firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 14 Sep 2022 18:09:39 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wfLq3L68WdVC3w8X_vkXsPA8AuLtaR75BBoPgzZWAgNUqZec8_0CLg==
Age: 2884
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3746
Expires: Wed, 14 Sep 2022 20:00:09 GMT
Date: Wed, 14 Sep 2022 18:57:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gr3cY4tRXueMn-o5JJFKWHgqzpEBawy-slWb7UMzDHFX6WdG4ATtLw==
age: 51748
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 18:57:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
procustomer.ro/
185.253.252.169301 Moved Permanently 0 B IP 185.253.252.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 14 Sep 2022 18:57:43 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://procustomer.ro/
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 14 Sep 2022 18:03:22 GMT
Expires: Wed, 14 Sep 2022 18:36:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: efPkuuKqrNWuwLNXOVZGQyaQ70S7_QW_58DOiNo_J_LcmE2mjmiM4g==
Age: 3262
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3ac56507d17ffff5e8b486406985d68
17d26336cd8ea65af3f23db166945f1b3fbbfbab
e7e321340eed681c1269f715b0214e1511d5762fffbe930e7c157b800afa9a39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1455
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 18:57:44 GMT
Last-Modified: Wed, 14 Sep 2022 18:33:29 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.208.34.131101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.34.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 35qlwuhAMcse0m0mkTrEfA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5qk4YN8+S5rrQca+Xo1cJvtP1gM=
procustomer.ro/wp-content/uploads/js_composer/custom.css?ver=7.7.4
185.253.252.169200 OK 142 B URL HTTP/2 procustomer.ro/wp-content/uploads/js_composer/custom.css?ver=7.7.4
IP 185.253.252.169:0
File type ASCII text, with CRLF line terminators
Hash 9f4b46726ce7d89e82a35a521e413449
fdcc2af4ca6686782fca518381a70ff8e52a46cc
22c3700cb4d491172e780decfb29de9a128834fbefa79c3a57227a8e8a4bcc5f
GET /wp-content/uploads/js_composer/custom.css?ver=7.7.4 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 23 Jun 2017 14:52:32 GMT
accept-ranges: bytes
content-length: 142
content-type: text/css
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/js_composer/assets/css/js_composer_front.css?ver=7.7.4
185.253.252.169200 OK 45 kB URL HTTP/2 procustomer.ro/wp-content/plugins/js_composer/assets/css/js_composer_front.css?ver=7.7.4
IP 185.253.252.169:0
File type assembler source, ASCII text, with very long lines (304)
Hash 068b096e38a0e0d22b66fb597dbcacd6
3cee9337279d81ac01426dd980e0f78b62759167
f93da0f7b19506812b2645259e684d8bbe8e1ade2a6f0c758ebee8a4806cf81f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer_front.css?ver=7.7.4 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 07 Mar 2014 16:11:07 GMT
accept-ranges: bytes
content-length: 45124
content-type: text/css
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
185.253.252.169200 OK 89 kB URL HTTP/2 procustomer.ro/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 185.253.252.169:0
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Jul 2022 04:31:29 GMT
accept-ranges: bytes
content-length: 88932
content-type: text/css
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.css?ver=6.0.2
185.253.252.169200 OK 1.1 kB URL HTTP/2 procustomer.ro/wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.css?ver=6.0.2
IP 185.253.252.169:0
File type CSV text\012- , ASCII text, with CRLF line terminators
Hash 1e2bf05e9946a900553aa627f327cab1
8b121cccfc4eef2777f958886fd1d1dfcfe2d673
e7a6a9dd78bfae7b0d2ac9b5ef64c064847d0f534c7a06865622e300a6149b5f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.css?ver=6.0.2 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 30 Sep 2020 04:33:18 GMT
accept-ranges: bytes
content-length: 1079
content-type: text/css
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
185.253.252.169200 OK 2.7 kB URL HTTP/2 procustomer.ro/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 185.253.252.169:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 10:09:04 GMT
accept-ranges: bytes
content-length: 2731
content-type: text/css
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
185.253.252.169200 OK 19 kB URL HTTP/2 procustomer.ro/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 185.253.252.169:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 May 2022 04:19:34 GMT
accept-ranges: bytes
content-length: 18617
content-type: application/javascript
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/themes/posh/style.css?ver=6.0.2
185.253.252.169200 OK 287 kB URL HTTP/2 procustomer.ro/wp-content/themes/posh/style.css?ver=6.0.2
IP 185.253.252.169:0
File type ASCII text, with very long lines (309), with CRLF line terminators
Size 287 kB (286571 bytes)
Hash 01f36b9e4fd833356a4968d0c99ca89a
