r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96daaf84cd2c07756756caf7a2724a29
d24d47c68eec98d44bf341dab9d893df97103e1a
fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2590
Expires: Fri, 16 Sep 2022 08:35:52 GMT
Date: Fri, 16 Sep 2022 07:52:42 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 06:58:22 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kayJ4yVGdH-lf0o53V3Xwf6vqXe9lD48O3otCcWWGgreU_0w0ormcw==
Age: 3260
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TAklMyxSWo1mYKtuskOypfJPmnHH_UgdTmkDtchdtxIgNGLwyGx18Q==
age: 11847
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 07:52:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
hotel-belvedere.ro/modoc/adobe/
89.42.218.173301 Moved Permanently 0 B URL HTTP/1.1 hotel-belvedere.ro/modoc/adobe/
IP 89.42.218.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /modoc/adobe/ HTTP/1.1
Host: hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: http://www.hotel-belvedere.ro/modoc/adobe/
content-length: 0
date: Fri, 16 Sep 2022 07:52:41 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 16 Sep 2022 07:03:22 GMT
Expires: Fri, 16 Sep 2022 07:44:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 16_x8aId-CeALx3gc8NmNeQJK6GOHlIHZqyZA-6kEDjJXsahT8zvKQ==
Age: 2960
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d597af1ab2f21a983bf0f0d105b94209
9d5dd938777abde094c89066b539141a02106b88
a614eb7f969544c8040642be7c852625341e2441e757d063d2af1ff465c8c3f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3288
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 07:52:42 GMT
Last-Modified: Fri, 16 Sep 2022 06:57:54 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
www.hotel-belvedere.ro/modoc/adobe/
89.42.218.173404 Not Found 16 kB URL HTTP/1.1 www.hotel-belvedere.ro/modoc/adobe/
IP 89.42.218.173:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (50511), with CRLF, LF line terminators
Hash eee0bfb51c10ea1b1ab8201006b27f42
ec16634b60fe446cb9dd273f211c3fa8dc2593f1
475d59502dc52f180ad38765668ff7cf6991eaaade9b28608a73e4f7fd88ab7a
Analyzer Verdict Alert fortinet Phishing
GET /modoc/adobe/ HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <http://www.hotel-belvedere.ro/wp-json/>; rel="https://api.w.org/"
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
fonts.googleapis.com/css?family=Lato%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.14
216.58.211.10200 OK 438 B URL HTTP/1.1 fonts.googleapis.com/css?family=Lato%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.14
IP 216.58.211.10:0
Hash d99fc1cb140d0ebff93b9ea18b8ab1a8
394123453ef5d18f1b19ba029ad242b803b39a09
e8a1e7f6a4b7577532f5f21dc1e4b4ac0bf258b4c34b88986feac2b569998b27
GET /css?family=Lato%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.14 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 16 Sep 2022 07:52:43 GMT
Date: Fri, 16 Sep 2022 07:52:43 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Anton%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.14
216.58.211.10200 OK 383 B URL HTTP/1.1 fonts.googleapis.com/css?family=Anton%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.14
IP 216.58.211.10:0
Hash de8798d5c8857cc3eb5eb126b3d292f0
f73cb6df21a3dba293051bc281d649cd4267891e
1fb8614cdd404d64f3bd7fc5c3f61315bb5f4d49530a4e21aa2ba0037b24b559
GET /css?family=Anton%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.14 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 16 Sep 2022 07:52:43 GMT
Date: Fri, 16 Sep 2022 07:52:43 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Open+Sans%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.14
216.58.211.10200 OK 809 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.14
IP 216.58.211.10:0
Hash 443701715f11d1c6629eed18495b7eb9
a3f3615e3e5690e45f2df3ddb16c4673c935f492
21795664d68f0fa70dd973c213f9c9a95de6875511c0f4a69235e76ccf67bfac
GET /css?family=Open+Sans%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.14 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 16 Sep 2022 07:52:43 GMT
Date: Fri, 16 Sep 2022 07:52:43 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Patua+One%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.14
216.58.211.10200 OK 272 B URL HTTP/1.1 fonts.googleapis.com/css?family=Patua+One%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.14
IP 216.58.211.10:0
Hash d269fcc8054b6533d776d36e10261615
a90615e93697c70d5735be8ac1615319be92a8c4
e35067450cd0c5a82c16ad3882c595ccc1ea03711b266cbfaa64bb8dc88237c0
