www.salonomromania.com/
196.196.223.103301 Moved Permanently 239 B IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ede3c5a4ebbdb86eb3d6b7ded5ac0e63
7ebd35c2e2b45551edcf21e8ed95817468904525
431378caf2666b66d8d86b24b0d09688fa30144dacc35020be38224ec6545308
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 08 Dec 2022 23:11:58 GMT
Server: Apache
Location: https://www.salonomromania.com/
Content-Length: 239
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9953
Expires: Fri, 09 Dec 2022 01:57:53 GMT
Date: Thu, 08 Dec 2022 23:12:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8027
Expires: Fri, 09 Dec 2022 01:25:47 GMT
Date: Thu, 08 Dec 2022 23:12:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c3470f9f0a4df8c1496b577fa9435ff6
f83b0226bb57ed0f3e1acdad61b940414add135d
f542579e3a3577a646babde862282c2afda6ed784360a915143216100f7a3d91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F542579E3A3577A646BABDE862282C2AFDA6ED784360A915143216100F7A3D91"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2193
Expires: Thu, 08 Dec 2022 23:48:33 GMT
Date: Thu, 08 Dec 2022 23:12:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 23:08:14 GMT
content-type: application/json
age: 226
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ZQupyCZPUuGm3jLetoUk/bo3WBIh6fxrq0DtCLiq5auc5wBrZ6NFDogefFhY7yejr52G2bf9wRE=
x-amz-request-id: MRBGD8B7DS00EV0Q
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 22:48:05 GMT
age: 1435
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 23:12:00 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.salonomromania.com/
196.196.223.103200 OK 49 kB IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2823), with CRLF, LF line terminators
Hash 15093646e75181d1b44d080d69532d35
004aa8f52d12698268c5a22203f37cb0a6701ab9
742a589e0675804757d1b2295ca8c357d90d924b6f909f8671fbd60988324a6c
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:58 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: zenid=0glnar621gl58m4u98dq9jom77; path=/; HttpOnly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.salonomromania.com/includes/templates/salomoro/css/stylesheet.css
196.196.223.103200 OK 0 B URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/css/stylesheet.css
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/css/stylesheet.css HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.salonomromania.com/includes/templates/salomoro/css/stylesheet_header_menu.css
196.196.223.103200 OK 3.4 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/css/stylesheet_header_menu.css
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with CRLF line terminators
Hash 0e99d00beea27931e86b46108c823ba0
ca6b5af245c4acdf84fb03bddb917d50bba170eb
87b26f6ebbc744e0fcc72e14bfbccb1c46f3ea616d77ef383387612e4e1ef4e2
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/css/stylesheet_header_menu.css HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 3429
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.salonomromania.com/includes/templates/salomoro/css/stylesheet_add.css
196.196.223.103200 OK 178 B URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/css/stylesheet_add.css
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
Hash 3d372a1cb4a5c596147ea4123ced27d7
c77116d60116e0cbad041002a2afb14420be6d68
b356396cc5563c1983f4297821b0e8bddacc94ae2bc45ecc0dcda90cbf9e91c3
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/css/stylesheet_add.css HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 178
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.salonomromania.com/includes/templates/salomoro/css/stylesheet_categories_menu.css
196.196.223.103200 OK 2.3 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/css/stylesheet_categories_menu.css
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
Hash 77ac4aa1fc1b80426aa7ad8033dcb40c
fa30830acbbe5458aa445be97ecd00be2e1d60fa
93a60cfc2924d4c2d193bd12bd2ccd8d54b433b975bf842d9c2547a95efabdf0
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/css/stylesheet_categories_menu.css HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 2341
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.salonomromania.com/includes/templates/salomoro/css/stylesheet1.css
196.196.223.103200 OK 15 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/css/stylesheet1.css
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with very long lines (876)
Hash 99401b21a6348087309b1068c7ba90b9
1ce8b3f7173091a4e4bff119c1bf3abfe278eac1
7545c53ead4f1e0752e2ca17a24d381d4cdf81b996db277e51fee98764cfb4d3
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/css/stylesheet1.css HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 15311
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.salonomromania.com/includes/templates/salomoro/css/stylesheet_jquery.mmenu.all.css
196.196.223.103200 OK 11 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/css/stylesheet_jquery.mmenu.all.css
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
Hash cad128608eec950ce9a0385b99b80c95
6a1c9d8378ba37772ed3bd99b20c19d48cfd9517
bf7220fd66bbf6cd81118bbbf5163500f9c5d0bf810127c11c2a6a85d9cb011a
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/css/stylesheet_jquery.mmenu.all.css HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 10907
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.salonomromania.com/includes/templates/salomoro/css/stylesheet_lightbox.css
196.196.223.103200 OK 2.4 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/css/stylesheet_lightbox.css
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with CRLF line terminators
Hash 4156c4f3b3e8eb75b3f0ffc31b9b3c48
d2e2362789756890af0cd16178e7dc00b66a2032
9b1778227a7dc12daa8be9254e2f90de342d38c9c26140ffd85c82de5a1f70cd
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/css/stylesheet_lightbox.css HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 2370
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.salonomromania.com/includes/templates/salomoro/css/stylesheet_slick.css
196.196.223.103200 OK 4.1 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/css/stylesheet_slick.css
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with CRLF line terminators
Hash c161fa585950f3698b584091b1275806
11034aab4f1dd12323f32ab15f03d64aedc827fa
4e47bfe0db7aa313458a8e925e91def4af9b819e21867a85195afa50f4e3a612