d2a6b7c4dd5ab471c8804f0142f24e8904365c60
504cba503b52aa8d805d2d6d4e0c5586f5b9e31489687bf0d73cd1883b3539ac
GET /wp-content/themes/posh/style.css?ver=6.0.2 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 24 Apr 2014 12:58:49 GMT
accept-ranges: bytes
content-length: 286571
content-type: text/css
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/revslider/rs-plugin/css/settings.css?rev=4.6.0&ver=6.0.2
185.253.252.169200 OK 53 kB URL HTTP/2 procustomer.ro/wp-content/plugins/revslider/rs-plugin/css/settings.css?rev=4.6.0&ver=6.0.2
IP 185.253.252.169:0
File type Unicode text, UTF-8 text, with very long lines (374)
Hash 2d5a8d806ebd71f945987a2ea37632d1
d02e9c30274d34fb0c6ab407dbd99af9366787a8
883926d833ae9c2cc1e85f7dea50c5b6a627484e2c88bb5e8f4a2488b80437ac
GET /wp-content/plugins/revslider/rs-plugin/css/settings.css?rev=4.6.0&ver=6.0.2 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 05 Nov 2021 06:41:41 GMT
accept-ranges: bytes
content-length: 52798
content-type: text/css
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.8.12
185.253.252.169200 OK 80 kB URL HTTP/2 procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.8.12
IP 185.253.252.169:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8fe75ca0b7178d5a3b365110fccaae45
75bf3f11495032b08ab68cbfe2dc725dbce237e0
c678f3912353e61c8b9e550bc1de8c8e74ad12b6b467ee3ff68c4a67eb79df50
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.8.12 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 17:17:39 GMT
accept-ranges: bytes
content-length: 79899
content-type: text/css
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
185.253.252.169200 OK 90 kB URL HTTP/2 procustomer.ro/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 185.253.252.169:0
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Jul 2021 04:07:45 GMT
accept-ranges: bytes
content-length: 89521
content-type: application/javascript
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/
185.253.252.169200 OK 81 kB IP 185.253.252.169:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 8cfd1eba883a179cfeb7debc3242db3c
19b76d5e5aeb76e4c08123cc14b8cee2d24f19c8
894a44f27aa961b244264883435116859d1dcaafde6e822f934f777f25712fea
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
link: <https://procustomer.ro/wp-json/>; rel="https://api.w.org/", <https://procustomer.ro/wp-json/wp/v2/pages/3955>; rel="alternate"; type="application/json", <https://procustomer.ro/>; rel=shortlink
content-type: text/html; charset=UTF-8
date: Wed, 14 Sep 2022 18:57:44 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.js?ver=6.0.2
185.253.252.169200 OK 2.8 kB URL HTTP/2 procustomer.ro/wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.js?ver=6.0.2
IP 185.253.252.169:0
File type ASCII text, with CRLF line terminators
Hash 7bb505774519f944f9b82aef7d341dbf
b7d6b3a8fd5422fc9650321e6975b8d562f1feeb
f6a03318f0e6ad3073371e3a2211e11434b7313172806796b0a2e30f2baea5a2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.js?ver=6.0.2 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 30 Sep 2020 04:33:18 GMT
accept-ranges: bytes
content-length: 2847
content-type: application/javascript
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
185.253.252.169200 OK 11 kB URL HTTP/2 procustomer.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 185.253.252.169:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Dec 2020 04:35:04 GMT
accept-ranges: bytes
content-length: 11224
content-type: application/javascript
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
185.253.252.169200 OK 9.7 kB URL HTTP/2 procustomer.ro/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 185.253.252.169:0
File type ASCII text, with very long lines (9680), with no line terminators
Hash 490c29d6776fc430c23403fd845b34b0
817129906b7fef1011895a76f047c7693a852e21
29e8de26576208c07ba0845f604e65c9273b93f9f4d1d66214eb4c586f9938c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 10:09:04 GMT
accept-ranges: bytes
content-length: 9680
content-type: application/javascript
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
185.253.252.169200 OK 12 kB URL HTTP/2 procustomer.ro/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 185.253.252.169:0
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 3f3fc23f477a3849aa5677c585b2a2b4
ccf0865ebd37f76c450c7a377a86ff2448288db3
985fdd42398281348ca133a44750a56fe4909a806b9c075c9443a5d0bd6d2e51
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 10:09:04 GMT
accept-ranges: bytes
content-length: 12211
content-type: application/javascript
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/js_composer/assets/js/js_composer_front.js?ver=7.7.4
185.253.252.169200 OK 23 kB URL HTTP/2 procustomer.ro/wp-content/plugins/js_composer/assets/js/js_composer_front.js?ver=7.7.4
IP 185.253.252.169:0
File type HTML document, ASCII text
Hash 83a0f5baed19d10abe73fbdd0bf2814e
21fe60a2e8b0d132651d7e3eab890dab78e4007f