GET /css?family=Patua+One%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.14 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 16 Sep 2022 07:52:43 GMT
Date: Fri, 16 Sep 2022 07:52:43 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.hotel-belvedere.ro/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.7.1
89.42.218.173200 OK 3.9 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.7.1
IP 89.42.218.173:0
Hash d0bd62763ba1bc49218444fbbc5e7b58
022dd384e0f2a0ab63b104919260d5ca19f7389d
54bbbad0ff9af9c8a9476a77cf8ff3573b1d6660986bfbb2b74dca13f9385d85
GET /wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.7.1 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: text/css
last-modified: Fri, 25 May 2018 11:00:48 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3873
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.3
89.42.218.173200 OK 9.5 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.3
IP 89.42.218.173:0
File type Unicode text, UTF-8 text, with very long lines (5178)
Hash a19a506e77df0553e03b4f1c57a7b3e5
d5370f844706185a9306f85ecddc3d96e1956af5
359c339085540958dcd8aa879369b61564b3dee3c6d43aca00fe7681c0033313
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.3 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: text/css
last-modified: Fri, 25 May 2018 11:04:45 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 9533
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=20.9.2
89.42.218.173200 OK 2.1 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=20.9.2
IP 89.42.218.173:0
Hash ce077a764aa962e025cacb527e8735a5
f7bd3a5ba2af42ac9d8f44dcb89dce9fef6b742c
e83086e67a81ae9cbd469c9040a0c98620400a0d3bbd984f70e2769a1199a2a1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=20.9.2 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: text/css
last-modified: Fri, 25 May 2018 11:01:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2088
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/assets/animations/animations.min.css?ver=20.9.2
89.42.218.173200 OK 5.4 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/assets/animations/animations.min.css?ver=20.9.2
IP 89.42.218.173:0
File type ASCII text, with very long lines (58508), with no line terminators
Hash 1e16b3deed699b6981cd0da61d366687
326bb20f9e587d45c3f3e75c55abb177cd6b6e0a
37a9f1feee058927e1a4c441ef62a1a5ac9b5d4f1f5ae0b16e381b418416921a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/assets/animations/animations.min.css?ver=20.9.2 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: text/css
last-modified: Fri, 25 May 2018 11:01:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5423
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=20.9.2
89.42.218.173200 OK 3.4 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=20.9.2
IP 89.42.218.173:0
File type ASCII text, with very long lines (365)
Hash 363f9f25c82d22e04674d04c9dedde8b
5bebfb2db2791380bef8799051467b7fbf4f7d8a
1ac80ad3a47ec61afa54d27acae43c7a40c9ec75e7ce0d6d0d7101489a79d407
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=20.9.2 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: text/css
last-modified: Fri, 25 May 2018 11:01:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3377
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
push.services.mozilla.com/
35.164.183.116101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.183.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4LBuo2wKRPn3Giqj9QODuA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zvBhchnSJN6f5LhTcqoa23iJ1X4=
www.hotel-belvedere.ro/wp-content/themes/betheme/css/shortcodes.css?ver=20.9.2
89.42.218.173200 OK 22 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/css/shortcodes.css?ver=20.9.2
IP 89.42.218.173:0
File type ASCII text, with very long lines (404)
Hash 185001b887eb8454bb0847e1db1a1b3e
4a45bc846c4e47af7b007ca5cf6016a14e8765e4
434ed1e2d698ecd0b5a9f2058a0f8d26c27e81be0ba686c99ce581d6a6258772
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/css/shortcodes.css?ver=20.9.2 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: text/css
last-modified: Fri, 25 May 2018 11:01:03 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 22210
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/css/layout.css?ver=20.9.2
89.42.218.173200 OK 20 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/css/layout.css?ver=20.9.2
IP 89.42.218.173:0
File type ASCII text, with very long lines (401)
Hash 06e56a87240940ee81ee6f36143214b3
c739374e7cc5e0bbcd07560f6b5e4e9dc04c035e