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/css/stylesheet_slick.css HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 4097
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.salonomromania.com/includes/templates/salomoro/css/stylesheetmy.css
196.196.223.103200 OK 0 B URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/css/stylesheetmy.css
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/css/stylesheetmy.css HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.salonomromania.com/includes/templates/salomoro/jscript/jscript_jquery_kinSlideshow.js
196.196.223.103200 OK 9.7 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/jscript/jscript_jquery_kinSlideshow.js
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type ISO-8859 text, with very long lines (8513), with CRLF line terminators
Hash 08a763acea723e1d88cbce2f1c9b3317
ea20687e4f773bf67907b0edb029ebafbc110fc1
c17caeebb94b90d9aae3dc3142cda848f67e8b9425a6d25e434af74d2978aba4
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/salomoro/jscript/jscript_jquery_kinSlideshow.js HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 9674
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.salonomromania.com/includes/templates/salomoro/css/stylesheet_all.css
196.196.223.103200 OK 64 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/css/stylesheet_all.css
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
Hash 53c1eb7384047039b82288a411fe28b9
9fc74b6d463789b0fcd4f7576e6f7ce007e8f70d
0e37e553bd879fca937af8c542a0388408c59bae375a512548c131d01748fb58
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/css/stylesheet_all.css HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 64166
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.salonomromania.com/includes/templates/salomoro/jscript/jscript_lightbox.js
196.196.223.103200 OK 20 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/jscript/jscript_lightbox.js
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type ISO-8859 text, with very long lines (797), with CRLF line terminators
Hash 3d79a6c53803295ef00c052546d76500
f1481ce4f6f2aaefd7a5b6af19be42c7b1606dcc
93acbf26510bd264764a43d220a984b78270cd37536e0aa6bf8deb1fb28338f8
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/salomoro/jscript/jscript_lightbox.js HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 20417
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.salonomromania.com/includes/templates/salomoro/jscript/jscript_jquery.js
196.196.223.103200 OK 86 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/jscript/jscript_jquery.js
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type Unicode text, UTF-8 text, with very long lines (65168)
Hash e85aed5c30d734f1e30646e030d7a817
b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad
8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/salomoro/jscript/jscript_jquery.js HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 85925
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.salonomromania.com/includes/templates/salomoro/jscript/jscript_1.11.1.min.js
196.196.223.103200 OK 86 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/jscript/jscript_1.11.1.min.js
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with very long lines (32069)
Hash 93c4b563622d278b1065690a3d93709e
f00d128cf399f17322b1d4ee02fa8cd892e081bd
601c06474a16936670a0477da2a777ccfca3301e3857204ec9b55dfa2c45287e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/salomoro/jscript/jscript_1.11.1.min.js HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 85588
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.salonomromania.com/facebox/css/font-awesome.min.css
196.196.223.103200 OK 32 kB URL HTTP/1.1 www.salonomromania.com/facebox/css/font-awesome.min.css
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with very long lines (402)
Hash 0557ee20cbec5ddc14ba0481a4ae9ca8
b95de7bc2822aebad9564b64fd10ed69c60f611c
c6d652d309878c531875964ca66aa28c95a80204df250b89ef04d90be6c4f50d
Analyzer Verdict Alert quad9 Sinkholed
GET /facebox/css/font-awesome.min.css HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:53 GMT
Accept-Ranges: bytes
Content-Length: 31725
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.salonomromania.com/js/jquery.mmenu.min.all.js
196.196.223.103200 OK 39 kB URL HTTP/1.1 www.salonomromania.com/js/jquery.mmenu.min.all.js
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with very long lines (401)
Hash 5b2edbe2f95659b625a0b919ebf98286
1c5722696e849953fccdf41e0f0a01e3f37a80da
a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery.mmenu.min.all.js HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 38800
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.salonomromania.com/includes/templates/salomoro/jscript/jscript_2.2.0.min.js
196.196.223.103200 OK 143 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/jscript/jscript_2.2.0.min.js
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type Unicode text, UTF-8 text, with very long lines (522)
Size 143 kB (142713 bytes)
Hash 674b896ffae27a70571b1fc5bd65919d
63c8c73c7e5ba15aa940aba8f1c43b6150a9f941
a7c32e459eae73c136b6eb07711a69b2cc7b557c085fc232dd42db7fb50e9374
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/salomoro/jscript/jscript_2.2.0.min.js HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 142713
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.salonomromania.com/js/jquery.jxa.js
196.196.223.103200 OK 2.7 kB URL HTTP/1.1 www.salonomromania.com/js/jquery.jxa.js
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with CRLF line terminators
Hash ca643ec9e974f881e4c904db35bc40c7
759df5ef14b4e2c0c46770b5e408f600972294ca
a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery.jxa.js HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 2658
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.salonomromania.com/js/slick.js
196.196.223.103200 OK 89 kB URL HTTP/1.1 www.salonomromania.com/js/slick.js
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
Hash 595299f3f9b29b58f9730de308359094
0bc2d6a7a152717d37c4aee8a88771c3b25fb06a
47299d25b43a6b8424b9f016b9444eef50cd6fddb71e3ee47e0884dbf483c2ce
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/slick.js HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 89026
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.salonomromania.com/includes/templates/salomoro/jscript/jscript_slick.js
