Overview

URL farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
IP89.39.83.31
ASNROMARG SRL
Location Romania
Report completed2022-07-01 20:20:54 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-01 2 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip Malware
2022-07-01 2 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip Malware
2022-07-01 2 farmacia-organika.ro/wp-content/plugins/woocommerce/packages/woocommerce-bl (...) Malware
2022-07-01 2 farmacia-organika.ro/wp-content/plugins/contact-form-7/includes/css/styles. (...) Malware
2022-07-01 2 farmacia-organika.ro/wp-content/uploads/sass/wc_email_inquiry_cart_options. (...) Malware
2022-07-01 2 farmacia-organika.ro/wp-content/themes/xstore/css/font-awesome.min.css?ver= (...) Malware
2022-07-01 2 farmacia-organika.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Malware
2022-07-01 2 farmacia-organika.ro/wp-content/themes/xstore/css/bootstrap.min.css?ver=ffc (...) Malware
2022-07-01 2 farmacia-organika.ro/wp-content/plugins/js_composer/assets/css/js_composer. (...) Malware
2022-07-01 2 farmacia-organika.ro/wp-content/plugins/js_composer/assets/js/vendors/wooco (...) Malware
2022-07-01 2 farmacia-organika.ro/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 Malware
2022-07-01 2 farmacia-organika.ro/wp-content/themes/xstore/js/head.min.js?ver=ffc150dadb (...) Malware
2022-07-01 2 farmacia-organika.ro/wp-content/plugins/contact-form-7/includes/js/index.js (...) Malware
2022-07-01 2 farmacia-organika.ro/wp-content/plugins/woocommerce/assets/js/js-cookie/js. (...) Malware
2022-07-01 2 farmacia-organika.ro/wp-content/themes/xstore/style.css?ver=ffc150dadb15811 (...) Malware
2022-07-01 2 farmacia-organika.ro/wp-includes/js/hoverIntent.min.js?ver=1.10.2 Malware
2022-07-01 2 farmacia-organika.ro/wp-content/themes/xstore/js/plugins.min.js?ver=ffc150d (...) Malware
2022-07-01 2 farmacia-organika.ro/?wc-ajax=get_refreshed_fragments Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (20)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-07-01 12:51:19 UTC 23.36.77.32
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-07-01 05:33:42 UTC 54.230.111.14
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-01 14:37:30 UTC 52.89.15.44
[Mnemonic Passive DNS] www.googletagmanager.com (2) 75 2017-01-30 05:00:47 UTC 2022-07-01 05:01:41 UTC 142.250.74.72
[Mnemonic Passive DNS] www.googleadservices.com (1) 107 2017-01-30 05:00:00 UTC 2021-02-23 08:54:56 UTC 142.250.74.98
[Mnemonic Passive DNS] maxcdn.bootstrapcdn.com (1) 724 2017-01-30 05:00:47 UTC 2021-03-05 11:52:46 UTC 104.18.10.207
[Mnemonic Passive DNS] www.google.no (1) 25607 2012-05-21 14:04:11 UTC 2014-08-11 22:10:14 UTC 142.250.74.3
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.35
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] ocsp.pki.goog (15) 175 2017-06-14 07:23:31 UTC 2022-07-01 14:37:30 UTC 142.250.74.3
[Mnemonic Passive DNS] ajax.googleapis.com (1) 12905 2017-01-30 05:00:30 UTC 2019-10-16 05:01:16 UTC 216.58.211.10
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (5) 1631 2017-09-01 03:40:57 UTC 2022-07-01 14:37:32 UTC 34.120.237.76
[Mnemonic Passive DNS] fonts.gstatic.com (2) 0 2017-01-30 04:59:51 UTC 2022-07-01 04:59:46 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] stats.g.doubleclick.net (1) 96 2017-01-30 04:59:59 UTC 2022-07-01 05:01:53 UTC 173.194.73.154
[Mnemonic Passive DNS] www.google.com (1) 7 2012-05-22 04:23:54 UTC 2022-07-01 16:40:21 UTC 142.250.74.164
[Mnemonic Passive DNS] farmacia-organika.ro (38) 0 2019-06-07 14:15:45 UTC 2022-06-19 01:20:16 UTC 89.39.83.31 Unknown ranking
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-07-01 15:56:06 UTC 93.184.220.29
[Mnemonic Passive DNS] fonts.googleapis.com (3) 8877 2017-01-30 04:59:43 UTC 2019-10-16 05:12:41 UTC 216.58.211.10
[Mnemonic Passive DNS] www.google-analytics.com (1) 40 2017-01-30 05:00:06 UTC 2022-07-01 14:43:24 UTC 142.250.74.174
[Mnemonic Passive DNS] googleads.g.doubleclick.net (1) 42 2012-05-21 16:28:57 UTC 2021-02-23 09:01:54 UTC 142.250.74.162


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 89.39.83.31

Date UQ / IDS / BL URL IP
2022-08-14 13:51:04 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-14 02:23:19 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-11 14:34:50 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-09 13:32:26 +0000
0 - 0 - 17 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-09 03:11:00 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-08 18:45:23 +0000
0 - 0 - 18 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-04 04:17:29 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-07-31 10:48:50 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-07-31 02:46:33 +0000
0 - 0 - 18 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-07-28 03:46:56 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31

Last 10 reports on ASN: ROMARG SRL

Date UQ / IDS / BL URL IP
2022-08-14 22:38:30 +0000
0 - 0 - 1 vladimirghika.ro/et-dolor/documents.zip 89.42.218.232
2022-08-14 22:24:14 +0000
0 - 0 - 1 rdrcollect.ro/ad-sunt/documents.zip 89.42.218.226
2022-08-14 22:07:22 +0000
0 - 0 - 3 mediaworld.ro/minima-quasi/documents.zip 89.42.218.232
2022-08-14 22:03:07 +0000
0 - 0 - 1 arcb.ro/harum-laborum/documents.zip 89.42.218.232
2022-08-14 18:36:22 +0000
0 - 0 - 3 chop-shop.ro/maiores-repudiandae/documents.zip 89.47.242.199
2022-08-14 18:30:16 +0000
0 - 0 - 16 seinsweise.com/laborum-rerum/documents.zip 89.42.218.164
2022-08-14 18:11:36 +0000
0 - 0 - 2 turismtimis.ro/a-quas/documents.zip 89.42.218.164
2022-08-14 13:51:04 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-14 13:35:04 +0000
0 - 0 - 1 db.vnc.ro/ 89.39.246.44
2022-08-14 07:11:35 +0000
0 - 0 - 1 actualitatea-crestina.ro/laudantium-reiciendi (...) 89.42.218.232