610d1c9aad29ea055baddba52ce70a6ba3181af60a12fd6ef877d4f31303a50c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/css/layout.css?ver=20.9.2 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: text/css
last-modified: Fri, 25 May 2018 11:01:03 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 19657
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/css/responsive.css?ver=20.9.2
89.42.218.173200 OK 9.9 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/css/responsive.css?ver=20.9.2
IP 89.42.218.173:0
File type ASCII text, with very long lines (612)
Hash 6ab7d59579bba747fcf59aaa1f9da875
9aeb78297dc47e4e15f0763852b3fc0aec822bee
63be7d6534a58bcb2308928ba4538f5f301366e122ab9bbf5040e74a279049a8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/css/responsive.css?ver=20.9.2 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: text/css
last-modified: Fri, 25 May 2018 11:01:03 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 9903
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
89.42.218.173200 OK 4.0 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 89.42.218.173:0
File type ASCII text, with very long lines (9959)
Hash 2f89b08855471c7476435ce0bec33ba7
970533f152623df03b5fc6fb793b21889e4e0349
d200586b6dd1ff779b6c30947361ff736e076d8c7d502505ab3174ca33455ea0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Fri, 20 May 2016 06:11:28 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4034
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0
89.42.218.173200 OK 40 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0
IP 89.42.218.173:0
File type ASCII text, with very long lines (32006)
Hash 6eb0b814bb13e7db514bd76120403c8c
dfc1b4afa4b5ad9a8810551248716a1ffae53dcc
5c98c090549e391ff375c422e55c4ab476e7b54837e9a864e0f70905e183e387
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Fri, 25 May 2018 11:00:48 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 39787
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.7.1
89.42.218.173200 OK 3.4 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.7.1
IP 89.42.218.173:0
File type Unicode text, UTF-8 text, with very long lines (23514)
Hash a2e4856f70f57ccba61133ef2ccd28a0
22dca0e0aa28f8b03e215acd56809eef71e77b26
441ff9cfc6220c23b1ac9659809461dcdb74583e822fd82b6f841d07e2352b50
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.7.1 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Fri, 25 May 2018 11:00:49 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3414
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14
89.42.218.173200 OK 4.4 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14
IP 89.42.218.173:0
File type ASCII text, with very long lines (9071)
Hash 783f2bc6bc1277da038d5837eb5bfc2f
570768062dfc17fe7d9cdbe3a199e70c98dcbc08
94b01bcf6b6e25798eacd39178b60db17ccf420c2e1306dc722182b5e009a806
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.1.14 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 09:44:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4369
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.3
89.42.218.173200 OK 39 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.3
IP 89.42.218.173:0
File type ASCII text, with very long lines (27287)
Hash 93e63ed38ab45ae8201c29c0a04fab68
4680cd6a3f2d6f0f661c592de40a8db955ec9663
736f1a9b05dcb4e01b15e588eee5e6fac044e288627c3e12a168d8e2ede866f8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.3 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Fri, 25 May 2018 11:04:45 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 38567
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.7.1
89.42.218.173200 OK 44 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.7.1
IP 89.42.218.173:0
File type ASCII text, with very long lines (65335)
Hash d9911e4a904992631c448e675acbb160
63cacf55b11d3210183f1f17d9ba47d4ad71f57f
0045ea698968ec2cfb4228b5bf353502ae6c64de7406c9e39c94b897bd872c89
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.7.1 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Fri, 25 May 2018 11:00:48 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 44273
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.3
89.42.218.173200 OK 18 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.3
IP 89.42.218.173:0
File type ASCII text, with very long lines (64634)
Hash a08c919f9b379ad739950de0b3e53af2
39b056beaf1c582fb1d022dfb6d8d06923afc9bd
cf5d73e0eba94d72c5b2099692fdb5a0054b6c9256bf3884722fabd8abc9d452