196.196.223.103200 OK 89 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/jscript/jscript_slick.js
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
Hash 5f8f4aed010e1afe499184d8197309f9
097f6a1b4f115e9b6ebefa70d76d830733bcc9ba
0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/salomoro/jscript/jscript_slick.js HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 88955
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.salonomromania.com/includes/templates/salomoro/css/print_stylesheet.css
196.196.223.103200 OK 773 B URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/css/print_stylesheet.css
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
Hash bbd38cb1b3b2298d98121752e951e872
f18e1df8b85734180dbe990473e12b9854913ed1
5ec0e5addd6014a7f05030ad5de266ee15d8d5192ea2efcaccafc3e235a0bd29
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/css/print_stylesheet.css HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 773
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.salonomromania.com/js/jquery-1.7.2.min.js
196.196.223.103200 OK 158 kB URL HTTP/1.1 www.salonomromania.com/js/jquery-1.7.2.min.js
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with very long lines (749)
Size 158 kB (157648 bytes)
Hash 6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%2028_ZOOM.jpg
196.196.223.103200 OK 95 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%2028_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com o\216r~\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash 52ed4d1a0bd0acd15194992c396a09e3
0dd4f6a2c64813ba2625bf7db57095cee5ea3c16
111fde53e5764dcece5d6d974cd42253dc123fd9538903e66d2bcbf28aa00afc
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%2028_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 94579
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/Men.jpg
196.196.223.103200 OK 97 kB URL HTTP/1.1 www.salonomromania.com/images/Men.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 660x660, components 3\012- data
Hash c0a2afead61edaf5a607dc08ef39eb45
a131a3519096ffb6265c3446beb4d768d1dadf1f
827f484f88f52099c40fe6cf67525312cdde8dcf96301432ed1cd29145671d42
Analyzer Verdict Alert quad9 Sinkholed
GET /images/Men.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:53 GMT
Accept-Ranges: bytes
Content-Length: 97195
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%2029_ZOOM.jpg
196.196.223.103200 OK 88 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%2029_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com \001\206\244/\177], baseline, precision 8, 800x800, components 3\012- data
Hash c83ebd5c111ef6fd0e1efefea04bc329
f6b8ea4d0d11186a2df3d2482a928bca105dec2c
101f56241af0b95806d614182ad7e40167e73da6358e6f6a7ef186c499b93ede
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%2029_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 87892
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/Women.jpg
196.196.223.103200 OK 189 kB URL HTTP/1.1 www.salonomromania.com/images/Women.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 660x660, components 3\012- data
Size 189 kB (189374 bytes)
Hash c7ee14dff01febc41310f29162e4209f
c159c7ed5e8acceca342b2c71b16042224b19bdd
bbcb16bf2db5601020e3a86e6a5db972405d46405f9fedfa37a6f5c4fdb4b0d2
Analyzer Verdict Alert quad9 Sinkholed
GET /images/Women.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:53 GMT
Accept-Ranges: bytes
Content-Length: 189374
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%2030_ZOOM.jpg
196.196.223.103200 OK 82 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%2030_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com o\216r~\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash 377aee24377865f4056a4938fcec683d
cb7c5f32afd9aa54c6dfa1bc4a39345528556ae3
cd593fb2df0943f045f64e72d2dbc691385d993b769f4d4a3e8015500589c9db
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%2030_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 81462
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20GTX%2059_ZOOM.jpg
196.196.223.103200 OK 58 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20GTX%2059_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com o\216r~\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash 3bb92137b84cb315b34873954b71919c
6550f14081973194da9559af8ea075810592888a
982845d19ec8de0497960ef8f4c8dbdd4a935c9b4716641496b3eacf703bdbd0
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20GTX%2059_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 58259
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20W%20D%2062_ZOOM.jpg
196.196.223.103200 OK 61 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20W%20D%2062_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com i\216rx\301\373\021], baseline, precision 8, 800x800, components 3\012- data
Hash d6ffed4106b73b390e9f15e74486d9fd
a67d17319a4a6cc6f670ee513a4428dc5cc27ffd
9b9b5a5d47c61f4901bfd1f702f4b91cd788c85f0ea74c315938c62176a885f0
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20W%20D%2062_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 60560
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20131_ZOOM.jpg
196.196.223.103200 OK 76 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20131_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com q\216r`\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash fc048b202de3bf707a6c4cd87ed01513
7c2dfcafab85c56ce7a3dc63205971b5377b476f
aa51eb2c0565dcbad61bef73d8bae219a27c4c7682b2cfd81d72ea33ecb79bdd
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20131_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 76349
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20GTX%2060_ZOOM.jpg
196.196.223.103200 OK 58 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20GTX%2060_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com R\216rC\301\373\002], baseline, precision 8, 800x800, components 3\012- data
Hash bef4302c845dc906ad8391554213f887
bcc7ecb67996f798eeda3c1519a548667c8c343c
80ca08be4088ca7038e2cc2ab6b0fe5572ee91c08e726a130be5e9d7de3c749b
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20GTX%2060_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 58520
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20SENSE%20RIDE%20%20191_ZOOM.jpg
196.196.223.103200 OK 56 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20SENSE%20RIDE%20%20191_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com \001\206\244/\177], baseline, precision 8, 800x800, components 3\012- data