d1afdb024257749e4d34c36e7ac8413b9b3d9073950b86c7cbaa0240b8d038c9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/js_composer_front.js?ver=7.7.4 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 07 Mar 2014 16:11:07 GMT
accept-ranges: bytes
content-length: 23045
content-type: application/javascript
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/themes/posh/js/jquery.mega.js?ver=6.0.2
185.253.252.169200 OK 37 kB URL HTTP/2 procustomer.ro/wp-content/themes/posh/js/jquery.mega.js?ver=6.0.2
IP 185.253.252.169:0
File type ASCII text, with very long lines (11432), with CRLF line terminators
Hash 8c04aab54910748cd79e33ece79a11c3
94951d2542e4c4ab2baa0183d145bcab727868dc
21baba9ca4020812ed5a62e08abb590ee44a121d3b1fbef058cf390f3b084d97
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/posh/js/jquery.mega.js?ver=6.0.2 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 07 Mar 2014 15:58:48 GMT
accept-ranges: bytes
content-length: 36653
content-type: application/javascript
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?rev=4.6.0&ver=6.0.2
185.253.252.169200 OK 111 kB URL HTTP/2 procustomer.ro/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?rev=4.6.0&ver=6.0.2
IP 185.253.252.169:0
File type ASCII text, with very long lines (65206)
Size 111 kB (111127 bytes)
Hash a9a50cabc36a090a0e3f9909025ed1a7
9ba2f8244b529a0b1bc9611a05139fcdd9087689
6f9866b77528059cc3602d4a8aadd0f80e42701bdde248024e2490098c3a1d65
GET /wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?rev=4.6.0&ver=6.0.2 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 05 Nov 2021 06:41:42 GMT
accept-ranges: bytes
content-length: 111127
content-type: application/javascript
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/uploads/2014/03/Proc-Logo-orizontal1.png
185.253.252.169200 OK 4.5 kB URL HTTP/2 procustomer.ro/wp-content/uploads/2014/03/Proc-Logo-orizontal1.png
IP 185.253.252.169:0
File type PNG image data, 122 x 36, 8-bit/color RGBA, interlaced\012- data
Hash 00c65097f4717f7c2ec539f9166eb05d
a24230de51c260db46dd41c9e2a8ded1d738edd6
90780b0081cab43bc8801b541d3479c7eca8a25d8dc8ce061905268c6a76634b
GET /wp-content/uploads/2014/03/Proc-Logo-orizontal1.png HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Mar 2014 14:44:19 GMT
accept-ranges: bytes
content-length: 4492
content-type: image/png
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/uploads/2014/04/1-pro-customer.png
185.253.252.169200 OK 32 kB URL HTTP/2 procustomer.ro/wp-content/uploads/2014/04/1-pro-customer.png
IP 185.253.252.169:0
File type PNG image data, 1100 x 278, 8-bit/color RGB, non-interlaced\012- data
Hash b8b238c8cd868ad6d2f27aa4d4e5e100
537f13d8190d7f14af19164ad464110490d607e9
8f17e3fe2e0b036379f9ddc2ea1e593933dba89b1669d9a3b2be03ef6f761333
GET /wp-content/uploads/2014/04/1-pro-customer.png HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 04 Apr 2014 12:56:11 GMT
accept-ranges: bytes
content-length: 32072
content-type: image/png
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/js_composer/assets/lib/jquery-waypoints/waypoints.min.js?ver=7.7.4
185.253.252.169200 OK 8.0 kB URL HTTP/2 procustomer.ro/wp-content/plugins/js_composer/assets/lib/jquery-waypoints/waypoints.min.js?ver=7.7.4
IP 185.253.252.169:0
File type ASCII text, with very long lines (7808)
Hash ac5840cf0870ecc0833ec7f0b46abdac
b01f657a7b0d93cfd47fa06bd07dd6c9e6605629
8d73392f1f569c51f57b7f9a30278358484f1795584aa2cd540e5b8ea650593e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/jquery-waypoints/waypoints.min.js?ver=7.7.4 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 07 Mar 2014 16:11:07 GMT
accept-ranges: bytes
content-length: 8044
content-type: application/javascript
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/scripts/main.js?ver=4.8.12
185.253.252.169200 OK 58 kB URL HTTP/2 procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/scripts/main.js?ver=4.8.12
IP 185.253.252.169:0
File type ASCII text, with very long lines (31987)
Hash af0ee6c65c828f32490331cd2faae902
48b4896f1c212b34d4d87cfc249bea0d92f53ab9
be484c9d69d3c256a119e904b92711c093e31494b18d3e6c69888dca6a0cd928
GET /wp-content/plugins/gdpr-cookie-compliance/dist/scripts/main.js?ver=4.8.12 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 17:17:39 GMT
accept-ranges: bytes
content-length: 58435
content-type: application/javascript
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/uploads/2014/04/3-cresterea-nivelului-de-satisfactie-a-clientilor.png
185.253.252.169200 OK 307 kB URL HTTP/2 procustomer.ro/wp-content/uploads/2014/04/3-cresterea-nivelului-de-satisfactie-a-clientilor.png
IP 185.253.252.169:0
File type PNG image data, 1100 x 278, 8-bit/color RGB, non-interlaced\012- data
Size 307 kB (307223 bytes)
Hash b83b61842d37d4b1e5c38651b286a181
f5bbf87f13109659f632281b45cac328249b7086
9a76d13cb8e167843126ca24760fb7522d6334ede4aa79c58aaee1ddf3583552