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.3 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Fri, 25 May 2018 11:04:45 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 18022
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1
89.42.218.173200 OK 4.0 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1
IP 89.42.218.173:0
Hash a975a254fbc49a0086a84e624d7f094c
04885e648587650d8782310a9e8056191dbe5411
5033a9e7cefd80eda6878d4fe33c7e3a59f2da9e06a7a74d44961a9d8de4ee20
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Mon, 25 Feb 2019 08:41:17 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3993
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
89.42.218.173200 OK 2.5 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
IP 89.42.218.173:0
File type ASCII text, with very long lines (6603)
Hash e33bfe2bb9f96b667a97ba61d37bff2b
c7882b6f8bd819edf661bff6c0453dea5e82a2e7
46c60d5a4a6ec1eaebbc0d604f3d00218319df701a63ae29293b067584eb6ded
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 09:44:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2528
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
89.42.218.173200 OK 991 B URL HTTP/1.1 www.hotel-belvedere.ro/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
IP 89.42.218.173:0
File type ASCII text, with very long lines (2927)
Hash 8733af7831a9f5e7bf809659a8f0abe0
393e2ff5b213acf0d7b1564e5427fdbe5aeba973
51a3858aad2732c33680e5a2d023f527b597a6ba8bbd38488964fbef30c83094
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 09:44:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 991
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4
89.42.218.173200 OK 3.9 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4
IP 89.42.218.173:0
File type ASCII text, with very long lines (11799)
Hash 00e7ff523c1017c2f3065cb719db64e9
9b93153d8f2bfb74f0a17e4a680692e26747ac57
e500584adfcc85c9717369896efec9e97c7f46346c029acd1a78c34af5583c37
GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 09:44:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3859
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4
89.42.218.173200 OK 6.4 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4
IP 89.42.218.173:0
File type HTML document, ASCII text, with very long lines (24607)
Hash 60538f45fa9450e96941751262b64a44
e54c8911790f75e2d22afdc6d4ffff0c8cad4e08
37e4ad61313bc402d4c39e31cb68a462220da65d152066e2024fcb0c22af4dae
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 09:44:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6435
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4
89.42.218.173200 OK 2.7 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4
IP 89.42.218.173:0
File type ASCII text, with very long lines (8339)
Hash e6090ffd1736bf16882cf79f9cea469b
aadb264883600a51b1afeaee6f84aa81c7bc3283
64219899695abf877cce05efc84430159da9999c2a9bd405652c798327d5db1b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 09:44:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2675
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/js/menu.js?ver=20.9.2
89.42.218.173200 OK 871 B URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/js/menu.js?ver=20.9.2
IP 89.42.218.173:0
Hash d24afe71aedd56d38ca20f9c9f68a47f
ce49a34a75315619aafe2cf98ebfcccaf21e1132
2ba6d09d67f6e7621851318959802a92b107236e5f0641e76c363eb7e89594d4
GET /wp-content/themes/betheme/js/menu.js?ver=20.9.2 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Fri, 25 May 2018 11:02:43 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 871
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/assets/animations/animations.min.js?ver=20.9.2
89.42.218.173200 OK 622 B URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/assets/animations/animations.min.js?ver=20.9.2
IP 89.42.218.173:0
File type ASCII text, with very long lines (1723)
Hash 462a23af270a8466f6e891db8075b79d
16fce7e9e5568e36ecaf449bb5ca23f892485681
1c8cbbe474b1c12f6f0a6287b7290022d40d42c852501e83baf89a99e8af5b96
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/assets/animations/animations.min.js?ver=20.9.2 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Fri, 25 May 2018 11:01:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 622
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=20.9.2
89.42.218.173200 OK 13 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=20.9.2
IP 89.42.218.173:0
File type ASCII text, with very long lines (634)
Hash 8399bb56be44b850d028b0bdc22affe3