Hash 6fe3e0c066e1caa9a524e77444522993
3c807c264fb65fdd68f6775b45ff303ce0430b3a
c74d8ccc0a48353f69f9a06992dbc776d6f54c31343cdf2c060a88f5cd27ebcb
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Alergare%20Salomon%20SENSE%20RIDE%20%20191_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 56287
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20S%20LAB%20XT-6%20SOFTGROUN%20255_ZOOM.jpg
196.196.223.103200 OK 50 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20S%20LAB%20XT-6%20SOFTGROUN%20255_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com o\216r~\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash f1182e70ea80ed13f1a58f9650c403b8
8e9e9cf241dee05d0ddd47c38a334bda9294532e
bd319f1d20d76e962aae3f84d1ef53effdaf4e596a75dbd52ff4f79b8e115669
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Salomon%20S%20LAB%20XT-6%20SOFTGROUN%20255_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 50407
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20XA%20PRO%203D%20v8%20G%20163_ZOOM.jpg
196.196.223.103200 OK 45 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20XA%20PRO%203D%20v8%20G%20163_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com q\216r`\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash 39196717b13f09b0c428ac527cdcca59
58350ff8169fdf079bc0d6366c73533782edb257
a1e97d0e6ea16a71f659d4c26896cd18a0fbf7aa30064b3c8ee718bead27ce90
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20XA%20PRO%203D%20v8%20G%20163_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 44688
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/includes/templates/salomoro/images/flag/RON.gif
196.196.223.103200 OK 1.1 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/images/flag/RON.gif
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type GIF image data, version 89a, 27 x 17\012- data
Hash 8b1ecb8b482852f70d985f4f5e436f83
d0952a39edb2e17660de37d98be73f202e8151f0
229d185fc29014594278ffc5e2a813ba5e52042e2160a419b03528df255898f1
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/images/flag/RON.gif HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 1125
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
www.salonomromania.com/includes/templates/salomoro/images/logo.png
196.196.223.103200 OK 4.4 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/images/logo.png
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type PNG image data, 208 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 241da21589eb7a9d7a653b93ebe1e383
8c353971b359fccebf0f90bcf732abe6691f5d88
396517c17a07ad1607c09f1b7f4b4678d0a6e6df0bb4125eeb101d2a284bcf2d
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/images/logo.png HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 4438
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 23:07:58 GMT
age: 243
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20XT-WINGS%202%20Dama%20Negr%20286_ZOOM.jpg
196.196.223.103200 OK 42 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20XT-WINGS%202%20Dama%20Negr%20286_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com q\216r`\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash fdb7d3c0001ccb9b08f528c7fce1396c
47b62379a89fb5f793058c120ae4de682bde3e4d
f35c40be358d5ee967b28abc7af9464ca3b056b82dc46758a576691f17942b79
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Salomon%20XT-WINGS%202%20Dama%20Negr%20286_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 41972
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Ghete%20Salomon%20GUARDIAN%20WIDE%20Dama%20Mar%20295_ZOOM.jpg
196.196.223.103200 OK 75 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Ghete%20Salomon%20GUARDIAN%20WIDE%20Dama%20Mar%20295_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com o\216r~\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash 06bd69ec3272b88c0e33f12456ac72a8
5434cbc333a23e8cdb62c6bad50e4079e96cdacf
5de0dad43942b8921b59e1307e6e87141838e6996243d55f18306443995a5fd8
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Ghete%20Salomon%20GUARDIAN%20WIDE%20Dama%20Mar%20295_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 75049
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20130_ZOOM.jpg
196.196.223.103200 OK 67 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20130_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com \001\206\244/\177], baseline, precision 8, 800x800, components 3\012- data
Hash e3ed4cd605038e2641d14b1418a43d98
5e192c6edac2018f10e7f7dc04ae44079cfcf1b4
360fc51161a3b962195de61c76ee5a9ccae57f5ff99b21624159a5da2be2c679
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20130_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 67126
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6580
Cache-Control: max-age=128671
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 23:12:01 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:56:32 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20PRIM%20137_ZOOM.jpg
196.196.223.103200 OK 68 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20PRIM%20137_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com o\216r~\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash d893ac5cf5f978dda0b1992c5aac50af
98f530790c68d53ce45c8a5c46e1539712efd7ae
d77ae508e711f0c17157fd19f676e1c8cbbba92c8e26520f35fef6fe342dbae3
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20PRIM%20137_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 67583
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20SPEEDCROSS%203%20Dama%20Al%20259_ZOOM.jpg
196.196.223.103200 OK 48 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20SPEEDCROSS%203%20Dama%20Al%20259_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com q\216r`\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash 98c81f2896977bfa0b0b21784d1384da
e1571f199e8509d14201d208588690409f218122
4031b392c404ef68bf0e26f492c5a1ccc8c80d47c9fdb1133d8384986bf771b2
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Salomon%20SPEEDCROSS%203%20Dama%20Al%20259_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 47733
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Ghete%20Salomon%20QUEST%204D%20FORCES%202%20EN%20D%20297_ZOOM.jpg
196.196.223.103200 OK 62 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Ghete%20Salomon%20QUEST%204D%20FORCES%202%20EN%20D%20297_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com o\216r~\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash ce7ec0501cd754ebd6798dab80ad3be4