GET /wp-content/uploads/2014/04/3-cresterea-nivelului-de-satisfactie-a-clientilor.png HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 04 Apr 2014 12:56:13 GMT
accept-ranges: bytes
content-length: 307223
content-type: image/png
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/uploads/2014/04/4-cresterea-motivatiei-angajatilor.png
185.253.252.169200 OK 359 kB URL HTTP/2 procustomer.ro/wp-content/uploads/2014/04/4-cresterea-motivatiei-angajatilor.png
IP 185.253.252.169:0
File type PNG image data, 1100 x 278, 8-bit/color RGB, non-interlaced\012- data
Size 359 kB (358686 bytes)
Hash f71e63fe5dd24d7fbcfc10f6227252ee
47e1f0ad680e88b032d2dc463a5831ca1ee518ec
741be46ae505d9400d01042a1953898d4b0f5e7af554b66c08b8d5e847185692
GET /wp-content/uploads/2014/04/4-cresterea-motivatiei-angajatilor.png HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 04 Apr 2014 12:56:14 GMT
accept-ranges: bytes
content-length: 358686
content-type: image/png
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8470
Expires: Wed, 14 Sep 2022 21:18:55 GMT
Date: Wed, 14 Sep 2022 18:57:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8470
Expires: Wed, 14 Sep 2022 21:18:55 GMT
Date: Wed, 14 Sep 2022 18:57:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8470
Expires: Wed, 14 Sep 2022 21:18:55 GMT
Date: Wed, 14 Sep 2022 18:57:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8470
Expires: Wed, 14 Sep 2022 21:18:55 GMT
Date: Wed, 14 Sep 2022 18:57:45 GMT
Connection: keep-alive
procustomer.ro/wp-content/uploads/2014/04/2-cresterea-performantei-comerciale.png
185.253.252.169200 OK 503 B URL HTTP/2 procustomer.ro/wp-content/uploads/2014/04/2-cresterea-performantei-comerciale.png
IP 185.253.252.169:0
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
GET /wp-content/uploads/2014/04/2-cresterea-performantei-comerciale.png HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 04 Apr 2014 12:56:12 GMT
accept-ranges: bytes
content-length: 264833
content-type: image/png
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56811a1a20a467464e1f3da171ef8b14
366b2090d409d694b72b4b4131df46dd65d69c5a
4c208fb88884166adf4ecc5882f75948b4a87d85c76ad6e7137e8edbd125c996
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15547
x-amzn-requestid: a78f7d90-84c3-4198-88bf-1d722c37f09f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4EUDoAMF13A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-49535e5525606250306488ba;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CWzE6n2U7hSFcSIHX5z76DPIid9pvbOqM6ikOlegBxzbuRThMeLKZA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:46:14 GMT
etag: "366b2090d409d694b72b4b4131df46dd65d69c5a"
content-type: image/jpeg
age: 76291
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2157f7cfbdeb607f28ae51eb090f2c3
33d0dcadaa42179b2eae914c8ad16c9c088afbc9
135cd89c2c82f0f5e53d2612d5eac868c175b28a567a07e63a2073942e36a066
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6078
x-amzn-requestid: e09c099f-5a2d-49d7-b6ab-e16f09c28bd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YavJEEM5IAMFreQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f8a0-0fbb7b3d0cd6fbfa04f5a5d2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:39:44 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ur-HTN2DS8b3ojSQldJOZi6YW2wtCwRfbGqxg49ZUJ_00hC_rFxYEw==
via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 22:05:07 GMT
age: 75158
etag: "33d0dcadaa42179b2eae914c8ad16c9c088afbc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fef8234ab83f6f8f8b29665f592cbc9f
a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7
569c8c9736026fc310e148d4d74081e96a86245baaa1f784280d44a1cbd25ed0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14151
x-amzn-requestid: d5bc9be4-af3a-40fd-bfc9-1ac4769d2d3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4GhboAMF2dA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-375df72d2d67582635b9e4ae;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CZRpgjU_AxNYoyeSTOwhJhONl2DS4pvCLJ62RgAFp0flw-kPz3GkpQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 22:06:54 GMT
etag: "a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7"
content-type: image/jpeg
age: 75051
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f5befd5bb8e6d5dad2465be69d5a33e4
e5b46c3ca439a09950290cada1af5e27cede10f2
4dc0a3373fb4c1830c4e2420dddbcbe8dceecf10e969cbe8d02368e41207832c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5988
x-amzn-requestid: a0d81c7a-14e3-443d-8fb7-19241f06d3c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yaux0H77IAMF2_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f80b-0fe6fbbe75e891b925f88dc2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3PbHWkNMa0XkuY_FcTO22i9YwMdqlJPCho7FlBwdbuUnbWrOv0w5Hg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:59:03 GMT
age: 75522
etag: "e5b46c3ca439a09950290cada1af5e27cede10f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f033f00-b116-4419-9d21-3aed9c73ea2e.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f033f00-b116-4419-9d21-3aed9c73ea2e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d97e56f75165efcc71ae54952ded405
28d47359e70789115b2954b6c94711bb783b3c8c
564eac2ae99724e5f43aa1ae0afe4dec03697f888f51774e70e1b9c273c2d9d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f033f00-b116-4419-9d21-3aed9c73ea2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8764
x-amzn-requestid: 48f44e2c-3d91-46cf-8701-3c5028e0a86d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YE-gLG4_oAMFn-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63184467-46abfc77601bd90f39a2c840;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 07:12:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tE5GZDktiELwfFRC_IEAqoat6cN7vb_TA17d-zRO6saTLEGRqB94Pw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 13:36:51 GMT
age: 19254
etag: "28d47359e70789115b2954b6c94711bb783b3c8c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0789404fdbe3613d465d8fa89a63d7b8
0617d2e513097ca415a1d07cd39b1cb64d832ecf
80e55e383f354113c3694bbcc00fd1c544a97079bd3c462f1b90e952c0634bac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10138
x-amzn-requestid: bdf798d9-6729-4363-a900-f32c4041d0c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YU5qsGZ-oAMFQ1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ea311-7b146c0620a83d5c00446f87;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 03:10:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OM9K72ukk0cuyR1ZcV5xWXnEd8U9OgeQi7bkCe0Pzn3BfdLMvSdSXg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 03:09:32 GMT
age: 56893
etag: "0617d2e513097ca415a1d07cd39b1cb64d832ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
procustomer.ro/wp-content/themes/posh/fonts/icomoon/icomoon.woff
185.253.252.169200 OK 5.6 kB URL HTTP/2 procustomer.ro/wp-content/themes/posh/fonts/icomoon/icomoon.woff
IP 185.253.252.169:0
File type Web Open Font Format, CFF, length 5564, version 1.0\012- data
Hash 8431bd44fb4769701eb6e0ec53c4a9da
bd55c905b135a4ccc39f17e540ce72726bfeecba
fcdf79ec8878f10d360a7adc0abdf7e45889f11c31153f5bfacc69ace68eafd8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/posh/fonts/icomoon/icomoon.woff HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://procustomer.ro/wp-content/themes/posh/style.css?ver=6.0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 07 Mar 2014 15:58:48 GMT
accept-ranges: bytes
content-length: 5564
content-type: font/woff
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/themes/posh/fonts/font_awesome/fontawesome-webfont.woff?v=4.0.3
185.253.252.169200 OK 44 kB URL HTTP/2 procustomer.ro/wp-content/themes/posh/fonts/font_awesome/fontawesome-webfont.woff?v=4.0.3
IP 185.253.252.169:0
File type Web Open Font Format, TrueType, length 44432, version 1.0\012- data
Hash 3293616ec0c605c7c2db25829a0a509e
04c3bf56d87a0828935bd6b4aee859995f321693
0fd28fece9ebd606b8b071460ebd3fc2ed7bc7a66ef91c8834f11dfacab4a849
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/posh/fonts/font_awesome/fontawesome-webfont.woff?v=4.0.3 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://procustomer.ro/wp-content/themes/posh/style.css?ver=6.0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 07 Mar 2014 15:58:48 GMT
accept-ranges: bytes
content-length: 44432
content-type: font/woff
date: Wed, 14 Sep 2022 18:57:46 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/uploads/2013/09/pro-pages.png
185.253.252.169200 OK 1.5 kB URL HTTP/2 procustomer.ro/wp-content/uploads/2013/09/pro-pages.png
IP 185.253.252.169:0
File type PNG image data, 107 x 107, 8-bit/color RGBA, non-interlaced\012- data
Hash 4369c9a1c23cb3ef2fc03bb5121908e6
34f9b32bb0c70d7260d76eb25aaf351bbcecd4a6
879714666468e4851cb1905ca4c5db550c3b8fcdbb478107b9c17db96af59eb1
GET /wp-content/uploads/2013/09/pro-pages.png HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Mar 2014 17:58:37 GMT
accept-ranges: bytes
content-length: 1494
content-type: image/png
date: Wed, 14 Sep 2022 18:57:46 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/uploads/2013/09/pro-shopping-bag.png
185.253.252.169200 OK 1.5 kB URL HTTP/2 procustomer.ro/wp-content/uploads/2013/09/pro-shopping-bag.png
IP 185.253.252.169:0
File type PNG image data, 107 x 107, 8-bit/color RGBA, non-interlaced\012- data
Hash 4b43191a3354d6bc53a03de5c4d7d85c
2cc7a6c0e2923c99b81b360629b6a30c4390dc8a
f2d1688bdcc0a5423804a8e427f3f0079556aed30e5e69c82e7bb25e63608cda
GET /wp-content/uploads/2013/09/pro-shopping-bag.png HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Mar 2014 17:58:22 GMT
accept-ranges: bytes
content-length: 1478
content-type: image/png
date: Wed, 14 Sep 2022 18:57:46 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/uploads/2013/09/procrotas.png
185.253.252.169200 OK 7.5 kB URL HTTP/2 procustomer.ro/wp-content/uploads/2013/09/procrotas.png
IP 185.253.252.169:0
File type PNG image data, 107 x 107, 8-bit/color RGBA, interlaced\012- data
Hash 380ab09d0ab9ab5f7f739a8c9176e662
32133604073e0c48d971787fd3561613dca4188d
dd6a06f1528b3e7f7e66f85cf5a408fc209bd4f9f2157adabcc1811f3901ab5c
GET /wp-content/uploads/2013/09/procrotas.png HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Mar 2014 14:57:25 GMT
accept-ranges: bytes
content-length: 7465
content-type: image/png
date: Wed, 14 Sep 2022 18:57:46 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/uploads/2013/09/pro-help.png
185.253.252.169200 OK 1.5 kB URL HTTP/2 procustomer.ro/wp-content/uploads/2013/09/pro-help.png
IP 185.253.252.169:0
File type PNG image data, 107 x 107, 8-bit/color RGBA, non-interlaced\012- data
Hash 1946a6d65bd72b03e6fca0f4fa2cd9af
162c44e544b1a88c083cef4a7b4e2cbd50ffb0b3
8ffc3c4d36dccff374f52ddeeb75fe1d3c8b3004e76703dfbf1fa7a02584f62d
GET /wp-content/uploads/2013/09/pro-help.png HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Mar 2014 18:05:08 GMT
accept-ranges: bytes
content-length: 1512
content-type: image/png
date: Wed, 14 Sep 2022 18:57:46 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/uploads/2013/09/pro-laptop.png
185.253.252.169200 OK 1.3 kB URL HTTP/2 procustomer.ro/wp-content/uploads/2013/09/pro-laptop.png
IP 185.253.252.169:0
File type PNG image data, 107 x 107, 8-bit/color RGBA, non-interlaced\012- data
Hash e6e5af4e6cf7e22aa215507b07f93231
ea917a9fa4ceeddf5e39d029b019ce4df185e7c8
44cbb505ff8ca34ba2fa9d6869116301f9a9bb9b260ecc7a48b5b0233b31688d
GET /wp-content/uploads/2013/09/pro-laptop.png HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Mar 2014 18:06:41 GMT
accept-ranges: bytes
content-length: 1305
content-type: image/png
date: Wed, 14 Sep 2022 18:57:46 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/uploads/2013/09/pro-settings.png
185.253.252.169200 OK 1.5 kB URL HTTP/2 procustomer.ro/wp-content/uploads/2013/09/pro-settings.png
IP 185.253.252.169:0
File type PNG image data, 107 x 107, 8-bit/color RGBA, non-interlaced\012- data
Hash 02d067fb882972ae320d877b4ec66455
d8efbd1d99fddcf393c53e399b62e055e4c7096f
2ce551d1eb16312a00e77ae737afc078410dd2aa72262e97d3170bc426ced221
GET /wp-content/uploads/2013/09/pro-settings.png HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Mar 2014 18:07:35 GMT
accept-ranges: bytes
content-length: 1515
content-type: image/png
date: Wed, 14 Sep 2022 18:57:46 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/themes/posh/images/preloader.gif
185.253.252.169200 OK 2.0 kB URL HTTP/2 procustomer.ro/wp-content/themes/posh/images/preloader.gif
IP 185.253.252.169:0
File type GIF image data, version 89a, 20 x 20\012- data
Hash 5695f03663b39ed4b9436d789f0b27ec
62be0d1e5848a717a52ea0b923a47f0d0d6086e3
04c9abd7ff30a71e2e308f76c509c325b099ab6e3667859df6ede4b9aebf6c4c
GET /wp-content/themes/posh/images/preloader.gif HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/wp-content/themes/posh/style.css?ver=6.0.2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 07 Mar 2014 15:58:48 GMT
accept-ranges: bytes
content-length: 1986
content-type: image/gif
date: Wed, 14 Sep 2022 18:57:46 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 74cf77ca0dd7e4f96dfea6ceb4536e65
fa0492bed3fa3b15cc0380e3692320088aa7b217
94f64669694fa90640f8ee8c22f1cb792166c18bab72200a991bc6eaf8f09453
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5784
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 18:57:46 GMT
Last-Modified: Wed, 14 Sep 2022 17:21:22 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/ro_RO/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/2 connect.facebook.net/ro_RO/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1961)
Hash c72a6e06fa09ed6253f82ce2e8c3c854
f02eaac5ccd87a5d5db1fa00ef81a2e19e2fa116
d045f803a9e18fde2c3c346d6a6356a972b8fed01a781942e109d77197d35f47
GET /ro_RO/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 285d5ee4910ebf51fa5356ba7e24239a
etag: "cb8bfbc1fcfde864414cffed3001c65f"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 14 Sep 2022 19:13:16 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: xypuBvoJ7WJT+Czi6MPIVA==
x-fb-debug: Z6mtNJ8xkkru8lzSY6gfaWbhveuuS9rL5sFy9NgCxOuiLrizdFcNBA1qhWt1itrNnPNb/v9X5bPHz9ocAw95sw==
content-length: 1686
x-fb-trip-id: 1679558926
date: Wed, 14 Sep 2022 18:57:46 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 74cf77ca0dd7e4f96dfea6ceb4536e65
fa0492bed3fa3b15cc0380e3692320088aa7b217
94f64669694fa90640f8ee8c22f1cb792166c18bab72200a991bc6eaf8f09453
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5784
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 18:57:46 GMT
Last-Modified: Wed, 14 Sep 2022 17:21:22 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
procustomer.ro/wp-content/uploads/2014/03/favicon-procustomer.ico
185.253.252.169200 OK 1.2 kB URL HTTP/1.1 procustomer.ro/wp-content/uploads/2014/03/favicon-procustomer.ico
IP 185.253.252.169:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 4bbbea910da690dda9461018ba8e4d72
d85ba0d6377a9e8f4385d9925620e57218ac8590
e02e080e6c70c788e7fabba67d9f5f289d38dc6199a7ace3876318728f735710
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2014/03/favicon-procustomer.ico HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 18:57:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 15 Mar 2014 15:55:50 GMT
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=100
Content-Type: image/x-icon
connect.facebook.net/ro_RO/sdk.js?hash=0d0f78b8998f332bfb97bbbc8a5afd87
157.240.200.14200 OK 88 kB URL HTTP/2 connect.facebook.net/ro_RO/sdk.js?hash=0d0f78b8998f332bfb97bbbc8a5afd87
IP 157.240.200.14:0
File type ASCII text, with very long lines (18534)
Hash 638c713fc570c8d55377fe1d961ac986
fc52734278f3f020d183479b97ae80ddb1d247c0
6176ad5122dac47587e7bef2985abd1b7bdb7b20f04fdf7a47fa3c3ea85d9346
GET /ro_RO/sdk.js?hash=0d0f78b8998f332bfb97bbbc8a5afd87 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://procustomer.ro
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 58ec4e75b7c2613e4b72ee37f36059c0
etag: "feb06a8ffefcc1bcc49c20bd7cd67d8e"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 14 Sep 2023 18:33:14 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: Y4xxP8VwyNVTd/4dlhrJhg==
x-fb-debug: 1TJmUTOJWEaFbwYvfl99MQG+lzRFn4Exi6fP8PBquvyqnJD5cOA3MhcW5LmUCUn9KcwtrojaM+s5KDy15gwbbw==
priority: u=3,i
content-length: 88289
x-fb-trip-id: 1679558926
date: Wed, 14 Sep 2022 18:57:46 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/images/moove-logo.png
185.253.252.169301 Moved Permanently 0 B URL HTTP/1.1 procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/images/moove-logo.png
IP 185.253.252.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/gdpr-cookie-compliance/dist/images/moove-logo.png HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Wed, 14 Sep 2022 18:57:45 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/images/moove-logo.png
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-regular.woff2
185.253.252.169200 OK 19 kB URL HTTP/2 procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-regular.woff2
IP 185.253.252.169:0
File type Web Open Font Format (Version 2), TrueType, length 18796, version 1.0\012- data
Hash e5ab24fb2b666576b0f199e25e1b5c09
cf8cfb1025573f69d37688b617931ff10da62fd8
623b62596e07df1fbf3a9fc0219c238e373bec6e55349826b0315b50ed2a7a7d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-regular.woff2 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.8.12
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 17:17:39 GMT
accept-ranges: bytes
content-length: 18796
content-type: font/woff2
date: Wed, 14 Sep 2022 18:57:48 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-700.woff2
185.253.252.169200 OK 19 kB URL HTTP/2 procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-700.woff2
IP 185.253.252.169:0
File type Web Open Font Format (Version 2), TrueType, length 18912, version 1.0\012- data
Hash f937643e9e2d39b98a3ae9ada057e740
fe2534a5e2bf00d090f50ba03a536a0e76e8e9a6
cdc28355b0b7217392395460dd7dfbc65a4cf0822c986a7533f4ca7434799e53
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-700.woff2 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.8.12
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 17:17:39 GMT
accept-ranges: bytes
content-length: 18912
content-type: font/woff2
date: Wed, 14 Sep 2022 18:57:48 GMT
server: Apache
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yS/l/0,cross/qlcme0_IJnE.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yS/l/0,cross/qlcme0_IJnE.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4093)
Hash cf67c2ba10a6be81004cb6c7f844b413
f95f770928c991be3f531f4085a4916ba1a96d6d
09e61b10cf154b81d14baf7115103ea85db3f9c5696ab464a7440f0b4cfb07af
GET /rsrc.php/v3/yS/l/0,cross/qlcme0_IJnE.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 14 Sep 2023 16:47:01 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-fb-rlafr: 0
content-md5: z2fCuhCmvoEATLbH+ES0Ew==
x-fb-debug: L+lq/5ZfjC+Fogxo8egpNFsnkiCc8C/napIL0Gq1Riqttw+mP+r9Tb6uw9GskqpoU4bCiVPcei6PLwZ5cJpCmA==
priority: u=3,i
content-length: 5121
x-fb-trip-id: 1679558926
date: Wed, 14 Sep 2022 18:57:49 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 01:37:14 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: J76KZ7MIaG1WhOgdxMnU+bXxxoWUIgiX37FVFVHDsWMFmgPYtTQyiboxzc18qJkuGokCNkxSoV3uy6uswzXmPQ==
content-length: 827
x-fb-trip-id: 1679558926
date: Wed, 14 Sep 2022 18:57:49 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (18501)
Hash e712b0060a23b6c5ede3b67e0bb8639e
faf1f8ee5d679c27fb0fd418f63cf7d851344d26
0efe6b239b3fb45de4071c337078b2b43696cdccdf01024f527af941701239fd
GET /rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 03:30:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 5xKwBgojtsXt47Z+C7hjng==
x-fb-debug: 3c0szJoPJlw3vjUpY97f7O7xkRYg1sm5oRSI3yfowVeJWTVbFZE/6e7l9rVCMDvSXmxGXtVhnpsTmkqZudUKqQ==
priority: u=3,i
content-length: 90711
x-fb-trip-id: 1679558926
date: Wed, 14 Sep 2022 18:57:49 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (5261)
Hash 6059f2908fc78af36d89f372311116ef
431905421a858f26f5624203b0ecae7b6d8c6c42
33ba2a807c3a7a85d489d24e1a843c4361a791492fdbe68e471d2064155467f0
GET /rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 01:40:11 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: YFnykI/HivNtifNyMREW7w==
x-fb-debug: XY7hTNsHQVg4WmMiknDOY8p46PgjKqNyZr0zZFrXIZVUMCXxYI04B1QnT9wGtBq3l2Kcary5RdcB8gguz65EjQ==
content-length: 12179
x-fb-trip-id: 1679558926
date: Wed, 14 Sep 2022 18:57:49 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yK/r/j_wNZYbaldW.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yK/r/j_wNZYbaldW.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (7299)
Hash 15240c752b29af21dfc4c5b38d7bd37a
8324e81ecdb9a4775ef4aabbadf833b408aededb
068517058d35fd5c402189f4e68f13d1d2a2a1b39b2bf973b10a83362826099e
GET /rsrc.php/v3/yK/r/j_wNZYbaldW.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 13 Sep 2023 18:27:25 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FSQMdSspryHfxMWzjXvTeg==
x-fb-debug: oDqIYRZZwSytM+THoXN9/YN6o2IGSaUVAbFfN9yugK+kvutWY128j0gm73U0j5oqOJKJreUQqDFXYptOOPKkfA==
content-length: 15877
x-fb-trip-id: 1679558926
date: Wed, 14 Sep 2022 18:57:49 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3if-T4/yt/l/ro_RO/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3if-T4/yt/l/ro_RO/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (42178)
Hash 8d8a6ebfe1ee8f5eed0d21cc9ab5b08c
5e363684e798999860c0223056b8f56d3f438503
fb69738bb8513b49833f2301d879618c99fa1071c8928e47ee0c1c14c12ea745
GET /rsrc.php/v3if-T4/yt/l/ro_RO/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 04:09:44 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: jYpuv+Huj17tDSHMmrWwjA==
x-fb-debug: xS8C47mDb9Yo9yjTDHaFyFAuuHQqtpwtUgEQUJ/KkRxD/rfaNFwW7GatpwtTLp4W2Ki1ZxNZKYOc7Fl6EG8GRg==
content-length: 23395
x-fb-trip-id: 1679558926
date: Wed, 14 Sep 2022 18:57:49 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?rev=4.6.0&ver=6.0.2
185.253.252.169200 OK 0 B URL HTTP/2 procustomer.ro/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?rev=4.6.0&ver=6.0.2
IP 185.253.252.169:0
GET /wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?rev=4.6.0&ver=6.0.2 HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 05 Nov 2021 06:41:42 GMT
accept-ranges: bytes
content-length: 94880
content-type: application/javascript
date: Wed, 14 Sep 2022 18:57:45 GMT
server: Apache
X-Firefox-Spdy: h2
procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/images/moove-logo.png
185.253.252.169404 Not Found 0 B URL HTTP/2 procustomer.ro/wp-content/plugins/gdpr-cookie-compliance/dist/images/moove-logo.png
IP 185.253.252.169:0
GET /wp-content/plugins/gdpr-cookie-compliance/dist/images/moove-logo.png HTTP/1.1
Host: procustomer.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://procustomer.ro/wp-json/>; rel="https://api.w.org/"
content-type: text/html; charset=UTF-8
date: Wed, 14 Sep 2022 18:57:46 GMT
server: Apache
X-Firefox-Spdy: h2
www.facebook.com/v2.4/plugins/page.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df7eb31c32e63ea%26domain%3Dprocustomer.ro%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fprocustomer.ro%252Ff25556e922f5ff%26relation%3Dparent.parent&container_width=231&height=245&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FPROCustomer.ro%3Flocale%3D&locale=ro_RO&sdk=joey&show_facepile=true&show_posts=false&small_header=false&width=200
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/v2.4/plugins/page.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df7eb31c32e63ea%26domain%3Dprocustomer.ro%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fprocustomer.ro%252Ff25556e922f5ff%26relation%3Dparent.parent&container_width=231&height=245&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FPROCustomer.ro%3Flocale%3D&locale=ro_RO&sdk=joey&show_facepile=true&show_posts=false&small_header=false&width=200
IP 157.240.200.35:0
GET /v2.4/plugins/page.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df7eb31c32e63ea%26domain%3Dprocustomer.ro%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fprocustomer.ro%252Ff25556e922f5ff%26relation%3Dparent.parent&container_width=231&height=245&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FPROCustomer.ro%3Flocale%3D&locale=ro_RO&sdk=joey&show_facepile=true&show_posts=false&small_header=false&width=200 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://procustomer.ro/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: dcrNVORpPPUnu8EcBjknYN5JxtVAfvzQQRXLiRIaD2HY6nRZ6FkmuACNtmxmyFVdJXh/I+i6o1SRlk/Vk2L5lQ==
date: Wed, 14 Sep 2022 18:57:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2