57a74671cb26bd0c295b210b10ebb3b292696f09
b7ec28721c6c2cd78526a263736d29e1d82484b457ad3951d2bc5e68aac1063c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=20.9.2 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Fri, 25 May 2018 11:01:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 12793
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/js/parallax/translate3d.js?ver=20.9.2
89.42.218.173200 OK 1.7 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/js/parallax/translate3d.js?ver=20.9.2
IP 89.42.218.173:0
Hash 5d1a7c591da42fee60d84105974f0288
0a65965a1f4475c013d59695e2477087fc4f4b51
e1aedb4ae310e1262091a06062fc2558283ef88583a013b5538e4fb9c9bfa24b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/js/parallax/translate3d.js?ver=20.9.2 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Fri, 25 May 2018 11:02:43 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1659
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/js/scripts.js?ver=20.9.2
89.42.218.173200 OK 15 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/js/scripts.js?ver=20.9.2
IP 89.42.218.173:0
Hash f5fa9ace07b943411984b0c505d54195
a3a5cb8c8c4ffe67aa1527bdbf49cefedd65f7ef
6f4f6c3f9b72786b8071eec5801fb69eabdd1c30d9520accca9c6c3d377183e4
GET /wp-content/themes/betheme/js/scripts.js?ver=20.9.2 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Fri, 25 May 2018 11:02:43 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 14751
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/js/plugins.js?ver=20.9.2
89.42.218.173200 OK 54 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/js/plugins.js?ver=20.9.2
IP 89.42.218.173:0
File type ASCII text, with very long lines (32011)
Hash e85a286b6ac870cfe39a983f46ee9f7a
c1293f88fbe68aba75c629da5747d60efb608d69
a79169b5e2177a8286dd97bcba0ef64a0528a6458dbc23bb9a879bdf7c844636
GET /wp-content/themes/betheme/js/plugins.js?ver=20.9.2 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Fri, 25 May 2018 11:02:43 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 54279
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-includes/js/wp-embed.min.js?ver=5.1.14
89.42.218.173200 OK 743 B URL HTTP/1.1 www.hotel-belvedere.ro/wp-includes/js/wp-embed.min.js?ver=5.1.14
IP 89.42.218.173:0
File type ASCII text, with very long lines (1391), with no line terminators
Hash b146105040f6faa62806b35ad455d121
14aa49ed4f29b666221a8de3fd17f04455f12b15
05f4d51649be6878352af6843f9a5ffc14bb96ca7a02db21a35a14f6a150b004
GET /wp-includes/js/wp-embed.min.js?ver=5.1.14 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 09:44:01 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 743
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/style.css?ver=20.9.2
89.42.218.173200 OK 202 B URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/style.css?ver=20.9.2
IP 89.42.218.173:0
Hash a77f1a8a7f3dd134f2680be1972008c7
750558f607beace53cf86e9b26794e6ba5f06068
d6450267b501a48dc6170a33861e941dcfc05e531fae04492863d4aaf9b5c23e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/style.css?ver=20.9.2 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: text/css
last-modified: Fri, 25 May 2018 11:00:58 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 202
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1
89.42.218.173200 OK 657 B URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1
IP 89.42.218.173:0
Hash 05693f8e3634eaa294f415f241b633b6
8136e661102dfe848f2ce6bf384b9aba8e2829cc
550c7691a7e68e174472d3b68b3b147e40cdfe90335e9cd441cffeece9f9dfc4
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: text/css
last-modified: Mon, 25 Feb 2019 08:41:17 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 657
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/css/base.css?ver=20.9.2
89.42.218.173200 OK 12 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/css/base.css?ver=20.9.2
IP 89.42.218.173:0
File type ASCII text, with very long lines (474)
Hash 02e669fe098ab992590ad33695c85f9d
92bc344d48f5e048d216b4a5d85025729cfc3bae
5fdf51d19636a3631d4dcd2aa80897abee04d880afa3372d0409450e09c6aeff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/css/base.css?ver=20.9.2 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: text/css
last-modified: Fri, 25 May 2018 11:01:03 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 12184
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
fonts.gstatic.com/s/anton/v23/1Ptgg87LROyAm3Kz-C8.woff2