3fd5c42f1c715f6740395b888bf7007feee1ee77
a85e750cd9319aa7867d0c250f1b76259a9be19f8c148297f94d5bfcfeb269fc
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Ghete%20Salomon%20QUEST%204D%20FORCES%202%20EN%20D%20297_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 61833
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Ghete%20Salomon%20QUEST%204D%20GORE-TEX%20FORC%20300_ZOOM.jpg
196.196.223.103200 OK 64 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Ghete%20Salomon%20QUEST%204D%20GORE-TEX%20FORC%20300_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com o\216r~\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash 84d72ffc914cdbf7f28db239f79868f8
9b1e2f4bfa50a3875fe22de56e3fb55e71cfa126
c338db5149c695c5205e71b7644d6cd392c2ae61e5ff51c6f8a6be72952dc25e
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Ghete%20Salomon%20QUEST%204D%20GORE-TEX%20FORC%20300_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 63683
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20SPEEDCROSS%20%20361_ZOOM.jpg
196.196.223.103200 OK 73 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20SPEEDCROSS%20%20361_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com r\216rc\301\373\016], baseline, precision 8, 800x800, components 3\012- data
Hash 267ac4aaf4a8460dad5bf1dda969fc48
0910398b2513d28f2e239a743e6e239d7fbff2b2
343f733ad654f756504ab43cd7b42a7532ce9237ecae7f7ee2b6f5184a93c4ce
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Alergare%20Salomon%20SPEEDCROSS%20%20361_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 73436
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/includes/templates/salomoro/images/banner.jpg
196.196.223.103200 OK 311 kB URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/images/banner.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 1500x678, components 3\012- data
Size 311 kB (310722 bytes)
Hash 000af41706c8bb7376d6ea975394103f
89d8cfaa0b488b420b770a1ef0cb31775b11cbcd
6b544672365e1d6051e020c4fb8b3ad387532df4ce9f6b8f88e2d7318df6c27b
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/images/banner.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 310722
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/facebox/fonts/fontawesome-webfont.woff2?v=4.7.0
196.196.223.103200 OK 77 kB URL HTTP/1.1 www.salonomromania.com/facebox/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert quad9 Sinkholed
GET /facebox/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.salonomromania.com/facebox/css/font-awesome.min.css
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:53 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff2
www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20XA%20PRO%203D%20v%20435_ZOOM.jpg
196.196.223.103200 OK 46 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20XA%20PRO%203D%20v%20435_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com q\216r`\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash 830ac746d7e3569c7735e9b8fe2f0590
9e07d52911cc28a67a6865057107eb1ec366faf3
4d2af6b2392730c1f2c1ed0a503e3de064535ea27c8d82fb1054d6dcdc9bca5e
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Alergare%20Salomon%20XA%20PRO%203D%20v%20435_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 46161
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20XA%20LITE%20W%20D%20424_ZOOM.jpg
196.196.223.103200 OK 84 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20XA%20LITE%20W%20D%20424_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com q\216r`\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash abdabcff7a8cf3c381f87b4cfe6eadb9
fe2eb9d6d95929463e6784a34c2c061d026ec1e8
4cc317a7af17a905041e0537b30d6f49156d9ec166cf93e4ef7137be2d8464b7
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Alergare%20Salomon%20XA%20LITE%20W%20D%20424_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 83684
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20Bar%20513_ZOOM.jpg
196.196.223.103200 OK 55 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20Bar%20513_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com R\216rC\301\373\002], baseline, precision 8, 800x800, components 3\012- data
Hash ffd6266dfd930b7a0feab49dfd69ad47
f7c7f9a2088f2c3eb7bf80abeba65248d36faffc
a6c1139225f86aef115de2a89140549d935dd187319a56b8ff298386b34183d2
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20Bar%20513_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 55224
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20GTX%20516_ZOOM.jpg
196.196.223.103200 OK 56 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20GTX%20516_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com \001\206\244/\177], baseline, precision 8, 800x800, components 3\012- data
Hash ec0b661869a78c88a7ad02e24b4416d4
b186ad277e59c2d34c4a170943860f73a3dcf4d9
8d4cd9e6fa77bc3ecf09a8aa4d4b5241a8535154ec2e0593c4012d1c653abf76
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20GTX%20516_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 56295
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20CROSS%20W%20PRO%20323_ZOOM.jpg
196.196.223.103200 OK 50 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20CROSS%20W%20PRO%20323_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com q\216r`\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash 225fd167c4f2b733072386aab5ab7544
de566418653931f178c55bd322d7bfc9ee5812da
eb047d8eb138ddb2f9d69464bdad55148d6fbb7311bba4165905b3f689dd79dd
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Alergare%20Salomon%20CROSS%20W%20PRO%20323_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 49874
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%20475_ZOOM.jpg
196.196.223.103200 OK 82 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%20475_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com o\216r~\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash c15eda1655ca13030a488151a69583f6
c64e58d42707f103c8005666832c0e11446ebe18
1ba7d0d268824ef74c18e14c706fe0d5aaf1f4b495f17431e2d8b66a6b1db12e
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%20475_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 81546
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20GTX%20517_ZOOM.jpg