Last 10 reports on domain: farmacia-organika.ro

Date UQ / IDS / BL URL IP
2022-08-14 13:51:04 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-14 02:23:19 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-11 14:34:50 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-09 13:32:26 +0000
0 - 0 - 17 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-09 03:11:00 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-08 18:45:23 +0000
0 - 0 - 18 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-08-04 04:17:29 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-07-31 10:48:50 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-07-31 02:46:33 +0000
0 - 0 - 18 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31
2022-07-28 03:46:56 +0000
0 - 0 - 19 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31


JavaScript

Executed Scripts (35)


Executed Evals (1)

#1 JavaScript::Eval (size: 24200, repeated: 1) - SHA256: 5b9dbbf3e70397a139a26790fed6461aa5464e027efe65a8b068e5abe60cbdb3

                                        if (typeof Object.create !== "function") {
    Object.create = function(e) {
        function t() {}
        t.prototype = e;
        return new t
    }
}(function(e, t, n, r) {
    var i = {
        init: function(t, n) {
            var r = this;
            r.$elem = e(n);
            r.options = e.extend({}, e.fn.owlCarousel.options, r.$elem.data(), t);
            r.userOptions = t;
            r.loadContent()
        },
        loadContent: function() {
            var t = this;
            if (typeof t.options.beforeInit === "function") {
                t.options.beforeInit.apply(this, [t.$elem])
            }
            if (typeof t.options.jsonPath === "string") {
                var n = t.options.jsonPath;