142.250.74.163200 OK 17 kB URL HTTP/1.1 fonts.gstatic.com/s/anton/v23/1Ptgg87LROyAm3Kz-C8.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 17020, version 1.0\012- data
Hash aca09278214a7e267c0498cdd36ce416
ab7def30380e8f14e6064a9fd3c7dca6769ad85d
feb9617bd3fcda1a52cbf8539985fddac2aaab0e6df8dbdac21ec3e9a179a4be
GET /s/anton/v23/1Ptgg87LROyAm3Kz-C8.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.hotel-belvedere.ro
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 17020
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 11 Sep 2022 20:27:41 GMT
Expires: Mon, 11 Sep 2023 20:27:41 GMT
Cache-Control: public, max-age=31536000
Age: 386702
Last-Modified: Tue, 19 Apr 2022 18:51:08 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.hotel-belvedere.ro
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 12 Sep 2022 21:39:27 GMT
Expires: Tue, 12 Sep 2023 21:39:27 GMT
Cache-Control: public, max-age=31536000
Age: 295996
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
142.250.74.163200 OK 18 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 17820, version 1.0\012- data
Hash 3d5107abaf7bf4df5478bd04625c0929
b04d394caabf6ea3e500b74781dc2bfd54f3c18d
9ad0a22b0c58240a7a92b4c01aa31f39a5918dea6a8fdfa77e63042abc4fca31
GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.hotel-belvedere.ro
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 17820
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 13 Sep 2022 01:34:58 GMT
Expires: Wed, 13 Sep 2023 01:34:58 GMT
Cache-Control: public, max-age=31536000
Age: 281865
Last-Modified: Mon, 15 Aug 2022 18:13:12 GMT
Content-Type: font/woff2
www.hotel-belvedere.ro/wp-content/themes/betheme/images/box_shadow_button.png
89.42.218.173200 OK 108 B URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/images/box_shadow_button.png
IP 89.42.218.173:0
File type PNG image data, 5 x 4, 2-bit colormap, non-interlaced\012- data
Hash 7d1900d531808efae7e76b9ec79df374
6e2519c8ad9a65df2868819dcafc600eda9a8313
0d05c180f2f588df2bde7a1846219a9d3383d161828c056c265c6890d676552b
GET /wp-content/themes/betheme/images/box_shadow_button.png HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/wp-content/themes/betheme/css/base.css?ver=20.9.2
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: image/png
last-modified: Fri, 25 May 2018 11:02:40 GMT
accept-ranges: bytes
content-length: 108
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/fonts/mfn-icons.woff?93978679
89.42.218.173200 OK 81 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/fonts/mfn-icons.woff?93978679
IP 89.42.218.173:0
File type Web Open Font Format, TrueType, length 80932, version 1.0\012- data
Hash c4af95082bc92a0b0d7c99a11cc553b1
007738f13f789e572dc69c1f6a99944c957a6665
9445d82e5b6ab98db5eae6540edeb636c6507ff3858a27ffee67e37214a5e6ce
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/betheme/fonts/mfn-icons.woff?93978679 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/wp-content/themes/betheme/css/base.css?ver=20.9.2
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: font/woff
last-modified: Fri, 25 May 2018 11:01:04 GMT
accept-ranges: bytes
content-length: 80932
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/themes/betheme/images/box_shadow.png
89.42.218.173200 OK 108 B URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/themes/betheme/images/box_shadow.png
IP 89.42.218.173:0
File type PNG image data, 5 x 3, 2-bit colormap, non-interlaced\012- data
Hash 449d9ef55c135a86ebd8ec91c7f170e6
acbb68ea104cfdd08081c66ce8a151e4668ef313
3f10d52942270b9e2da36af3915028bd73dfab3703bc13f060234cb0aa5bae2f
GET /wp-content/themes/betheme/images/box_shadow.png HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/wp-content/themes/betheme/css/shortcodes.css?ver=20.9.2
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: image/png
last-modified: Fri, 25 May 2018 11:02:40 GMT
accept-ranges: bytes
content-length: 108
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3b816941816ca5fed922c0604e9da8dc
94c14ea6c512c6c262479b4299f1cd4dd99ea5cd
a05000788114487ba8b8c661ba1370b29c96a93a16275b3fab497cf75722b51d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 07:52:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.hotel-belvedere.ro/wp-content/uploads/fbrfg/apple-touch-icon.png
89.42.218.173200 OK 4.4 kB URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/uploads/fbrfg/apple-touch-icon.png
IP 89.42.218.173:0
File type PNG image data, 180 x 180, 8-bit/color RGB, non-interlaced\012- data
Hash 58f9ab9014f180b82e1f08f1bbad2b57