196.196.223.103200 OK 53 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20GTX%20517_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com \177\216rn\301\373\002], baseline, precision 8, 800x800, components 3\012- data
Hash 8187c88b482161876a2a0ae2e7b3602f
fd7793439716b3dc3cafebc9233d4a7b430ce9f4
931eb0fced8ed30ef2390fdb6e208ad8334af32049e8b87460573db8e92ee6a0
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20ALPHACROSS%20GTX%20517_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 52628
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20590_ZOOM.jpg
196.196.223.103200 OK 67 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20590_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com q\216r`\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash 47711b28c7b04ab8106d82619546cf34
28a7bef32afc1b648d5ad6700c9ba4ba5eda2039
cbeb515a294e0c8abdcb398dd692c8ff1de376bfbe3500b75e35dcd5bcd317ff
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20590_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 66714
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20591_ZOOM.jpg
196.196.223.103200 OK 67 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20591_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com q\216r`\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash 755b9b9b3d4b62f3ac0dda0a9f85dcfe
fdbc34f6bf2ac10ffa51de5cdfeae719e3130439
1eddbd562d6c9824ef7c78a50430efb321a4eaa022b218a3f30afb337fbdcc0c
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20591_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 66947
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20XA%20PRO%203D%20v8%20G%20629_ZOOM.jpg
196.196.223.103200 OK 46 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20XA%20PRO%203D%20v8%20G%20629_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com o\216r~\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash 21d03dc8fa785690635e3d179fdaab1e
d313393a795579faa02948b7a4d517fd63abf8e1
785b94a281764a130e8c8a692d409091f9e250dc3078b367dd3862701cffaf34
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20XA%20PRO%203D%20v8%20G%20629_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 45679
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%20474_ZOOM.jpg
196.196.223.103200 OK 81 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%20474_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com \001\206\244/\177], baseline, precision 8, 800x800, components 3\012- data
Hash 38350b0f2bc997414bcc05cea11d1e30
c41121b956a0077cdb8e12628358bc2b10e825ce
2a8ca1ff83da43ca72c3b57485724ac12e0487dec98bb5aa30d12587008ad67c
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20QUEST%204D%203%20GTX%20474_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 80866
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20SENSE%20RIDE%20%20663_ZOOM.jpg
196.196.223.103200 OK 51 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20SENSE%20RIDE%20%20663_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com i\216rx\301\373\021], baseline, precision 8, 800x800, components 3\012- data
Hash 9af4d4da92086b4ca6fd3bdc917f72c1
7e28db2320d9b47181037570314693260801096c
335df250e63b0d06ee9f1ab05f095b910c39fe681c9b61d5daadf942fbae34be
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Alergare%20Salomon%20SENSE%20RIDE%20%20663_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 51117
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20593_ZOOM.jpg
196.196.223.103200 OK 66 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20593_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com o\216r~\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash edd284d5abe9d2c1c993b447be83cadc
515a2d639f32d41c4ed8034ad6086f6a65bf7839
74c9c45979df6e82456e91bdc8ac973d3c5ae7ba4de1ca0ead08ce6c11625643
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Bocanci%20Munte%20Salomon%20X%20ULTRA%203%20GTX%20%20593_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 66351
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20S%20LAB%20XT-6%20SOFTGROUN%20724_ZOOM.jpg
196.196.223.103200 OK 50 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20S%20LAB%20XT-6%20SOFTGROUN%20724_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com \001\206\244/\177], baseline, precision 8, 800x800, components 3\012- data
Hash 1deb405b57353d8bc219093b478e1843
f159ac989dff0675e7cbc8904886ba23bd696541
68678eb1478a4d51216e05e0700ede012c10919f2641d5381f94cb88f3c47f81
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Salomon%20S%20LAB%20XT-6%20SOFTGROUN%20724_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 49789
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20XT-WINGS%202%20Barbati%20N%20778_ZOOM.jpg
196.196.223.103200 OK 48 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20XT-WINGS%202%20Barbati%20N%20778_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com f\216rw\301\373\021], baseline, precision 8, 800x800, components 3\012- data
Hash e35166784390d90f40f5724127c4ffc3
524edc8a9bfd0167f58b4483acb9947a29d5b96b
d520d7726ccecae01f9a341f3af3ea658d63202e402ac51a2869a4300d229e46
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Salomon%20XT-WINGS%202%20Barbati%20N%20778_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 48130
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20SNOWCROSS%20ADVANCED%20B%20729_ZOOM.jpg
196.196.223.103200 OK 57 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20SNOWCROSS%20ADVANCED%20B%20729_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com f\216rw\301\373\021], baseline, precision 8, 800x800, components 3\012- data
Hash 5ca72537a66bb1e283e7214ca6f6fd98
f96660239de578fb670fb6a67e05336588cb8d80
50ee61d928d4a97257018bc89e778bee4d485d6e4a317591ec4ba5ea79e6ee7c
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Salomon%20SNOWCROSS%20ADVANCED%20B%20729_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 56687
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20XT-WINGS%202%20Barbati%20M%20780_ZOOM.jpg
196.196.223.103200 OK 53 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20XT-WINGS%202%20Barbati%20M%20780_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com f\216rw\301\373\021], baseline, precision 8, 800x800, components 3\012- data
Hash d23ca6120b438863cbcfcc336e9ac349
d8123d90f3516dca0825a5760b9bc354573e6b1b
568c8e768048124d5c9079e65ee127d25276756ad6facc3bba21626424e89bce
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Salomon%20XT-WINGS%202%20Barbati%20M%20780_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 53035
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Ghete%20Salomon%20QUEST%204D%20GTX%20FORCES%202%20%20795_ZOOM.jpg
196.196.223.103200 OK 73 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Ghete%20Salomon%20QUEST%204D%20GTX%20FORCES%202%20%20795_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com q\216r`\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash 9bc6f2a494c127e7e1297558c06a59d1
d5502a22ede72b93d354df39ca93a0cad1e2e74b
05eb9b46e71b3cf6ea16f5a691fda5ced7638bea22a33cbdc85b08b317855328
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Ghete%20Salomon%20QUEST%204D%20GTX%20FORCES%202%20%20795_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 72986
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20GTX%203D%20FIT%20%20647_ZOOM.jpg
196.196.223.103200 OK 75 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20GTX%203D%20FIT%20%20647_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com \001\206\244/\177], baseline, precision 8, 800x800, components 3\012- data
Hash 4706b62f1407a904d57ae583d7fb1430
7b7c7927920d13a00cb29dd23a355022762d138e
f5c3c396739fae7e008bbc0fba80f2a2e28690eb00265c1a09a77d28cc8da54d
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Alergare%20Salomon%20GTX%203D%20FIT%20%20647_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 75180
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Ghete%20Salomon%20XA%20FORCES%20MID%20GTX%20Barb%20825_ZOOM.jpg
196.196.223.103200 OK 76 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Ghete%20Salomon%20XA%20FORCES%20MID%20GTX%20Barb%20825_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com o\216r~\301\373\017], baseline, precision 8, 800x800, components 3\012- data
Hash e9bab1c4fe9e98ee28c5ee03d347cfe1
1d021beaa06fe27cf390162a105fb17456979f07
527adf978a08486fe5632d6c0b7b75dd1ce0b60fe3532c4a95b89ffe8b722e20
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Ghete%20Salomon%20XA%20FORCES%20MID%20GTX%20Barb%20825_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 75930
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Ghete%20Salomon%20XA%20FORCES%20MID%20GTX%20Barb%20823_ZOOM.jpg
196.196.223.103200 OK 74 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Ghete%20Salomon%20XA%20FORCES%20MID%20GTX%20Barb%20823_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com i\216rx\301\373\021], baseline, precision 8, 800x800, components 3\012- data
Hash add52e4ea2dc8645fb475ee0c7c3dc60
181910e0367638586f45fc78b4131b2e35924cc4
470c04affd35fbac3d23bf6c9926db7de2ab2ed734dfeec8a4c57f7a6bed3a02
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Ghete%20Salomon%20XA%20FORCES%20MID%20GTX%20Barb%20823_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 74480
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Ghete%20Salomon%20XA%20FORCES%20MID%20GTX%20Barb%20824_ZOOM.jpg
196.196.223.103200 OK 78 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Ghete%20Salomon%20XA%20FORCES%20MID%20GTX%20Barb%20824_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com \001\206\244/\177], baseline, precision 8, 800x800, components 3\012- data
Hash eee96e42d1551bb63de91bb93c0be9ee
9563b0bdfc692f67f26100d72083ed9bb26c4ddb
ad5ae36be8bd85753d625a0ace255db3218d10a2d436ac81e7405cea4136ba08
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Ghete%20Salomon%20XA%20FORCES%20MID%20GTX%20Barb%20824_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 78169
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20SPEEDCROSS%203%20Barbati%20731_ZOOM.jpg
196.196.223.103200 OK 56 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Salomon%20SPEEDCROSS%203%20Barbati%20731_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com f\216rw\301\373\021], baseline, precision 8, 800x800, components 3\012- data
Hash 74f67717b1333d9b2330683f8a1cc65b
ee92ee32fa1d3be4f5f44442f3fee7bbfbd09515
4961bfbea867bebdd3da36f58aa392517658af8d960e594bf25726a652ee35f0
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Salomon%20SPEEDCROSS%203%20Barbati%20731_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 55711
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20SPEEDCROSS%20%20876_ZOOM.jpg
196.196.223.103200 OK 66 kB URL HTTP/1.1 www.salonomromania.com/images/large/salomoro/Adidasi%20Alergare%20Salomon%20SPEEDCROSS%20%20876_ZOOM.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.mn-soft.com \001\206\244/\177], baseline, precision 8, 800x800, components 3\012- data
Hash 365344b4ae2407243605429bfd9036ef
f5e200f7c96a22e74230752712d7b2601ddefc59
b91ceda05e8249f1f86e88e4f66830507acc75652b56b83ff42aafbf12e1aa2a
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/salomoro/Adidasi%20Alergare%20Salomon%20SPEEDCROSS%20%20876_ZOOM.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 65796
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/cate_img_10.jpg
196.196.223.103200 OK 37 kB URL HTTP/1.1 www.salonomromania.com/images/cate_img_10.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 451x400, components 3\012- data
Hash 946e064c6a5a225b4e5e44f89eef3687
d7d8c8b268183feb70436fdeffda3d0819a3b04d
21a4bbdcd185647cec365ebfcbdf6b12f2538c5a854bd189a986ea9f5e70be85
Analyzer Verdict Alert quad9 Sinkholed
GET /images/cate_img_10.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 36918
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/cate_img_2.jpg
196.196.223.103200 OK 35 kB URL HTTP/1.1 www.salonomromania.com/images/cate_img_2.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 451x400, components 3\012- data
Hash e686cdc4c84f27f410e4b933850eb114
347f163438b99ba0759370334f59618a51f5e929
4a0c0012e417bd1eae151d895f030ecb18b95b52bff969475661e3612531e01e
Analyzer Verdict Alert quad9 Sinkholed
GET /images/cate_img_2.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:54 GMT
Accept-Ranges: bytes
Content-Length: 34998
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/images/cate_img_18.jpg
196.196.223.103200 OK 83 kB URL HTTP/1.1 www.salonomromania.com/images/cate_img_18.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 451x400, components 3\012- data
Hash 29d6d1d63998b0bc11025f45cbb9dd7b
4e35046055c29bef98d53d05ce694b2c75bc4564
10d5e2b405e2fe3a551a38b03461b3f7c85aa11145811311c9bc24e8740d5c59
Analyzer Verdict Alert quad9 Sinkholed
GET /images/cate_img_18.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:53 GMT