                function r(e) {
                    if (typeof t.options.jsonSuccess === "function") {
                        t.options.jsonSuccess.apply(this, [e])
                    } else {
                        var n = "";
                        for (var r in e["owl"]) {
                            n += e["owl"][r]["item"]
                        }
                        t.$elem.html(n)
                    }
                    t.logIn()
                }
                e.getJSON(n, r)
            } else {
                t.logIn()
            }
        },
        logIn: function(e) {
            var t = this;
            t.$elem.data("owl-originalStyles", t.$elem.attr("style")).data("owl-originalClasses", t.$elem.attr("class"));
            t.$elem.css({
                opacity: 0
            });
            t.orignalItems = t.options.items;
            t.checkBrowser();
            t.wrapperWidth = 0;
            t.checkVisible;
            t.setVars()
        },
        setVars: function() {
            var e = this;
            if (e.$elem.children().length === 0) {
                return false
            }
            e.baseClass();
            e.eventTypes();
            e.$userItems = e.$elem.children();
            e.itemsAmount = e.$userItems.length;
            e.wrapItems();
            e.$owlItems = e.$elem.find(".owl-item");
            e.$owlWrapper = e.$elem.find(".owl-wrapper");
            e.playDirection = "next";
            e.prevItem = 0;
            e.prevArr = [0];
            e.currentItem = 0;
            e.customEvents();
            e.onStartup()
        },
        onStartup: function() {
            var e = this;
            e.updateItems();
            e.calculateAll();
            e.buildControls();
            e.updateControls();
            e.response();
            e.moveEvents();
            e.stopOnHover();
            e.owlStatus();
            if (e.options.transitionStyle !== false) {
                e.transitionTypes(e.options.transitionStyle)
            }
            if (e.options.autoPlay === true) {
                e.options.autoPlay = 5e3
            }
            e.play();
            e.$elem.find(".owl-wrapper").css("display", "block");
            if (!e.$elem.is(":visible")) {
                e.watchVisibility()
            } else {
                e.$elem.css("opacity", 1)
            }
            e.onstartup = false;
            e.eachMoveUpdate();
            if (typeof e.options.afterInit === "function") {
                e.options.afterInit.apply(this, [e.$elem])
            }
        },
        eachMoveUpdate: function() {
            var e = this;
            if (e.options.lazyLoad === true) {
                e.lazyLoad()
            }
            if (e.options.autoHeight === true) {
                e.autoHeight()
            }
            e.onVisibleItems();
            if (typeof e.options.afterAction === "function") {
                e.options.afterAction.apply(this, [e.$elem])
            }
        },
        updateVars: function() {
            var e = this;
            if (typeof e.options.beforeUpdate === "function") {
                e.options.beforeUpdate.apply(this, [e.$elem])
            }
            e.watchVisibility();
            e.updateItems();
            e.calculateAll();
            e.updatePosition();
            e.updateControls();
            e.eachMoveUpdate();
            if (typeof e.options.afterUpdate === "function") {
                e.options.afterUpdate.apply(this, [e.$elem])
            }
        },
        reload: function(e) {
            var t = this;
            setTimeout(function() {
                t.updateVars()
            }, 0)
        },
        watchVisibility: function() {
            var e = this;
            if (e.$elem.is(":visible") === false) {
                e.$elem.css({
                    opacity: 0
                });
                clearInterval(e.autoPlayInterval);
                clearInterval(e.checkVisible)
            } else {
                return false
            }
            e.checkVisible = setInterval(function() {
                if (e.$elem.is(":visible")) {
                    e.reload();
                    e.$elem.animate({
                        opacity: 1
                    }, 200);
                    clearInterval(e.checkVisible)
                }
            }, 500)
        },
        wrapItems: function() {
            var e = this;
            e.$userItems.wrapAll('<div class="owl-wrapper">').wrap('<div class="owl-item"></div>');
            e.$elem.find(".owl-wrapper").wrap('<div class="owl-wrapper-outer">');
            e.wrapperOuter = e.$elem.find(".owl-wrapper-outer");
            e.$elem.css("display", "block")
        },
        baseClass: function() {
            var e = this;
            var t = e.$elem.hasClass(e.options.baseClass);
            var n = e.$elem.hasClass(e.options.theme);
            if (!t) {
                e.$elem.addClass(e.options.baseClass)
            }
            if (!n) {
                e.$elem.addClass(e.options.theme)
            }
        },
        updateItems: function() {
            var t = this;
            if (t.options.responsive === false) {
                return false
            }
            if (t.options.singleItem === true) {
                t.options.items = t.orignalItems = 1;
                t.options.itemsCustom = false;
                t.options.itemsDesktop = false;
                t.options.itemsDesktopSmall = false;
                t.options.itemsTablet = false;
                t.options.itemsTabletSmall = false;
                t.options.itemsMobile = false;
                return false
            }
            var n = e(t.options.responsiveBaseWidth).width();
            if (n > (t.options.itemsDesktop[0] || t.orignalItems)) {
                t.options.items = t.orignalItems
            }
            if (typeof t.options.itemsCustom !== "undefined" && t.options.itemsCustom !== false) {
                t.options.itemsCustom.sort(function(e, t) {
                    return e[0] - t[0]
                });
                for (var r in t.options.itemsCustom) {
                    if (typeof t.options.itemsCustom[r] !== "undefined" && t.options.itemsCustom[r][0] <= n) {
                        t.options.items = t.options.itemsCustom[r][1]
                    }
                }
            } else {
                if (n <= t.options.itemsDesktop[0] && t.options.itemsDesktop !== false) {
                    t.options.items = t.options.itemsDesktop[1]
                }
                if (n <= t.options.itemsDesktopSmall[0] && t.options.itemsDesktopSmall !== false) {
                    t.options.items = t.options.itemsDesktopSmall[1]
                }
                if (n <= t.options.itemsTablet[0] && t.options.itemsTablet !== false) {
                    t.options.items = t.options.itemsTablet[1]
                }
                if (n <= t.options.itemsTabletSmall[0] && t.options.itemsTabletSmall !== false) {
                    t.options.items = t.options.itemsTabletSmall[1]
                }
                if (n <= t.options.itemsMobile[0] && t.options.itemsMobile !== false) {
                    t.options.items = t.options.itemsMobile[1]
                }
            }
            if (t.options.items > t.itemsAmount && t.options.itemsScaleUp === true) {
                t.options.items = t.itemsAmount
            }
        },
        response: function() {
            var n = this,
                r;
            if (n.options.responsive !== true) {
                return false
            }
            var i = e(t).width();
            n.resizer = function() {
                if (e(t).width() !== i) {
                    if (n.options.autoPlay !== false) {
                        clearInterval(n.autoPlayInterval)
                    }
                    clearTimeout(r);
                    r = setTimeout(function() {
                        i = e(t).width();
                        n.updateVars()
                    }, n.options.responsiveRefreshRate)
                }
            };
            e(t).resize(n.resizer)
        },
        updatePosition: function() {
            var e = this;
            e.jumpTo(e.currentItem);
            if (e.options.autoPlay !== false) {
                e.checkAp()
            }
        },
        appendItemsSizes: function() {
            var t = this;
            var n = 0;
            var r = t.itemsAmount - t.options.items;
            t.$owlItems.each(function(i) {
                var s = e(this);
                s.css({
                    width: t.itemWidth
                }).data("owl-item", Number(i));
                if (i % t.options.items === 0 || i === r) {
                    if (!(i > r)) {
                        n += 1
                    }
                }
                s.data("owl-roundPages", n)
            })
        },
        appendWrapperSizes: function() {
            var e = this;
            var t = 0;
            var t = e.$owlItems.length * e.itemWidth;
            e.$owlWrapper.css({
                width: t * 2,
                left: 0
            });
            e.appendItemsSizes()
        },
        calculateAll: function() {
            var e = this;
            e.calculateWidth();
            e.appendWrapperSizes();
            e.loops();
            e.max()
        },
        calculateWidth: function() {
            var e = this;
            e.itemWidth = Math.round(e.$elem.width() / e.options.items)
        },
        max: function() {
            var e = this;
            var t = (e.itemsAmount * e.itemWidth - e.options.items * e.itemWidth) * -1;
            if (e.options.items > e.itemsAmount) {
                e.maximumItem = 0;
                t = 0;
                e.maximumPixels = 0
            } else {
                e.maximumItem = e.itemsAmount - e.options.items;
                e.maximumPixels = t
            }
            return t
        },
        min: function() {
            return 0
        },
        loops: function() {
            var t = this;
            t.positionsInArray = [0];
            t.pagesInArray = [];
            var n = 0;
            var r = 0;
            for (var i = 0; i < t.itemsAmount; i++) {
                r += t.itemWidth;
                t.positionsInArray.push(-r);
                if (t.options.scrollPerPage === true) {
                    var s = e(t.$owlItems[i]);
                    var o = s.data("owl-roundPages");
                    if (o !== n) {
                        t.pagesInArray[n] = t.positionsInArray[i];
                        n = o
                    }
                }
            }
        },
        buildControls: function() {
            var t = this;
            if (t.options.navigation === true || t.options.pagination === true) {
                t.owlControls = e('<div class="owl-controls"/>').toggleClass("clickable", !t.browser.isTouch).appendTo(t.$elem)
            }
            if (t.options.pagination === true) {
                t.buildPagination()
            }
            if (t.options.navigation === true) {
                t.buildButtons()
            }
        },
        buildButtons: function() {
            var t = this;
            var n = e('<div class="owl-buttons"/>');
            t.owlControls.append(n);
            t.buttonPrev = e("<div/>", {
                "class": "owl-prev",
                html: t.options.navigationText[0] || ""
            });
            t.buttonNext = e("<div/>", {
                "class": "owl-next",
                html: t.options.navigationText[1] || ""
            });
            n.append(t.buttonPrev).append(t.buttonNext);
            n.on("touchstart.owlControls mousedown.owlControls", 'div[class^="owl"]', function(e) {
                e.preventDefault()
            });
            n.on("touchend.owlControls mouseup.owlControls", 'div[class^="owl"]', function(n) {
                n.preventDefault();
                if (e(this).hasClass("owl-next")) {
                    t.next()
                } else {
                    t.prev()
                }
            })
        },
        buildPagination: function() {
            var t = this;
            t.paginationWrapper = e('<div class="owl-pagination"/>');
            t.owlControls.append(t.paginationWrapper);
            t.paginationWrapper.on("touchend.owlControls mouseup.owlControls", ".owl-page", function(n) {
                n.preventDefault();
                if (Number(e(this).data("owl-page")) !== t.currentItem) {
                    t.goTo(Number(e(this).data("owl-page")), true)
                }
            })
        },
        updatePagination: function() {
            var t = this;
            if (t.options.pagination === false) {
                return false
            }
            t.paginationWrapper.html("");
            var n = 0;
            var r = t.itemsAmount - t.itemsAmount % t.options.items;
            for (var i = 0; i < t.itemsAmount; i++) {
                if (i % t.options.items === 0) {
                    n += 1;
                    if (r === i) {
                        var s = t.itemsAmount - t.options.items
                    }
                    var o = e("<div/>", {
                        "class": "owl-page"
                    });
                    var u = e("<span></span>", {
                        text: t.options.paginationNumbers === true ? n : "",
                        "class": t.options.paginationNumbers === true ? "owl-numbers" : ""
                    });
                    o.append(u);
                    o.data("owl-page", r === i ? s : i);
                    o.data("owl-roundPages", n);
                    t.paginationWrapper.append(o)
                }
            }
            t.checkPagination()
        },
        checkPagination: function() {
            var t = this;
            if (t.options.pagination === false) {
                return false
            }
            t.paginationWrapper.find(".owl-page").each(function(n, r) {
                if (e(this).data("owl-roundPages") === e(t.$owlItems[t.currentItem]).data("owl-roundPages")) {
                    t.paginationWrapper.find(".owl-page").removeClass("active");
                    e(this).addClass("active")
                }
            })
        },
        checkNavigation: function() {
            var e = this;
            if (e.options.navigation === false) {
                return false
            }
            if (e.options.rewindNav === false) {
                if (e.currentItem === 0 && e.maximumItem === 0) {
                    e.buttonPrev.addClass("disabled");
                    e.buttonNext.addClass("disabled")
                } else if (e.currentItem === 0 && e.maximumItem !== 0) {
                    e.buttonPrev.addClass("disabled");
                    e.buttonNext.removeClass("disabled")
                } else if (e.currentItem === e.maximumItem) {
                    e.buttonPrev.removeClass("disabled");
                    e.buttonNext.addClass("disabled")
                } else if (e.currentItem !== 0 && e.currentItem !== e.maximumItem) {
                    e.buttonPrev.removeClass("disabled");
                    e.buttonNext.removeClass("disabled")
                }
            }
        },
        updateControls: function() {
            var e = this;
            e.updatePagination();
            e.checkNavigation();
            if (e.owlControls) {
                if (e.options.items >= e.itemsAmount) {
                    e.owlControls.hide()
                } else {
                    e.owlControls.show()
                }
            }
        },
        destroyControls: function() {
            var e = this;
            if (e.owlControls) {
                e.owlControls.remove()
            }
        },
        next: function(e) {
            var t = this;
            if (t.isTransition) {
                return false
            }
            t.currentItem += t.options.scrollPerPage === true ? t.options.items : 1;
            if (t.currentItem > t.maximumItem + (t.options.scrollPerPage == true ? t.options.items - 1 : 0)) {
                if (t.options.rewindNav === true) {
                    t.currentItem = 0;
                    e = "rewind"
                } else {
                    t.currentItem = t.maximumItem;
                    return false
                }
            }
            t.goTo(t.currentItem, e)
        },
        prev: function(e) {
            var t = this;
            if (t.isTransition) {
                return false
            }
            if (t.options.scrollPerPage === true && t.currentItem > 0 && t.currentItem < t.options.items) {
                t.currentItem = 0
            } else {
                t.currentItem -= t.options.scrollPerPage === true ? t.options.items : 1
            }
            if (t.currentItem < 0) {
                if (t.options.rewindNav === true) {
                    t.currentItem = t.maximumItem;
                    e = "rewind"
                } else {
                    t.currentItem = 0;
                    return false
                }
            }
            t.goTo(t.currentItem, e)
        },
        goTo: function(e, t, n) {
            var r = this;
            if (r.isTransition) {
                return false
            }
            if (typeof r.options.beforeMove === "function") {
                r.options.beforeMove.apply(this, [r.$elem])
            }
            if (e >= r.maximumItem) {
                e = r.maximumItem
            } else if (e <= 0) {
                e = 0
            }
            r.currentItem = r.owl.currentItem = e;
            if (r.options.transitionStyle !== false && n !== "drag" && r.options.items === 1 && r.browser.support3d === true) {
                r.swapSpeed(0);
                if (r.browser.support3d === true) {
                    r.transition3d(r.positionsInArray[e])
                } else {
                    r.css2slide(r.positionsInArray[e], 1)
                }
                r.afterGo();
                r.singleItemTransition();
                return false
            }
            var i = r.positionsInArray[e];
            if (r.browser.support3d === true) {
                r.isCss3Finish = false;
                if (t === true) {
                    r.swapSpeed("paginationSpeed");
                    setTimeout(function() {
                        r.isCss3Finish = true
                    }, r.options.paginationSpeed)
                } else if (t === "rewind") {
                    r.swapSpeed(r.options.rewindSpeed);
                    setTimeout(function() {
                        r.isCss3Finish = true
                    }, r.options.rewindSpeed)
                } else {
                    r.swapSpeed("slideSpeed");
                    setTimeout(function() {
                        r.isCss3Finish = true
                    }, r.options.slideSpeed)
                }
                r.transition3d(i)
            } else {
                if (t === true) {
                    r.css2slide(i, r.options.paginationSpeed)
                } else if (t === "rewind") {
                    r.css2slide(i, r.options.rewindSpeed)
                } else {
                    r.css2slide(i, r.options.slideSpeed)
                }
            }
            r.afterGo()
        },
        jumpTo: function(e) {
            var t = this;
            if (typeof t.options.beforeMove === "function") {
                t.options.beforeMove.apply(this, [t.$elem])
            }
            if (e >= t.maximumItem || e === -1) {
                e = t.maximumItem
            } else if (e <= 0) {
                e = 0
            }
            t.swapSpeed(0);
            if (t.browser.support3d === true) {
                t.transition3d(t.positionsInArray[e])
            } else {
                t.css2slide(t.positionsInArray[e], 1)
            }
            t.currentItem = t.owl.currentItem = e;
            t.afterGo()
        },
        afterGo: function() {
            var e = this;
            e.prevArr.push(e.currentItem);
            e.prevItem = e.owl.prevItem = e.prevArr[e.prevArr.length - 2];
            e.prevArr.shift(0);
            if (e.prevItem !== e.currentItem) {
                e.checkPagination();
                e.checkNavigation();
                e.eachMoveUpdate();
                if (e.options.autoPlay !== false) {
                    e.checkAp()
                }
            }
            if (typeof e.options.afterMove === "function" && e.prevItem !== e.currentItem) {
                e.options.afterMove.apply(this, [e.$elem])
            }
        },
        stop: function() {
            var e = this;
            e.apStatus = "stop";
            clearInterval(e.autoPlayInterval)
        },
        checkAp: function() {
            var e = this;
            if (e.apStatus !== "stop") {
                e.play()
            }
        },
        play: function() {
            var e = this;
            e.apStatus = "play";
            if (e.options.autoPlay === false) {
                return false
            }
            clearInterval(e.autoPlayInterval);
            e.autoPlayInterval = setInterval(function() {
                e.next(true)
            }, e.options.autoPlay)
        },
        swapSpeed: function(e) {
            var t = this;
            if (e === "slideSpeed") {
                t.$owlWrapper.css(t.addCssSpeed(t.options.slideSpeed))
            } else if (e === "paginationSpeed") {
                t.$owlWrapper.css(t.addCssSpeed(t.options.paginationSpeed))
            } else if (typeof e !== "string") {
                t.$owlWrapper.css(t.addCssSpeed(e))
            }
        },
        addCssSpeed: function(e) {
            var t = this;
            return {
                "-webkit-transition": "all " + e + "ms ease",
                "-moz-transition": "all " + e + "ms ease",
                "-o-transition": "all " + e + "ms ease",
                transition: "all " + e + "ms ease"
            }
        },
        removeTransition: function() {
            return {
                "-webkit-transition": "",
                "-moz-transition": "",
                "-o-transition": "",
                transition: ""
            }
        },
        doTranslate: function(e) {
            return {
                "-webkit-transform": "translate3d(" + e + "px, 0px, 0px)",
                "-moz-transform": "translate3d(" + e + "px, 0px, 0px)",
                "-o-transform": "translate3d(" + e + "px, 0px, 0px)",
                "-ms-transform": "translate3d(" + e + "px, 0px, 0px)",
                transform: "translate3d(" + e + "px, 0px,0px)"
            }
        },
        transition3d: function(e) {
            var t = this;
            t.$owlWrapper.css(t.doTranslate(e))
        },
        css2move: function(e) {
            var t = this;
            t.$owlWrapper.css({
                left: e
            })
        },
        css2slide: function(e, t) {
            var n = this;
            n.isCssFinish = false;
            n.$owlWrapper.stop(true, true).animate({
                left: e
            }, {
                duration: t || n.options.slideSpeed,
                complete: function() {
                    n.isCssFinish = true
                }
            })
        },
        checkBrowser: function() {
            var e = this;
            var r = "translate3d(0px, 0px, 0px)",
                i = n.createElement("div");
            i.style.cssText = "  -moz-transform:" + r + "; -ms-transform:" + r + "; -o-transform:" + r + "; -webkit-transform:" + r + "; transform:" + r;
            var s = /translate3d\(0px, 0px, 0px\)/g,
                o = i.style.cssText.match(s),
                u = o !== null && o.length === 1;
            var a = "ontouchstart" in t || navigator.msMaxTouchPoints;
            e.browser = {
                support3d: u,
                isTouch: a
            }
        },
        moveEvents: function() {
            var e = this;
            if (e.options.mouseDrag !== false || e.options.touchDrag !== false) {
                e.gestures();
                e.disabledEvents()
            }
        },
        eventTypes: function() {
            var e = this;
            var t = ["s", "e", "x"];
            e.ev_types = {};
            if (e.options.mouseDrag === true && e.options.touchDrag === true) {
                t = ["touchstart.owl mousedown.owl", "touchmove.owl mousemove.owl", "touchend.owl touchcancel.owl mouseup.owl"]
            } else if (e.options.mouseDrag === false && e.options.touchDrag === true) {
                t = ["touchstart.owl", "touchmove.owl", "touchend.owl touchcancel.owl"]
            } else if (e.options.mouseDrag === true && e.options.touchDrag === false) {
                t = ["mousedown.owl", "mousemove.owl", "mouseup.owl"]
            }
            e.ev_types["start"] = t[0];
            e.ev_types["move"] = t[1];
            e.ev_types["end"] = t[2]
        },
        disabledEvents: function() {
            var t = this;
            t.$elem.on("dragstart.owl", function(e) {
                e.preventDefault()
            });
            t.$elem.on("mousedown.disableTextSelect", function(t) {
                return e(t.target).is("input, textarea, select, option")
            })
        },
        gestures: function() {
            function o(e) {
                if (e.touches) {
                    return {
                        x: e.touches[0].pageX,
                        y: e.touches[0].pageY
                    }
                } else {
                    if (e.pageX !== r) {
                        return {
                            x: e.pageX,
                            y: e.pageY
                        }
                    } else {
                        return {
                            x: e.clientX,
                            y: e.clientY
                        }
                    }
                }
            }