5cb0eca504de7173a6c021e74852823f01e1070e
546a13911c45d2dc54b586f52a58bdc58a54b895591dab74d0881c6fddb1350e
GET /wp-content/uploads/fbrfg/apple-touch-icon.png HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:43 GMT
content-type: image/png
last-modified: Fri, 25 May 2018 10:13:20 GMT
accept-ranges: bytes
content-length: 4420
date: Fri, 16 Sep 2022 07:52:43 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.hotel-belvedere.ro/wp-content/uploads/fbrfg/favicon-16x16.png
89.42.218.173200 OK 862 B URL HTTP/1.1 www.hotel-belvedere.ro/wp-content/uploads/fbrfg/favicon-16x16.png
IP 89.42.218.173:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 401cbd96917963ca3267ec270c171440
04e1693f8ba3ad730c41654b599923cec227de9d
17005c5e74d53d8de2f7d34df6d28f408a47eaea237ecb1ebae654b54f227fd2
GET /wp-content/uploads/fbrfg/favicon-16x16.png HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: image/png
last-modified: Fri, 25 May 2018 10:13:20 GMT
accept-ranges: bytes
content-length: 862
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Fri, 16 Sep 2022 06:41:12 GMT
expires: Fri, 16 Sep 2022 08:41:12 GMT
cache-control: public, max-age=7200
age: 4291
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3b816941816ca5fed922c0604e9da8dc
94c14ea6c512c6c262479b4299f1cd4dd99ea5cd
a05000788114487ba8b8c661ba1370b29c96a93a16275b3fab497cf75722b51d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 07:52:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j96&a=1058964990&t=pageview&_s=1&dl=http%3A%2F%2Fwww.hotel-belvedere.ro%2Fmodoc%2Fadobe%2F&ul=en-us&de=UTF-8&dt=Pagin%C4%83%20neg%C4%83sit%C4%83%20-%20Hotel%20Belvedere%20-%20Cazare%20Piatra-Neamt&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAAC~&jid=1494463719&gjid=385818540&cid=2105830957.1663314748&tid=UA-48569067-1&_gid=1829097357.1663314748&_r=1&_slc=1&z=1858021234
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&a=1058964990&t=pageview&_s=1&dl=http%3A%2F%2Fwww.hotel-belvedere.ro%2Fmodoc%2Fadobe%2F&ul=en-us&de=UTF-8&dt=Pagin%C4%83%20neg%C4%83sit%C4%83%20-%20Hotel%20Belvedere%20-%20Cazare%20Piatra-Neamt&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAAC~&jid=1494463719&gjid=385818540&cid=2105830957.1663314748&tid=UA-48569067-1&_gid=1829097357.1663314748&_r=1&_slc=1&z=1858021234
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j96&a=1058964990&t=pageview&_s=1&dl=http%3A%2F%2Fwww.hotel-belvedere.ro%2Fmodoc%2Fadobe%2F&ul=en-us&de=UTF-8&dt=Pagin%C4%83%20neg%C4%83sit%C4%83%20-%20Hotel%20Belvedere%20-%20Cazare%20Piatra-Neamt&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAAC~&jid=1494463719&gjid=385818540&cid=2105830957.1663314748&tid=UA-48569067-1&_gid=1829097357.1663314748&_r=1&_slc=1&z=1858021234 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.hotel-belvedere.ro
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://www.hotel-belvedere.ro
date: Fri, 16 Sep 2022 07:52:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5983
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 07:52:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5983
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 07:52:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5983
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 07:52:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f876cdc19dca10c62d83d19303512c7f
9f812c7bc1b42b0cea3e42694e7d1f6738789770
c647aac44ba9eb501eb7def781ca0168b4eb71a716283cc6f4e6782939a396cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12123
x-amzn-requestid: b04ac3c4-b4d8-4094-8b7d-bd229bb7d577
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yb2GvFnEoAMF-Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63216a2a-4e5927ac3f1d0b215ce5a8dc;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 05:44:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1W0Ito5yNmHNxtYBj5jOJQ3Z2OP_Shvhpj94YUDwLHQKzt-zgqjI8A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 03:12:38 GMT
age: 16806
etag: "9f812c7bc1b42b0cea3e42694e7d1f6738789770"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7d4ee58e0f26ec6817dbab72aa7db6d
b6e634ef27eba9da38c6472565e0fdca6898e4f0
07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8435
x-amzn-requestid: f6efd924-4f54-41a6-8771-087803b5b8ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0-EJaoAMFvtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b52-37c21ee857fe27d104b70337;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hhh1q_MrZVAaRWwmc1IuJbL3KhhwwHQgceaL15okbg4NvKJlWfUjyA==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:02:34 GMT