Accept-Ranges: bytes
Content-Length: 82900
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
push.services.mozilla.com/
35.82.48.240101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.82.48.240:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NL6K6GLbxzmMBrAk2L9cZA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uY+hbXGHzFP7EPLWoj70TaNNbRw=
www.salonomromania.com/images/footer%20images.jpg
196.196.223.103200 OK 155 kB URL HTTP/1.1 www.salonomromania.com/images/footer%20images.jpg
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 1600x333, components 3\012- data
Size 155 kB (154790 bytes)
Hash 989de588e8cbf317ece6380c697151b6
5008d53b67a624a785131b101fefa06c1743fa6c
5bbd98a579ed4ea8ab8fd58c1e38ad74f2ce12744867db21ce4c90984b24ee98
Analyzer Verdict Alert quad9 Sinkholed
GET /images/footer%20images.jpg HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 154790
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
www.salonomromania.com/favicon.ico
196.196.223.103200 OK 1.2 kB URL HTTP/1.1 www.salonomromania.com/favicon.ico
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash c1bde51b2526c52ba514635488b76d5d
7aa7f2b77e71eea53321e51c1012674e54ee2136
b899df3c1cafcaa202d9a83e58c5401ebfed74dc01e7bb2dae16faf95959f9e8
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:53 GMT
Accept-Ranges: bytes
Content-Length: 1178
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/x-icon
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6296
Expires: Fri, 09 Dec 2022 00:56:59 GMT
Date: Thu, 08 Dec 2022 23:12:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6296
Expires: Fri, 09 Dec 2022 00:56:59 GMT
Date: Thu, 08 Dec 2022 23:12:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6296
Expires: Fri, 09 Dec 2022 00:56:59 GMT
Date: Thu, 08 Dec 2022 23:12:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6296
Expires: Fri, 09 Dec 2022 00:56:59 GMT
Date: Thu, 08 Dec 2022 23:12:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 03:38:24 GMT
age: 70419
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:15:07 GMT
age: 57416
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 730ba1a8edb79ba6f83b46d1ba5aed7b
55a236fedf6f5f7ca2bb88ae13e20846a50fd36d
f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 18:34:32 GMT
age: 16651
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F042317d8-45b6-4c5f-8767-ff9367c24193.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F042317d8-45b6-4c5f-8767-ff9367c24193.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 46275ec87d8221804dbb99f95b035131
c47af4e5770daad212f4290527b00321285105f8
2118ec68c738683d8f7e11b95239ca92fda2b9b5054aa7b128267eec0d0634c5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F042317d8-45b6-4c5f-8767-ff9367c24193.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8803
x-amzn-requestid: e8516be3-5ce9-4f15-b522-c81c1e57a0e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjtK9GavoAMFjpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af579-538cc8f300938698004f2241;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:06:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: O9KsAh6J7tTjAFWes0vfo09oVQfY-aeQ5OAYEHqwlhxZqxeM6Zb1rQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 03:38:24 GMT
age: 70419
etag: "c47af4e5770daad212f4290527b00321285105f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa81aa5-4138-458e-9bd7-de9d6211763c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa81aa5-4138-458e-9bd7-de9d6211763c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8d1605154a552a8c3165c1358ea2e185
2e677da1f57c112d984180ead80481e8797ff2e8
12b075ad3e786dc68ab3fab1e4ce9d6f7810bdebc7bdafd993e19bc5bc7c0abc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa81aa5-4138-458e-9bd7-de9d6211763c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11027
x-amzn-requestid: e0d56100-13aa-44e5-ae80-bedfeece87db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwV19EUOIAMFjcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900359-5a5402381d61db921a00404d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:07:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7ET6kgGgWAKa4_CFCgSwnN8m7FnplxP7zOp8lEyodxn5lmlIIHD4vQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 03:38:24 GMT
age: 70419
etag: "2e677da1f57c112d984180ead80481e8797ff2e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8ff35a0-24dc-4158-b67e-a5f03f5a9022.jpeg
34.120.237.76200 OK 1.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8ff35a0-24dc-4158-b67e-a5f03f5a9022.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4f6cfc43170be4dd0264f2b0b6bcc329
9ad22ea868f3b72832243fd11315c68117c7542b
f5cc67d46241c2f5aebc2515bf8828889f8ceda8112b78cdf925a260b82fd833
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8ff35a0-24dc-4158-b67e-a5f03f5a9022.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 1584
x-amzn-requestid: 7743c8a6-118c-4c69-b833-a9e2f5561a54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw5VEGV8IAMFcOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903c20-41fdf6d004b388f51fa70833;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:09:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: whmRQYshKD6d2Pz3Z0ZCCFr_MEPR1rEek7nVZqf5XeiWpt1LIcjvBQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:12:33 GMT
age: 57570
etag: "9ad22ea868f3b72832243fd11315c68117c7542b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.salonomromania.com/js/jquery.jxb.js
196.196.223.103200 OK 0 B URL HTTP/1.1 www.salonomromania.com/js/jquery.jxb.js
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery.jxb.js HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 23:11:59 GMT
Server: Apache
Last-Modified: Fri, 31 Dec 2021 01:41:55 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.salonomromania.com/includes/templates/salomoro/css/ajax-loader.gif
196.196.223.103404 Not Found 0 B URL HTTP/1.1 www.salonomromania.com/includes/templates/salomoro/css/ajax-loader.gif
IP 196.196.223.103:0
ASN #58065 Packet Exchange Limited
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/salomoro/css/ajax-loader.gif HTTP/1.1
Host: www.salonomromania.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.salonomromania.com/includes/templates/salomoro/css/stylesheet_slick.css
Cookie: zenid=0glnar621gl58m4u98dq9jom77
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 23:12:00 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8