            function u(t) {
                if (t === "on") {
                    e(n).on(i.ev_types["move"], f);
                    e(n).on(i.ev_types["end"], l)
                } else if (t === "off") {
                    e(n).off(i.ev_types["move"]);
                    e(n).off(i.ev_types["end"])
                }
            }

            function a(n) {
                var n = n.originalEvent || n || t.event;
                if (n.which === 3) {
                    return false
                }
                if (i.itemsAmount <= i.options.items) {
                    return
                }
                if (i.isCssFinish === false && !i.options.dragBeforeAnimFinish) {
                    return false
                }
                if (i.isCss3Finish === false && !i.options.dragBeforeAnimFinish) {
                    return false
                }
                if (i.options.autoPlay !== false) {
                    clearInterval(i.autoPlayInterval)
                }
                if (i.browser.isTouch !== true && !i.$owlWrapper.hasClass("grabbing")) {
                    i.$owlWrapper.addClass("grabbing")
                }
                i.newPosX = 0;
                i.newRelativeX = 0;
                e(this).css(i.removeTransition());
                var r = e(this).position();
                s.relativePos = r.left;
                s.offsetX = o(n).x - r.left;
                s.offsetY = o(n).y - r.top;
                u("on");
                s.sliding = false;
                s.targetElement = n.target || n.srcElement
            }

            function f(r) {
                var r = r.originalEvent || r || t.event;
                i.newPosX = o(r).x - s.offsetX;
                i.newPosY = o(r).y - s.offsetY;
                i.newRelativeX = i.newPosX - s.relativePos;
                if (typeof i.options.startDragging === "function" && s.dragging !== true && i.newRelativeX !== 0) {
                    s.dragging = true;
                    i.options.startDragging.apply(i, [i.$elem])
                }
                if (i.newRelativeX > 8 || i.newRelativeX < -8 && i.browser.isTouch === true) {
                    r.preventDefault ? r.preventDefault() : r.returnValue = false;
                    s.sliding = true
                }
                if ((i.newPosY > 10 || i.newPosY < -10) && s.sliding === false) {
                    e(n).off("touchmove.owl")
                }
                var u = function() {
                    return i.newRelativeX / 5
                };
                var a = function() {
                    return i.maximumPixels + i.newRelativeX / 5
                };
                i.newPosX = Math.max(Math.min(i.newPosX, u()), a());
                if (i.browser.support3d === true) {
                    i.transition3d(i.newPosX)
                } else {
                    i.css2move(i.newPosX)
                }
            }

            function l(n) {
                var n = n.originalEvent || n || t.event;
                n.target = n.target || n.srcElement;
                s.dragging = false;
                if (i.browser.isTouch !== true) {
                    i.$owlWrapper.removeClass("grabbing")
                }
                if (i.newRelativeX < 0) {
                    i.dragDirection = i.owl.dragDirection = "left"
                } else {
                    i.dragDirection = i.owl.dragDirection = "right"
                }
                if (i.newRelativeX !== 0) {
                    var r = i.getNewPosition();
                    i.goTo(r, false, "drag");
                    if (s.targetElement === n.target && i.browser.isTouch !== true) {
                        e(n.target).on("click.disable", function(t) {
                            t.stopImmediatePropagation();
                            t.stopPropagation();
                            t.preventDefault();
                            e(n.target).off("click.disable")
                        });
                        var o = e._data(n.target, "events")["click"];
                        var a = o.pop();
                        o.splice(0, 0, a)
                    }
                }
                u("off")
            }
            var i = this;
            var s = {
                offsetX: 0,
                offsetY: 0,
                baseElWidth: 0,
                relativePos: 0,
                position: null,
                minSwipe: null,
                maxSwipe: null,
                sliding: null,
                dargging: null,
                targetElement: null
            };
            i.isCssFinish = true;
            i.$elem.on(i.ev_types["start"], ".owl-wrapper", a)
        },
        getNewPosition: function() {
            var e = this,
                t;
            t = e.closestItem();
            if (t > e.maximumItem) {
                e.currentItem = e.maximumItem;
                t = e.maximumItem
            } else if (e.newPosX >= 0) {
                t = 0;
                e.currentItem = 0
            }
            return t
        },
        closestItem: function() {
            var t = this,
                n = t.options.scrollPerPage === true ? t.pagesInArray : t.positionsInArray,
                r = t.newPosX,
                i = null;
            e.each(n, function(s, o) {
                if (r - t.itemWidth / 20 > n[s + 1] && r - t.itemWidth / 20 < o && t.moveDirection() === "left") {
                    i = o;
                    if (t.options.scrollPerPage === true) {
                        t.currentItem = e.inArray(i, t.positionsInArray)
                    } else {
                        t.currentItem = s
                    }
                } else if (r + t.itemWidth / 20 < o && r + t.itemWidth / 20 > (n[s + 1] || n[s] - t.itemWidth) && t.moveDirection() === "right") {
                    if (t.options.scrollPerPage === true) {
                        i = n[s + 1] || n[n.length - 1];
                        t.currentItem = e.inArray(i, t.positionsInArray)
                    } else {
                        i = n[s + 1];
                        t.currentItem = s + 1
                    }
                }
            });
            return t.currentItem
        },
        moveDirection: function() {
            var e = this,
                t;
            if (e.newRelativeX < 0) {
                t = "right";
                e.playDirection = "next"
            } else {
                t = "left";
                e.playDirection = "prev"
            }
            return t
        },
        customEvents: function() {
            var e = this;
            e.$elem.on("owl.next", function() {
                e.next()
            });
            e.$elem.on("owl.prev", function() {
                e.prev()
            });
            e.$elem.on("owl.play", function(t, n) {
                e.options.autoPlay = n;
                e.play();
                e.hoverStatus = "play"
            });
            e.$elem.on("owl.stop", function() {
                e.stop();
                e.hoverStatus = "stop"
            });
            e.$elem.on("owl.goTo", function(t, n) {
                e.goTo(n)
            });
            e.$elem.on("owl.jumpTo", function(t, n) {
                e.jumpTo(n)
            })
        },
        stopOnHover: function() {
            var e = this;
            if (e.options.stopOnHover === true && e.browser.isTouch !== true && e.options.autoPlay !== false) {
                e.$elem.on("mouseover", function() {
                    e.stop()
                });
                e.$elem.on("mouseout", function() {
                    if (e.hoverStatus !== "stop") {
                        e.play()
                    }
                })
            }
        },
        lazyLoad: function() {
            var t = this;
            if (t.options.lazyLoad === false) {
                return false
            }
            for (var n = 0; n < t.itemsAmount; n++) {
                var i = e(t.$owlItems[n]);
                if (i.data("owl-loaded") === "loaded") {
                    continue
                }
                var s = i.data("owl-item"),
                    o = i.find(".lazyOwl"),
                    u;
                if (typeof o.data("src") !== "string") {
                    i.data("owl-loaded", "loaded");
                    continue
                }
                if (i.data("owl-loaded") === r) {
                    o.hide();
                    i.addClass("loading").data("owl-loaded", "checked")
                }
                if (t.options.lazyFollow === true) {
                    u = s >= t.currentItem
                } else {
                    u = true
                }
                if (u && s < t.currentItem + t.options.items && o.length) {
                    t.lazyPreload(i, o)
                }
            }
        },
        lazyPreload: function(e, t) {
            function s() {
                r += 1;
                if (n.completeImg(t.get(0)) || i === true) {
                    o()
                } else if (r <= 100) {
                    setTimeout(s, 100)
                } else {
                    o()
                }
            }

            function o() {
                e.data("owl-loaded", "loaded").removeClass("loading");
                t.removeAttr("data-src");
                n.options.lazyEffect === "fade" ? t.fadeIn(400) : t.show();
                if (typeof n.options.afterLazyLoad === "function") {
                    n.options.afterLazyLoad.apply(this, [n.$elem])
                }
            }
            var n = this,
                r = 0;
            if (t.prop("tagName") === "DIV") {
                t.css("background-image", "url(" + t.data("src") + ")");
                var i = true
            } else {
                t[0].src = t.data("src")
            }
            s()
        },
        autoHeight: function() {
            function s() {
                i += 1;
                if (t.completeImg(n.get(0))) {
                    o()
                } else if (i <= 100) {
                    setTimeout(s, 100)
                } else {
                    t.wrapperOuter.css("height", "")
                }
            }

            function o() {
                var n = e(t.$owlItems[t.currentItem]).height();
                t.wrapperOuter.css("height", n + "px");
                if (!t.wrapperOuter.hasClass("autoHeight")) {
                    setTimeout(function() {
                        t.wrapperOuter.addClass("autoHeight")
                    }, 0)
                }
            }
            var t = this;
            var n = e(t.$owlItems[t.currentItem]).find("img");
            if (n.get(0) !== r) {
                var i = 0;
                s()
            } else {
                o()
            }
        },
        completeImg: function(e) {
            if (!e.complete) {
                return false
            }
            if (typeof e.naturalWidth !== "undefined" && e.naturalWidth == 0) {
                return false
            }
            return true
        },
        onVisibleItems: function() {
            var t = this;
            if (t.options.addClassActive === true) {
                t.$owlItems.removeClass("active")
            }
            t.visibleItems = [];
            for (var n = t.currentItem; n < t.currentItem + t.options.items; n++) {
                t.visibleItems.push(n);
                if (t.options.addClassActive === true) {
                    e(t.$owlItems[n]).addClass("active")
                }
            }
            t.owl.visibleItems = t.visibleItems
        },
        transitionTypes: function(e) {
            var t = this;
            t.outClass = "owl-" + e + "-out";
            t.inClass = "owl-" + e + "-in"
        },
        singleItemTransition: function() {
            function u(e, t) {
                return {
                    position: "relative",
                    left: e + "px"
                }
            }
            var e = this;
            e.isTransition = true;
            var t = e.outClass,
                n = e.inClass,
                r = e.$owlItems.eq(e.currentItem),
                i = e.$owlItems.eq(e.prevItem),
                s = Math.abs(e.positionsInArray[e.currentItem]) + e.positionsInArray[e.prevItem],
                o = Math.abs(e.positionsInArray[e.currentItem]) + e.itemWidth / 2;
            e.$owlWrapper.addClass("owl-origin").css({
                "-webkit-transform-origin": o + "px",
                "-moz-perspective-origin": o + "px",
                "perspective-origin": o + "px"
            });
            var a = "webkitAnimationEnd oAnimationEnd MSAnimationEnd animationend";
            i.css(u(s, 10)).addClass(t).on(a, function() {
                e.endPrev = true;
                i.off(a);
                e.clearTransStyle(i, t)
            });
            r.addClass(n).on(a, function() {
                e.endCurrent = true;
                r.off(a);
                e.clearTransStyle(r, n)
            })
        },
        clearTransStyle: function(e, t) {
            var n = this;
            e.css({
                position: "",
                left: ""
            }).removeClass(t);
            if (n.endPrev && n.endCurrent) {
                n.$owlWrapper.removeClass("owl-origin");
                n.endPrev = false;
                n.endCurrent = false;
                n.isTransition = false
            }
        },
        owlStatus: function() {
            var e = this;
            e.owl = {
                userOptions: e.userOptions,
                baseElement: e.$elem,
                userItems: e.$userItems,
                owlItems: e.$owlItems,
                currentItem: e.currentItem,
                prevItem: e.prevItem,
                visibleItems: e.visibleItems,
                isTouch: e.browser.isTouch,
                browser: e.browser,
                dragDirection: e.dragDirection
            }
        },
        clearEvents: function() {
            var r = this;
            r.$elem.off(".owl owl mousedown.disableTextSelect");
            e(n).off(".owl owl");
            e(t).off("resize", r.resizer)
        },
        unWrap: function() {
            var e = this;
            if (e.$elem.children().length !== 0) {
                e.$owlWrapper.unwrap();
                e.$userItems.unwrap().unwrap();
                if (e.owlControls) {
                    e.owlControls.remove()
                }
            }
            e.clearEvents();
            e.$elem.attr("style", e.$elem.data("owl-originalStyles") || "").attr("class", e.$elem.data("owl-originalClasses"))
        },
        destroy: function() {
            var e = this;
            e.stop();
            clearInterval(e.checkVisible);
            e.unWrap();
            e.$elem.removeData()
        },
        reinit: function(t) {
            var n = this;
            var r = e.extend({}, n.userOptions, t);
            n.unWrap();
            n.init(r, n.$elem)
        },
        addItem: function(e, t) {
            var n = this,
                i;
            if (!e) {
                return false
            }
            if (n.$elem.children().length === 0) {
                n.$elem.append(e);
                n.setVars();
                return false
            }
            n.unWrap();
            if (t === r || t === -1) {
                i = -1
            } else {
                i = t
            }
            if (i >= n.$userItems.length || i === -1) {
                n.$userItems.eq(-1).after(e)
            } else {
                n.$userItems.eq(i).before(e)
            }
            n.setVars()
        },
        removeItem: function(e) {
            var t = this,
                n;
            if (t.$elem.children().length === 0) {
                return false
            }
            if (e === r || e === -1) {
                n = -1
            } else {
                n = e
            }
            t.unWrap();
            t.$userItems.eq(n).remove();
            t.setVars()
        }
    };
    e.fn.owlCarousel = function(t) {
        return this.each(function() {
            if (e(this).data("owl-init") === true) {
                return false
            }
            e(this).data("owl-init", true);
            var n = Object.create(i);
            n.init(t, this);
            e.data(this, "owlCarousel", n)
        })
    };
    e.fn.owlCarousel.options = {
        items: 5,
        itemsCustom: false,
        itemsDesktop: [1199, 4],
        itemsDesktopSmall: [979, 3],
        itemsTablet: [768, 2],
        itemsTabletSmall: false,
        itemsMobile: [479, 1],
        singleItem: false,
        itemsScaleUp: false,
        slideSpeed: 200,
        paginationSpeed: 800,
        rewindSpeed: 1e3,
        autoPlay: false,
        stopOnHover: false,
        navigation: false,
        navigationText: ["prev", "next"],
        rewindNav: true,
        scrollPerPage: false,
        pagination: true,
        paginationNumbers: false,
        responsive: true,
        responsiveRefreshRate: 200,
        responsiveBaseWidth: t,
        baseClass: "owl-carousel",
        theme: "owl-theme",
        lazyLoad: false,
        lazyFollow: true,
        lazyEffect: "fade",
        autoHeight: false,
        jsonPath: false,
        jsonSuccess: false,
        dragBeforeAnimFinish: true,
        mouseDrag: true,
        touchDrag: true,
        addClassActive: false,
        transitionStyle: false,
        beforeUpdate: false,
        afterUpdate: false,
        beforeInit: false,
        afterInit: false,
        beforeMove: false,
        afterMove: false,
        afterAction: false,
        startDragging: false,
        afterLazyLoad: false
    }
})(jQuery, window, document)
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 0, repeated: 1) - SHA256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                    


HTTP Transactions (85)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8E263E6763753F5659AC0FC2D11DAF8ECE9720988153C38CB40631AF26C86575"
Last-Modified: Fri, 01 Jul 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10230
Expires: Fri, 01 Jul 2022 23:11:11 GMT
Date: Fri, 01 Jul 2022 20:20:41 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.14
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 01 Jul 2022 03:26:42 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vy_H_xfCeOej59uFic7Tq9IZVJqRhLde8lUkDRzkNfuFd3gdd0xP_w==
age: 60840
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 01 Jul 2022 19:49:08 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -LrZy2zkYbIYm1X0Avawr8eIbAmvqsgV55Tf39G30zinPrZMyjZmwg==
Age: 1893


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Fri, 01 Jul 2022 20:20:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /doc/bME/o3Y/j3S/LR3cf33.zip HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         89.39.83.31
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 01 Jul 2022 20:20:41 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Set-Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_7d67228d28268743b7776be1a38551%7C%7C1656879642%7C%7C1656876042%7C%7C6c7289472aa212bb80dda35a6f005656; expires=Sun, 03-Jul-2022 20:20:42 GMT; Max-Age=172800; path=/; HttpOnly
Location: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 01 Jul 2022 20:19:47 GMT
Cache-Control: max-age=3600
Expires: Fri, 01 Jul 2022 20:25:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: z7wuv_y98TvCz6woHiw_KeuTb2tLuC8RoiKwVEqMLtAQFKbFVJ-Qyw==
Age: 2514


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3545
Cache-Control: 'max-age=158059'
Date: Fri, 01 Jul 2022 20:20:43 GMT
Last-Modified: Fri, 01 Jul 2022 19:21:38 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wWz5dLel/a8vDDVb4vIjKQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.89.15.44
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EZaT3mnqUVmx8QZ3li69sKQlCJE=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ajax/libs/jqueryui/1.11.2/themes/smoothness/jquery-ui.css HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.10
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 8060
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Jun 2022 13:06:59 GMT
expires: Tue, 27 Jun 2023 13:06:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 371625
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/css; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2363)
Size:   8060
Md5:    1930141d1ccd3409ebbe8c2db4c43fcf
Sha1:   8d6b59aa365bf686ab7408353fd232d7ca7feab5
Sha256: f2094ee57e84b8403b58f45dbe68411e3b02fe3f0cb465fdec48b206ab66d48f
                                        