age: 35410
etag: "b6e634ef27eba9da38c6472565e0fdca6898e4f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e20b221-cd14-4696-aa45-979946430e9c.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e20b221-cd14-4696-aa45-979946430e9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ab434eb762838f03bf60457b3039c738
bcacfdb674bdd90c157f7e97d232c49a4d206004
9e1e6b832980c9777e3e90a7ff3d84f96d35bbaab808a74343d91cea01aa1d64
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e20b221-cd14-4696-aa45-979946430e9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8076
x-amzn-requestid: e5521c18-64d3-4f61-8879-3dac61128920
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfzqG_hIAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6321467d-009f1413346a7b965d1c65e4;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: B0EwuNcTqD3fO1ap-9g43JVkqrRnFwNuYWB6tPYScB36XkGdXq4pEg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 20:26:31 GMT
age: 41173
etag: "bcacfdb674bdd90c157f7e97d232c49a4d206004"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf0d71b3-30ed-483e-8bef-18d7a833ff57.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf0d71b3-30ed-483e-8bef-18d7a833ff57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 300d3b6181f9bcb7318b0706646787fa
9cf371e2ecdd46de7ea1290bb158b144a9de57bb
7059364a6076210e603301e0e3ad0009a5c1cd0b8821e321f704532e17b95e5e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf0d71b3-30ed-483e-8bef-18d7a833ff57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6560
x-amzn-requestid: 68c34ae8-9346-4075-b5a2-112078281d4f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfpmQFOdIAMF0Aw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322efc1-712ba3b8621434de3c22f359;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 09:26:25 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 3x--495qTM6oitoXD8PgXZRQwbosfm1wqvp08NbKGxIcRPFU6GXwVQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:41:00 GMT
age: 33104
etag: "9cf371e2ecdd46de7ea1290bb158b144a9de57bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 69c9db5022c0c66909867f1e0946f5a8
9825e0fc606dc983280a6cd05803bb07e3435ef6
f2809509eee24ed69e6003ac9263423ea949bcc9205969c6cdd476e89ede9b01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8864
x-amzn-requestid: 6e1a82d1-e35e-4d77-be31-6969a13918da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU_6GiXoAMFaLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b98-46ca0525157031324749ee5b;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:39:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: X9B4DU53PxJ-J5Ou1wg_TH_yfN3N1lF1SMMr3iV9-gM7j_sPirhcwA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:51:03 GMT
age: 36101
etag: "9825e0fc606dc983280a6cd05803bb07e3435ef6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed934f67-48ba-4d22-a8f8-4f5f7a10a9f9.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed934f67-48ba-4d22-a8f8-4f5f7a10a9f9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da1bd18c37b83b0ef4641036dc208eec
abb5c719ec9341c6d4146297a2a1eca171df9c81
0085a66912a814c619a1257545d36610c7109ba32f1b097176102d3d3db2c8d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed934f67-48ba-4d22-a8f8-4f5f7a10a9f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12425
x-amzn-requestid: 96b5f0d2-1327-4180-9d48-f915630c3de2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDqHyooAMFqyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb0-7d89d2d7024f6a821a62c948;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dxJEH4Jh8lAZ0T28BZnFLhWczwZ7oOaspCmR-SWudP32cF3BQc6wmw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:56:40 GMT
age: 35764
etag: "abb5c719ec9341c6d4146297a2a1eca171df9c81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.hotel-belvedere.ro/wp-includes/js/jquery/jquery.js?ver=1.12.4
89.42.218.173200 OK 0 B URL HTTP/1.1 www.hotel-belvedere.ro/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 89.42.218.173:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.hotel-belvedere.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotel-belvedere.ro/modoc/adobe/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 07:52:42 GMT
content-type: application/javascript
last-modified: Thu, 05 Sep 2019 09:39:04 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 33836
date: Fri, 16 Sep 2022 07:52:42 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff