479ff96a1f83c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge-child/style.css?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 190
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-shake.min.js?ver=1.13.1
103.21.58.156200 OK 480 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-shake.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (644)
Hash 6fa4ae3e4e3041593408b92219e16413
115d6d7e186d26fc75b442857207135a8c0c1e8b
4899f304889f6dc4fb525d0c2e5b50072801303fc116dc4158d80101de2abd06
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect-shake.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 480
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/instagram-feed/img/placeholder.png
103.21.58.156200 OK 176 B URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/instagram-feed/img/placeholder.png
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 1000 x 560, 1-bit colormap, non-interlaced\012- data
Hash a5443c5bb9bd40f1b1e6652eedce9925
aefb6c761d953a69c8b7ee7d98cad00545d74364
f623564c53c2e08780c064012cfbdbde0a80ee56816f4d5d3d52c46ed285cb95
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/instagram-feed/img/placeholder.png HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Oct 2022 20:09:24 GMT
accept-ranges: bytes
content-length: 176
content-type: image/png
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/ScrollToPlugin.min.js?ver=6.0.2
103.21.58.156200 OK 1.1 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/ScrollToPlugin.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2140)
Hash 6dbfa5d44cb943de86ea3589eaa4ad1c
d6d08bbd9f339feca137c18476ec90a4be0e7cb4
81202d6c997926931a3ae223e142b69382b00fc0c5405483588678be4768d648
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/ScrollToPlugin.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1132
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1
103.21.58.156200 OK 1.2 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3233)
Hash a801c7d8c18f01dd2ff3ddc44a436a2e
81986f97a21ba6770298714e78a31e4a2738ec96
b35572a36837b78d0629063d26127fc404a2447e55fea21c44e4dc75753fdcd3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1220
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1
103.21.58.156200 OK 531 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (715)
Hash 423f1e4d0c28c084cc8cc3c82b8c42ea
82e408fd66caaa94887ab8030d0098ff52c3560a
08365cdd5819da5f7d42ccba0fafbb5e0bf162e54477452f8ffe81f2c405aff1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Jan 2022 16:44:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 531
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-clip.min.js?ver=1.13.1
103.21.58.156200 OK 457 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-clip.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (595)
Hash 67fdee3c89a3fa786b727c185a50c47f
8da52710899d4ea8e701c06857a3af70c3301c18
2b4ad199a33f26e001f370c6708e761517585e189e0b0887ee08e4e17df27fc9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect-clip.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Jan 2022 16:44:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 457
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-drop.min.js?ver=1.13.1
103.21.58.156200 OK 464 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-drop.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (552)
Hash fa73908b4b706ca7f79764ad60417eac
4d81b5131d040822256e4e9114dfd7e43dffada9
c05337a516947f60e5c782053c3810c8d026872c0219d8a4b17e19821ff488a3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect-drop.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 464
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-transfer.min.js?ver=1.13.1
103.21.58.156200 OK 291 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-transfer.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 35768bdfbd47444cfaa7b1d09fc2a0a8
6db804d66bbcff9115de501e80f5764a5bd83519
b27bd6e5456ec983f647e387314a1f1e85ca5578771c7a1f34e7685d0361e9f1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect-transfer.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Jan 2022 16:44:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 291
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/progressbar.min.js?ver=1.13.1
103.21.58.156200 OK 970 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/progressbar.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2356)
Hash 47ad7c9cb36a00548dd9f64b130bc7cd
419187b6565e744d950d695f7b3a4369814dd66b
fac54bdd58bfac1679e8c92d7a02efa903b09e5fa9afdbf08bd77b4e34aa4e1f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/progressbar.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Jan 2022 16:44:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 970
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.transitions.js?ver=6.11.6
103.21.58.156200 OK 3.6 kB URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.transitions.js?ver=6.11.6
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (21440)
Hash 08053c166ae2b8a471e375c3ffd2ffe3
75eeafebb353b730d79c0c9a14943f156cad7f4b
6b0dd95527f4b9c58fa052792ed44de8d77342315179f69fe0d9355124beda10
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.transitions.js?ver=6.11.6 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3610
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-blind.min.js?ver=1.13.1
103.21.58.156200 OK 497 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-blind.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (678)
Hash 4503da769fa557d22c5d79da7215871b
1453bb2a8b46a26029612f255b4a90a87a54658a
c438f64614eeb68ecb4971dd7d60e173710a2c07bf197566d7f8e8ded0780902
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect-blind.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Jan 2022 16:44:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 497
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-highlight.min.js?ver=1.13.1
103.21.58.156200 OK 399 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-highlight.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (442)
Hash d55bf0a12b2a486fcd136d5c411e499a
8773b0e2560d51aefaa51df69a85fc1497a2632f
61ee0e041585e45872959276d123de26d86150bfc1e51430a169cec2cbf88c25
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect-highlight.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Jan 2022 16:44:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 399
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
103.21.58.156200 OK 707 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1464)
Hash 75340c1451d0b45e2c487b4aeeb6394e
67e9a70a845789c6f6a1e3f2b8061b2eb7c7548a
1622c52fe9cada9d88bae5f3efb043b42a7d0ef43373695f3533941dc7dedd2c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 707
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-fold.min.js?ver=1.13.1
103.21.58.156200 OK 559 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-fold.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (819)
Hash 3c48e6c4870b38e0f0fc48caad9a7f2e
50a763a488af50781436d18634ec2e9d8bcffeba
610b8eb3ef0a7e6fb1eae10cea7741028bcd9dc21d5cc03028436dc01c39d0c4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect-fold.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 559
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
103.21.58.156200 OK 4.6 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.1
103.21.58.156200 OK 426 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (521)
Hash e4a106057a0b976ecd21b85f798e5f29
d7c39813fb3f502788f957bbdee643663d76785d
87e712163425a80a812ed9541d5ae0e90e3cde009d5141e128b6b6b7d1454e56
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 426
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.appear.js?ver=6.0.2
103.21.58.156200 OK 886 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.appear.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1766)
Hash 7b45ccbfc098bd164d072fdba9bd7352
ee36a54d80491dcf647b3af958a3ed0c5d32953e
f2552e7375c78483e757d5a0bdd47f433f5fc62bbf06de8145a58b68bd8fc452
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.appear.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 886
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2
103.21.58.156200 OK 540 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1191), with no line terminators
Hash cea5e0013ee4b14895dc0f6c424a03e8
b21c776891ff57c003b385a1aa62ba613b292a21
1cfe89d6aa36aea0e986e379590ab23877257e8416764d18105d1176dfcd64d9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 540
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.2
103.21.58.156200 OK 483 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 961b384bf5b28ac673051be024563f79
606ebba9fa8aec74cf413098b084500c8b16b85c
a9c17b0e5a9c12428c6ed8d0c4622ddbae112a9ac19bccf451f125972cd91935
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Jan 2021 13:35:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 483
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/counter.js?ver=6.0.2
103.21.58.156200 OK 648 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/counter.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1238)
Hash a1a21d3c3597aa2526dadbeaf1c19060
bdda0a441d7ba44ca0bf38567f1d518ed528c897
97450486d08e95f6a42102857a40ebf405ff81fb2c298daad3903e9a7cf61d75
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/counter.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 648
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/doubletaptogo.js?ver=6.0.2
103.21.58.156200 OK 1.0 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/doubletaptogo.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1942)
Hash ac68ff87566626eff138970bbf6ec616
b35e567501a8524c40f4b5dcca8356e0f6b16954
fef6eb2226016727947e6ea13829852290ff8731209b945cd3d4b41e66d94783
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/doubletaptogo.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1028
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.waitforimages.js?ver=6.0.2
103.21.58.156200 OK 928 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.waitforimages.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1837)
Hash e072e9350fbab04fd8492ddc84ea1fcb
6dcd2e9c452254c5fee75ba0fc90f5c5693d5f24
a71b23f21885ac901f7c655a73d94d07d83776110c4b8f8f0af2bc74a92a8b66
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.waitforimages.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 928
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-pulsate.min.js?ver=1.13.1
103.21.58.156200 OK 429 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-pulsate.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (484)
Hash 0e3883c69cc7fd2ca9d74a6f27a0a2e3
a11e25d154d472505d26ca69c8856c1d0f820b65
fb3f5289577e9486d5d6393f35313ef630d3a42b623d75fc1b9156fd55f9ee1c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect-pulsate.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Jan 2022 16:44:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 429
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-bounce.min.js?ver=1.13.1
103.21.58.156200 OK 586 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-bounce.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (788)
Hash 40a131eb574a5b5ad89c4c2d65a89a23
d12af11ee4a3251d950173af9038c6481610cfc8
92630ab91de2ce5ede733dd2c6872184a33a220af55959c9d73046c24b673e00
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect-bounce.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 586
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.fitvids.js?ver=6.0.2
103.21.58.156200 OK 1.3 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.fitvids.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with very long lines (3598)
Hash 6fe6e11a3f28fba7e83d7ada15f5cf3d
5d56e954c6eaff142a40357dae92c4b397764153
ed29c8ada1047e8865617c34d6723ba58fdef353dc1c6196b979e26c1bcb5dbe
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.fitvids.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1264
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-size.min.js?ver=1.13.1
103.21.58.156200 OK 1.0 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-size.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2290)
Hash 7b863ae89dd3af170403fe2f6472966a
d816a281edf935a84c738b6d72888cac12c0da06
4b6e3a117bdc1a6a4b9c86c2af59f58a3a6477ef9c2fae5225137f686ec8f358
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect-size.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1007
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1
103.21.58.156200 OK 342 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (324)
Hash 99d13f905f64617cb02f83c7c91065f6
ea0e5ed43ea6d2972bb39b9040398a74d9746c8e
a0cc166b11c4e5129c3273ba301334c2afd6f7b79ce3b5adbe8deaa4935821dd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Jan 2022 16:44:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 342
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
103.21.58.156200 OK 1.7 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (4875)
Hash 6a452794a68bc140a53b30519b94edf6
68046f5611ba3cf5da1c46087609aff18f59fdc1
259990a9e6191a72a51ac9d038d0c52bb56d880a2b0d460b1fca3f3fee7961ed
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1712
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/button.min.js?ver=1.13.1
103.21.58.156200 OK 2.2 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/button.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5959)
Hash f157b1baffd98bd06952579d48c82f8c
2c808694ba834c1bb94c04b48904685830f714c4
2cc2fa8e8e7a203cc0dacec90a87b34719a971792260e2e6a414b7193b270f13
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/button.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2164
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/controlgroup.min.js?ver=1.13.1
103.21.58.156200 OK 1.8 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/controlgroup.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (4230)
Hash 6c2157c05e673e4ebae19765db97ea8d
8c77c9c633dc82d7aa4f8a99b1fb609749b29771
af2b559f86baa397817e4c2f04cf3767ef65431208b42ac01d59843bbfa99327
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/controlgroup.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1762
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1
103.21.58.156200 OK 2.3 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (6469)
Hash 557810bd19985ecc6051a0645ea05ace
cc9293d23a4989ed93e7d7a10513aa0aa2cf17d2
2a7a2e57b66196339252268770d32c52b78412017cf47b2034dc93ae509a6a2b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2319
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/selectable.min.js?ver=1.13.1
103.21.58.156200 OK 1.6 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/selectable.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (4308)
Hash 94e69d4a202505750614b96a2d05edad
dac34a3039830e0d3bd3032ee0f4fecaec710dbd
6637e99c9d84f3201f4f3b503611660705ce19eaef60a2489ad22c00d4e1a173
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/selectable.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1568
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.1
103.21.58.156200 OK 1.6 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (4145)
Hash 26cdcb0171fca91fb7b72dbc5b59c8ae
b11f51c26b1b1ef812680b29c1ec7dad04399d8a
284df5231ef283104d3ffd2a62abb5cbebae3faa6987b1c1b0857471532bb4bd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Jan 2022 16:44:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1561
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.1
103.21.58.156200 OK 2.5 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (6004)
Hash 5404b0f6f5947bdc9af3d1cc2fe0b553
33fe629fb0ef56532050ae53ec34b85fe40e7fba
625b6206189c9113ee8fd5cf0bce47891ac559ef8f4a2ad7d4021aa88b6cd42f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2515
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/easypiechart.js?ver=6.0.2
103.21.58.156200 OK 1.7 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/easypiechart.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3968)
Hash 91dd43908e4bdd3914e9f8b21fe8c05e
5f84fc335f3043bc2d2d541eef1ac24a812fc4ec
a63e515c403e72df50a55abca09b1d65b9719bd622497dc32add9735f594de54
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/easypiechart.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1745
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/abstractBaseClass.js?ver=6.0.2
103.21.58.156200 OK 1.4 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/abstractBaseClass.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2986)
Hash 867182090adbf9376876286d0f2d98f0
05c24be7f1479a8e732f7c9147d861dc5c494f54
4b913e3ce83532ea6b394d96dd73d357b83f75ddb1af96429f0f71f0fe775271
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/abstractBaseClass.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1423
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/bootstrap.carousel.js?ver=6.0.2
103.21.58.156200 OK 2.5 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/bootstrap.carousel.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 48807a2e37a655bb5ee3eb4d6d0bb812
4b92e2dc699d9f9664d0e96331311d4613384de1
936e6392f5ca40aa429f9399e32745b12c9f30f17905358aa08860ab05ca26ba
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/bootstrap.carousel.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2462
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.easing.1.3.js?ver=6.0.2
103.21.58.156200 OK 1.8 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.easing.1.3.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (3561)
Hash ad5623a9392733626a02b2b147a15c24
11f1a1c323b786fdee461e1c60a690373836fad4
91b0132cb09b59d86218ec708b38c69f1e1f9cc1daf539c2a0f4f3984d4b5783
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.easing.1.3.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1808
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.twentytwenty.js?ver=6.0.2
103.21.58.156200 OK 1.1 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.twentytwenty.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash c07d88fb715d301caf6b9d7819f3ecb4
3edcb7f54b3af8d02cc146b57e22d8ba7576f23f
b4acdf41b2989f1e84681b7db9067b66eade941b07970fa26958f554ca0745ce
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.twentytwenty.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1101
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1
103.21.58.156200 OK 3.3 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (8632)
Hash 0854bc2e341421e5257c78ad60231a92
fc947dd5273cb9755f7e8a4617d49f3ba8af972c
756d9691bb6f38e4706fc3d894c86be4947b818e54f5f84c4b9ce4831681ce16
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3296
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C300italic%2C400italic%2C700italic%7CAbril+Fatface%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C300italic%2C400italic%2C700italic%7CKalam%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C300italic%2C400italic%2C700italic%7COpen+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C300italic%2C400italic%2C700italic&subset=latin%2Clatin-ext&ver=1.0.0
142.250.74.10200 OK 4.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C300italic%2C400italic%2C700italic%7CAbril+Fatface%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C300italic%2C400italic%2C700italic%7CKalam%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C300italic%2C400italic%2C700italic%7COpen+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C300italic%2C400italic%2C700italic&subset=latin%2Clatin-ext&ver=1.0.0
IP 142.250.74.10:0
File type ASCII text, with very long lines (6475)
Hash 57977fe3d2085df56043540e346b50cf
9f717bbe7e4789fc610c61593f3016f5390b8484
ddc9af50dbbf99c477dda5b5d250c5f76a7b566280dac17930b1ebbb70aeb408
GET /css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C300italic%2C400italic%2C700italic%7CAbril+Fatface%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C300italic%2C400italic%2C700italic%7CKalam%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C300italic%2C400italic%2C700italic%7COpen+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C300italic%2C400italic%2C700italic&subset=latin%2Clatin-ext&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 12 Oct 2022 11:59:24 GMT
date: Wed, 12 Oct 2022 11:59:24 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.salasarlaminates.com/lna/iiqepisrtiascpsu
103.21.58.156404 Not Found 22 kB URL HTTP/2 www.salasarlaminates.com/lna/iiqepisrtiascpsu
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash fe428c5f736719b4beaf8a1b766616a8
9c943ff78a6a177542e423687f4ca2d03577f0d1
5c314d24f34e03144d4a933ec7af97225fe6e00d1c720c82ed53b1c3597da07c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /lna/iiqepisrtiascpsu HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
date: Wed, 12 Oct 2022 11:59:23 GMT
server: Apache
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.salasarlaminates.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1
103.21.58.156200 OK 3.7 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (10572)
Hash f59dfe5ae1d8724f0c32a1221a424c93
4a046982741158444737640d28bfccebe38f06c4
079e71a5a4b156f1c5327cf129cbb7e4682ae4e1bffa2c4cdc993ed9323d1cbf
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3721
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/waypoints.min.js?ver=6.0.2
103.21.58.156200 OK 3.2 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/waypoints.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (8863)
Hash f9205f54f1541c3eed7542adc6c2400c
d0e3f4481c911808090c3b5069ea7370b7f6524f
70d1dd9d1b93485c46ab320b15de1e044c665af1b5f2548d1255d306ffdb58de
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/waypoints.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3216
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/bigtext.js?ver=6.0.2
103.21.58.156200 OK 2.6 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/bigtext.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with very long lines (5788)
Hash 5f35adf237ee1609f7d950eb4c47c8d7
ce9e546addb289a4b5d98f8943e9acea14d9210b
7cc39a72a92b629a6232e271529e9d7510c628d7e810e65f0b3c5b4c40626eb2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/bigtext.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2606
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/qode-like.min.js?ver=6.0.2
103.21.58.156200 OK 350 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/qode-like.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (592), with no line terminators
Hash d98f3dc6b947905cce3aa651f9c4db9f
6837a49f415ffe1304ae318bc180c06c672f3cda
adc17725d324f7614d700b5f761b0aff9fbf6a00512606330e6de72b298795bb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/qode-like.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 350
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
103.21.58.156200 OK 4.2 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash a72df5f7a597c541e18a33abef3c11f5
9500913a0a3fca9979a0aed9cb745926d9f86f83
258da631753c1d8d88fb1316024b671fa4a9ac87c9d6c4f38a45bc2c3bf9f3fc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 15:12:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4234
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1
103.21.58.156200 OK 4.8 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (11760)
Hash 4af14b203f9813b040aea697cea02b02
681533e342bf32a0da3331c5806bb58dff5cdcf4
13e8ccf22646def4ed18be46dcb2dcef91900d52d26afb651c9c66dcb74ca649
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4756
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/dialog.min.js?ver=1.13.1
103.21.58.156200 OK 4.7 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/dialog.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (12793)
Hash 720885d3eab4c563720313fce93bb17c
360d5da6bfc722b3329d3c6cfab6f60902b88240
3097ff5e0d1d0bfc6813b06936a24d9c04c3311120bfddc6c4604f39fab63505
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/dialog.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4695
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.multiscroll.min.js?ver=6.0.2
103.21.58.156200 OK 4.5 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.multiscroll.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with very long lines (13204)
Hash f7283bb0b5f28ef5eec9d22b5bd7ca49
dca5ff730b24b0ca5cf0e4bd9826c203ab66bbb3
e6f0be92807a8b0817742639f2731208d2748e2e7943ec0b1b6a2cbed84e41a4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.multiscroll.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4505
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/default_dynamic.js?ver=1665455985
103.21.58.156200 OK 1.7 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/default_dynamic.js?ver=1665455985
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 7bcf72e73aa7c8fc22ac04704be231d3
793b3a8e025f132731069e38cbd539f4fac57989
d77f6ce11f907279c2f45043d34eabb49c62af6c4d1d9d32c2406134b095f877
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/default_dynamic.js?ver=1665455985 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 02:39:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1681
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1
103.21.58.156200 OK 6.0 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (18145)
Hash 7cab663e1bba2aed16ef447291e711ae
265073c829eae3ba24b7bee18cdf68ede5b2fc30
91f0b272f0f75e3b17cf933e5547d303b604e86dc07c9321ffc010c157386218
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6011
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.countdown.js?ver=6.0.2
103.21.58.156200 OK 6.0 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.countdown.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (17890)
Hash 54ae71ae334da921147badaa08b84322
300388116f64f2a1ce5819c522c5125e16b21ebd
2c2d0567e95daa022254a133467ec69fe3b7739ac5edace541ea22c1005d5505
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.countdown.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6034
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.justifiedGallery.min.js?ver=6.0.2
103.21.58.156200 OK 6.0 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.justifiedGallery.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (17668)
Hash 198a24687f57993441a368e295524abf
c5d4b22c2a64b166dea504ce0ba68db2cf58f44a
480bfeff9d4e802ef61381f8fe98e96cae298dd9045344c8c358a139a6e0ecab
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.justifiedGallery.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6033
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/resizable.min.js?ver=1.13.1
103.21.58.156200 OK 6.6 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/resizable.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (18523)
Hash 02a4a2cf508c06fed4b860a1e18cb542
b062b1ed4c29f749f95ac5b55354dd99704898c2
e50278333fd7e98205e7a942717f68dfc0014c96be1beef50cdfb8d6ccf63604
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/resizable.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6621
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1
103.21.58.156200 OK 7.3 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (15439)
Hash f978912a035ef4780696eed21f9b5218
fd3449da907dfb0328c0396bee6e38607c103d1c
9dcb800ee3731ab7d187c027d586207a454333a37eec291fb4ef6cc5df7cf8b7
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7311
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/modernizr.min.js?ver=6.0.2
103.21.58.156200 OK 7.0 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/modernizr.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with very long lines (14756)
Hash 0a1529a66f62b8ca6b73cf887c7f7709
ece1e881fe35310b981232f68d1b21c8d427bef4
bd82fb13759a7c1496a0aff6583eaf7805483aa63b3cade267452849434ccf6a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/modernizr.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7005
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.prettyPhoto.js?ver=6.0.2
103.21.58.156200 OK 7.5 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.prettyPhoto.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (21225)
Hash 70c536ad12a6e5c66c1a5ed630488a8b
6fc21d2aaa3f25057f1f3e84015be995860350c9
158249d404112d7773a8da4597f04eeb23080a34cc1878b8625b53a67849868d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.prettyPhoto.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7489
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0
103.21.58.156200 OK 7.0 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (16109), with no line terminators
Hash cf3abf6304938d8ccb59ad3a0bd04497
861c89753470fdea7aec9ab0457af1031573fd53
099555bd66a99bfc3c7dcff3b8d6556cac80b22bf010c1e6b88fce090e7d0fc3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6957
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
103.21.58.156200 OK 8.2 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash a0a1c8194f131320e1798f90a7b1262a
3346d35be1f2e4886f19e7fcc0cc96ee4753d9ed
7f618ab13cec0933ec2c61fa2b580ad77ca41522028649677494219fa9ce56db
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8169
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1
103.21.58.156200 OK 8.5 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with very long lines (25274)
Hash c53d78f43e29662ab2eeb6f0c9c1a049
c8e749954dbe7a500bacb0b0d604c4d95489d216
061bfb3550d7c84b5825cabe32d052580c7a053c52d7aa9715aca158e1dfd66b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8492
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.flexslider-min.js?ver=6.0.2
103.21.58.156200 OK 8.5 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.flexslider-min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (22247)
Hash 2a5a28896014049c17b1d632130a7fe0
6e3f08747776ef7f36bcb808fec9a8363415951e
1303ac50045de6a311ff3e9d7dd8379a2eb7aaeaed2b91cd627b714b5675d670
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.flexslider-min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8510
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/skrollr.js?ver=6.0.2
103.21.58.156200 OK 7.9 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/skrollr.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (21650)
Hash a65c4e0431230cda0587fad450b08a6e
c51ee325a025c42c2c0141e0e9b3f1e539248b93
d8ec24b0f52c6087b241be3b3159fc0d2969ffae9ef4fc04d11e679a81bbbf16
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/skrollr.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7899
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/infinitescroll.min.js?ver=6.0.2
103.21.58.156200 OK 9.6 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/infinitescroll.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (25581)
Hash ed5a4a2f484c90fd3cc49358cc293a0f
b1f6185f672b3f006879c8bfe2aed939592b110a
7f96d39fed23a0872f29e6e072c31ddd3be8bec57fe8d267b4eb2fd8e3a1c48a
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/infinitescroll.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9634
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0
103.21.58.156200 OK 7.3 kB URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (20418)
Hash f35f578eae44dc7b17224b4e3fc332cd
41b437fabd3305046f56fab0bffab5187d917470
962ac6b8f4f5e43168918bada558291a4b7ad95a92983557dbdda4119a470673
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7285
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.sticky-kit.min.js?ver=6.0.2
103.21.58.156200 OK 1.4 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.sticky-kit.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (541)
Hash 3ae91cde951c2f01b73795a79e356b45
3075cc1922ca2d4e969514d745ce4f90f94679ed
43c5e5c1d1f307d81798cafc7e46bfed5ea7c22fbda4a4f0377688f19791cce9
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.sticky-kit.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1351
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
103.21.58.156200 OK 14 kB URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (36560)
Hash 9ca93625e25e2cd51ca00e1d8b222e97
c1696012dc42fd84e7d5c9f9e03a9547af0be97f
3e7f45bc73caeee5023ab8a0e66721c9858770498b4049618df71090ec2b9542
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13817
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jplayer.min.js?ver=6.0.2
103.21.58.156200 OK 14 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jplayer.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1007)
Hash 49b5b04fbef3534591455c1d352e10dd
5a11704b0e9bd8a71cd1f51c46bbeb240b7cbbbb
e79690acddc80638adaca3817338750374f3e02ed96ed056af1225c37b4288bd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jplayer.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14001
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/TweenLite.min.js?ver=6.0.2
103.21.58.156200 OK 10 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/TweenLite.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (25057)
Hash 157cfd85720bf908cf8db711928b50e0
e641c29257749247047de35c640081fdb39180e9
d81847a5a9e5710c0d06687fd8c33809d3627360464129b911db70fc3ffebf96
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/TweenLite.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10496
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/typed.js?ver=6.0.2
103.21.58.156200 OK 3.5 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/typed.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5412)
Hash 2534329c27b0821e832b51d8fc0c0ae1
5b171fdd59f60a2a4fa6015b31aef8227aca2a23
479c402ee65b57eaae60064be8962d9bb5177b46ab1110a9ca01b4292a6f1fbe
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/typed.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3540
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.8
103.21.58.156200 OK 9.8 kB URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.8
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (27578)
Hash 0ed40f6324a5b865c2420ef2ee54e122
1f437f4efc895cb01d41aed4bb6fa5cb1c26df15
b30f9ec7831aa91b205849c4e45d7ccb20d3fb3a7f157b53bedbed9221f78585
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.8 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Oct 2022 20:09:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9776
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/owl.carousel.min.js?ver=6.0.2
103.21.58.156200 OK 15 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/owl.carousel.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32000)
Hash 4764eb5289dbcdcb80ea6c6161591958
8fbb077559724c93f54423e06690c88c95c6ca18
49d9731dacdab150e11cb302ff4534df966aa59ab850dbe08977c5390a0918cb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/owl.carousel.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15370
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.mousewheel.min.js?ver=6.0.2
103.21.58.156200 OK 715 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.mousewheel.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1020)
Hash 01877fb8d22ecf9b52f393792f429692
e6fcb297a5fff2bfb61f6c0ac4dd592d7aa18daf
d9f13ec3d4e00504aaa4865aa3a4be7bcf65abe46fb7df0156364f9f7a959a13
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.mousewheel.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 715
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.touchSwipe.min.js?ver=6.0.2
103.21.58.156200 OK 4.5 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.touchSwipe.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (11417)
Hash 324da6da48089323bdb6f5b4663969b7
12836de5511211d3fbed055d5058da55c9a3e62a
ade2dc045ce7a0d154e0bff223fe7df2167e60040c480fd5ba3dd7bbbcd4c665
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.touchSwipe.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4501
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/lemmon-slider.min.js?ver=6.0.2
103.21.58.156200 OK 1.8 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/lemmon-slider.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (6059), with no line terminators
Hash 154bfc3f6949743e67c51b1ace3c2be0
6995dee689959e198445e3a13bc93564f4f68cb5
dc62f1ca7f37f80faa14c532f65d8db8cec40669754989f3ce1676522758afb1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/lemmon-slider.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1773
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/packery-mode.pkgd.min.js?ver=6.0.2
103.21.58.156200 OK 5.2 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/packery-mode.pkgd.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (13547)
Hash a19e073160a083d962e1239830a2a1e3
ca3844395c948f716d44812ba4cc01e16c6d6852
5b96bb445f5f9ab16dfa07ab73c73057a522f630cce43d9308a42b3987d1f842
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/packery-mode.pkgd.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5155
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/smoothPageScroll.min.js?ver=6.0.2
103.21.58.156200 OK 385 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/smoothPageScroll.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (687), with no line terminators
Hash d8dae62035d4bf8164c4a7aca7a325f6
11f4f09e9b70777ad86b04894330e9abcc6523c1
ff1e425917b9d0acb1eceb3c7736c58e7a7ad996eb508d9c97a66a3a10353479
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/smoothPageScroll.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 385
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.isotope.min.js?ver=6.0.2
103.21.58.156200 OK 13 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.isotope.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32003)
Hash f0cf91d52c2af9175a5f19c101a772ad
86e8b62f790a6fbb024606704976c34ce5a3293d
e47311cd769d3e4595a9990e6a50de1052c1134d109c50d4e1c2e589c0e5e297
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.isotope.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12876
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.stretch.js?ver=6.0.2
103.21.58.156200 OK 1.8 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.stretch.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text
Hash c601d8c459694afb142730b7d9c1157b
c33236d3fc853e2ea82611131390abbbd6750d86
966a84b193704af6dc3d25dcc1889902457b34c3f37e3a3aaee4dfb88e7a66ac
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.stretch.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1798
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
103.21.58.156409 Conflict 83 B URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
103.21.58.156409 Conflict 83 B URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/style.css
103.21.58.156200 OK 390 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/style.css
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash c453676e8ed05a8395eac0dedaf427c8
9d9fe7ac5c3ae35ff81e41eabdb0c5335f2df691
c5bb55e19ce3fc33d4acd0f9b85deb80c45181dc4cb3bce9de2e42e138575a2b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/style.css HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/wp-content/themes/bridge-child/style.css?ver=6.0.2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 390
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/imagesloaded.js?ver=6.0.2
103.21.58.156200 OK 2.1 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/imagesloaded.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5442)
Hash 9fa498533bdb492f2629a19e7bed19fa
6eefc1e661c714b5d17fb6e82da330f15d4df3e3
4981a0ef56d75fec04da65856bf7ca3ff4b226fc5630766446638519efff7b18
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/imagesloaded.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2059
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/rangeslider.min.js?ver=6.0.2
103.21.58.156200 OK 3.1 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/rangeslider.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (8049)
Hash ca5f4a8861a364461deaf9a1d3a6ebb5
43a2addc2b60cba335e23c551c9b3065b9573d3d
713b1d695010d3e29839856d28c99b17b4067c621c4a7ba79aff24aec80e1138
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/rangeslider.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3116
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
103.21.58.156409 Conflict 83 B URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b80441eff42b20b9def8e35c2e40efd3
f9fe84a9e292cb463f176040150eafbb68dd2e02
89bb831922fbb4b3675d0a7b109880111057574202841db3c6db5b6bdeab39b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 11:59:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b80441eff42b20b9def8e35c2e40efd3
f9fe84a9e292cb463f176040150eafbb68dd2e02
89bb831922fbb4b3675d0a7b109880111057574202841db3c6db5b6bdeab39b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 11:59:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/abrilfatface/v19/zOL64pLDlL1D99S8g8PtiKchq-dmjQ.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/abrilfatface/v19/zOL64pLDlL1D99S8g8PtiKchq-dmjQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 13176, version 1.0\012- data
Hash c505a5b998cf70c98db25dd8d644c688
2a72710cb88d894cc7059122213728aefca69b97
a177f542e3506952479f8ee19c5f3fd6d20ac2e030b17e86c39a473931c990bf
GET /s/abrilfatface/v19/zOL64pLDlL1D99S8g8PtiKchq-dmjQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.salasarlaminates.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13176
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 03:26:22 GMT
expires: Thu, 12 Oct 2023 03:26:22 GMT
cache-control: public, max-age=31536000
age: 30784
last-modified: Tue, 19 Apr 2022 18:49:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b80441eff42b20b9def8e35c2e40efd3
f9fe84a9e292cb463f176040150eafbb68dd2e02
89bb831922fbb4b3675d0a7b109880111057574202841db3c6db5b6bdeab39b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 11:59:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.salasarlaminates.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 05:42:51 GMT
expires: Fri, 06 Oct 2023 05:42:51 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 540995
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b80441eff42b20b9def8e35c2e40efd3
f9fe84a9e292cb463f176040150eafbb68dd2e02
89bb831922fbb4b3675d0a7b109880111057574202841db3c6db5b6bdeab39b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 11:59:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.event.move.js?ver=6.0.2
103.21.58.156200 OK 83 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.event.move.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.event.move.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5230
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
103.21.58.156200 OK 77 kB URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.salasarlaminates.com/wp-content/themes/bridge/css/font-awesome/css/font-awesome.min.css?ver=6.0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
content-length: 77160
content-type: font/woff2
date: Wed, 12 Oct 2022 11:59:26 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
103.21.58.156409 Conflict 83 B URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Wed, 12 Oct 2022 11:59:27 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/uploads/sb-instagram-feed-images/308518235_626756145723701_3632944637409546956_nthumb.jpg
103.21.58.156200 OK 6.0 kB URL HTTP/2 www.salasarlaminates.com/wp-content/uploads/sb-instagram-feed-images/308518235_626756145723701_3632944637409546956_nthumb.jpg
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash f0b85f31b56051032ee0924cd08595bb
e419b975c8c2e45744d98312174a22b3dd5efcc1
55e72d49363bc2bbeff98c2bb5c41b98f0198dc5515934f07d7606ab54fdfbf4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/sb-instagram-feed-images/308518235_626756145723701_3632944637409546956_nthumb.jpg HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 12:45:35 GMT
accept-ranges: bytes
content-length: 6035
content-type: image/jpeg
date: Wed, 12 Oct 2022 11:59:27 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/uploads/sb-instagram-feed-images/307108502_668637228046867_963289076031085358_nthumb.jpg
103.21.58.156200 OK 4.7 kB URL HTTP/2 www.salasarlaminates.com/wp-content/uploads/sb-instagram-feed-images/307108502_668637228046867_963289076031085358_nthumb.jpg
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash a5b2cfc6c9d6229609501d4dfa900295
82484c88b684bbd01806c6ba16466b965b7f114d
638115f6a766eeb5c972be97dc7338334583cdc86ab958afaebf4ef9546ab9ab
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/sb-instagram-feed-images/307108502_668637228046867_963289076031085358_nthumb.jpg HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 17 Sep 2022 12:45:00 GMT
accept-ranges: bytes
content-length: 4679
content-type: image/jpeg
date: Wed, 12 Oct 2022 11:59:27 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/uploads/sb-instagram-feed-images/306392862_556020782881050_532087191728199013_nthumb.jpg
103.21.58.156200 OK 4.8 kB URL HTTP/2 www.salasarlaminates.com/wp-content/uploads/sb-instagram-feed-images/306392862_556020782881050_532087191728199013_nthumb.jpg
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 0c39a4dc9445db57792efee24f09d051
d99e657522765beecacd19101c8c877894db579e
9707b0e55536cee4d7bea853af27b842e829a8794bf143ed8012f97738474f66
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/sb-instagram-feed-images/306392862_556020782881050_532087191728199013_nthumb.jpg HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Sep 2022 00:40:44 GMT
accept-ranges: bytes
content-length: 4812
content-type: image/jpeg
date: Wed, 12 Oct 2022 11:59:27 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/uploads/sb-instagram-feed-images/306270702_642449897229185_3723477771193037943_nthumb.jpg
103.21.58.156200 OK 5.1 kB URL HTTP/2 www.salasarlaminates.com/wp-content/uploads/sb-instagram-feed-images/306270702_642449897229185_3723477771193037943_nthumb.jpg
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash ebad1a13700d02d9d3990634d3308f67
3b1c5735b4b67a69e35297c776d9c81e5050d4cb
10bcfba5af9ba6906d2c665b77520e42a01f7f62729a38b87d9573597bb019dd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/sb-instagram-feed-images/306270702_642449897229185_3723477771193037943_nthumb.jpg HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Sep 2022 00:40:45 GMT
accept-ranges: bytes
content-length: 5134
content-type: image/jpeg
date: Wed, 12 Oct 2022 11:59:27 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb346a582-22c0-4785-8cff-aa89fd5eefb6.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb346a582-22c0-4785-8cff-aa89fd5eefb6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f42ff23003d006daab01a5317a8231a7
918aac143d82bf543ee326bd26a7c256ffb2d7de
f3d97dd5f258fa504cd4e2274e702126f521e11a903cb23974809563b6f0e9cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb346a582-22c0-4785-8cff-aa89fd5eefb6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11116
x-amzn-requestid: 56e8fcb1-77ce-4b86-bc89-d0c68d564539
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3AkiGkvoAMFmiA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e150-1c5c41db4c614cd766b82ef4;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:34:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0fGlW3iuuVzY6_VMl3MpX9PoqzpY-CoNPlJey79E9_NQXkLj3crcVg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:58:41 GMT
age: 50449
etag: "918aac143d82bf543ee326bd26a7c256ffb2d7de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.carouFredSel-6.2.1.min.js?ver=6.0.2
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.carouFredSel-6.2.1.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.carouFredSel-6.2.1.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/Chart.min.js?ver=6.0.2
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/Chart.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/Chart.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9598
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/css/responsive.min.css?ver=6.0.2
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/css/responsive.min.css?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/responsive.min.css?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/demo/wp-content/uploads/2018/02/title-image.jpg
103.21.58.156404 Not Found 0 B URL HTTP/2 www.salasarlaminates.com/demo/wp-content/uploads/2018/02/title-image.jpg
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert quad9 Sinkholed
GET /demo/wp-content/uploads/2018/02/title-image.jpg HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.salasarlaminates.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.5
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.5
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.5 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:44:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:44:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.utils.js?ver=6.11.6
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.utils.js?ver=6.11.6
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.utils.js?ver=6.11.6 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/default.min.js?ver=6.0.2
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/default.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/js/default.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/css/stylesheet.min.css?ver=6.0.2
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/css/stylesheet.min.css?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/bridge/css/stylesheet.min.css?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.4
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.4
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.4 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:44:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.11.6
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.11.6
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.11.6 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/mixitup.js?ver=6.0.2
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/mixitup.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/mixitup.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.fullPage.min.js?ver=6.0.2
103.21.58.156200 OK 0 B URL HTTP/2 www.salasarlaminates.com/wp-content/themes/bridge/js/plugins/jquery.fullPage.min.js?ver=6.0.2
IP 103.21.58.156:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/bridge/js/plugins/jquery.fullPage.min.js?ver=6.0.2 HTTP/1.1
Host: www.salasarlaminates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salasarlaminates.com/lna/iiqepisrtiascpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Apr 2022 06:45:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 12 Oct 2022 11:59:25 GMT
server: Apache
X-Firefox-Spdy: h2