                                            GET /doc/bME/o3Y/j3S/LR3cf33.zip HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         89.39.83.31
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 01 Jul 2022 20:20:42 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://farmacia-organika.ro/wp-json/>; rel="https://api.w.org/"
Set-Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d; expires=Sun, 03-Jul-2022 20:20:43 GMT; Max-Age=172799; path=/; secure; HttpOnly
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23474)
Size:   166602
Md5:    cf781801ec49091e91d9797d68713710
Sha1:   b79410f843e94a55181e51cbc3305e86c7aaa4a0
Sha256: 31ee96c041a0af2502c84070b7c468a049cead8a70e506837c44572818b1273e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /gtm.js?id=GTM-KTJWX2Q HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
                                        
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Jul 2022 20:20:44 GMT
expires: Fri, 01 Jul 2022 20:20:44 GMT
cache-control: private, max-age=900
last-modified: Fri, 01 Jul 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44415
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1581)
Size:   44415
Md5:    f3ce68c8dfd750dfd7060b351c1a43f8
Sha1:   71d7916fe05b9aed21fc6c278e5cad48795eebaf
Sha256: 211c1e608af0b6ab0aeb97109f2aa2e0d9c63d2955dc6ab2647d342de907ca9a
                                        
                                            GET /gtag/js?id=UA-106162848-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.72
HTTP/2 200 OK
                                        
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Jul 2022 20:20:44 GMT
expires: Fri, 01 Jul 2022 20:20:44 GMT
cache-control: private, max-age=900
last-modified: Fri, 01 Jul 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 40365
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1596)
Size:   40365
Md5:    865301caa000b0309551499b1aae5311
Sha1:   300d80b786fb36ec985e64217651f244fdefeb4a
Sha256: 159af89751be1019a3c8f79e755fb9ee1ea5383c5699227fbf9c3b1d2e7855fd
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=6.9.0 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:39:09 GMT
ETag: "1345-5da3f683a2e82-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1286
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (4933), with no line terminators
Size:   1286
Md5:    d2d7f4c273d3b4cd972a337969b14754
Sha1:   b441775d1dcba61a5234df0256a40c7f58a8b059
Sha256: fcfdbdf2a45072bbb545934d419cf76e5272d3193742eb8b659e938cafab4cdf
                                        
                                            GET /css?family=Lato%3A300%2C400%2C700%2C900%2C300italic%2C400italic&ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.211.10
HTTP/2 200 OK
                                        
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Jul 2022 20:20:44 GMT
date: Fri, 01 Jul 2022 20:20:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.9.0 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:39:10 GMT
ETag: "333a7-5da3f683a7ca2-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 22147
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size:   22147
Md5:    b76a3b581159ef8b7af537f21a8987a5
Sha1:   f4fda12a4b6a1224aac48e69124f4acfba2e42bf
Sha256: 5762e246dcc1c89862a3c28fe756932f3bdb7b444a30d52b9d5a082fad1693b0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/ajax-search-for-woocommerce/assets/css/style.min.css?ver=1.18.1 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Wed, 22 Jun 2022 08:41:12 GMT
ETag: "6d2e-5e2054ca996ed-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 5077
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (27949)
Size:   5077
Md5:    27bb4e87a0b6abf68deaa29ed8987f09
Sha1:   4fa66802b45a13606520928c3edb7e2123ff20b6
Sha256: 4d0e653d2265bb899b55112eb6b272471dc2cdbb04726eb7e2a472a0e91c6036
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:40:10 GMT
ETag: "aab-5da3f6bd04a64-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 972
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   972
Md5:    8bf268dfcca7cb20719b7ea14373ef4a
Sha1:   58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
Sha256: eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.10.207
HTTP/2 200 OK
                                        
date: Fri, 01 Jul 2022 20:20:44 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 565, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 2021-06-08 19:04:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: e9a84d03a1f7c6aa17012c712a6e5dd5
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 2151092
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7241d8121c1d1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27303)
Size:   6731
Md5:    61f46ebc8315504f04638058d969190d
Sha1:   64ad999bfee3012d7258d315e28f7e4d497f048d
Sha256: 7d0d03cf8df7d5108e9999b7df2f4fd9b1f49ea404d0bd9584f3caecc195b919
                                        
                                            GET /wp-content/plugins/woocommerce-email-inquiry-cart-options/assets/css/wc_email_inquiry_style.css?ver=2.7.0 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:40:28 GMT
ETag: "ef7-5da3f6ce8f62d-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1040
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1040
Md5:    1fd0b01c59e6d2d2c086aae4ee51f2d9
Sha1:   3bbaa95ca2252fcb56f28acaa8624f1724383d47
Sha256: 47c138f74531fdc4ce963dab8ba52595ba0a33d4f08bf23bd2e62dc1e4d49b74
                                        
                                            GET /wp-content/uploads/sass/wc_email_inquiry_cart_options.min.css?ver=1648202677 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Fri, 25 Mar 2022 10:04:37 GMT
ETag: "e68-5db0817221a10-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 790
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3688), with no line terminators
Size:   790
Md5:    a440e7908b7f243826f0d611dc91fae1
Sha1:   e3bf98c107317c33e99f387fc5dc4f2dbf7e73f4
Sha256: 28581645b84bd5fa10b74d8f259fe6dacafeafca8e0d40ae8d4e30a9d479789a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/xstore/css/font-awesome.min.css?ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 15:10:04 GMT
ETag: "7946-5506ebb62eb00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 7064
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (30884)
Size:   7064
Md5:    cb4b2750d14f5b4888b6d96dd9477664
Sha1:   cc146e9e654c39a5bd509ee4ee60e973001e9933
Sha256: 13c5697df63846ed7c5d44834b915e9d9fccf16a980f956a66c2da3ef9e3ca1a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
ETag: "2bd8-5b45debe27b80-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 4169
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   4169
Md5:    5629711d7fdd5b28441bac39b851299f
Sha1:   4e0bf2b7383097f7c352023a1b1b1b48a50356b6
Sha256: 44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B"
Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7631
Expires: Fri, 01 Jul 2022 22:27:55 GMT
Date: Fri, 01 Jul 2022 20:20:44 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.3.1 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:39:09 GMT
ETag: "253d-5da3f68389071-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 3493
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (9139)
Size:   3493
Md5:    d6c87c7221011e280d3bb60eb9c598e4
Sha1:   93aa9b7f17b91719689519d4439c10d884063296
Sha256: 0acd2e4b6cc50829b1fb1e12b55ed2b72b201631e908a80171d39ef4a9570724
                                        
                                            GET /wp-content/themes/xstore/css/bootstrap.min.css?ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 15:10:04 GMT
ETag: "1b2b4-5506ebb62eb00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 18256
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   18256
Md5:    2e8a76c02e6e99e35c362914213dff92
Sha1:   6314e9b33bd48110488c2aa6725fe34f303245f3
Sha256: dbae29df598fc85f088261f3caab3f47d99ce157df5d947e6d934addb439996c

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B"
Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7631
Expires: Fri, 01 Jul 2022 22:27:55 GMT
Date: Fri, 01 Jul 2022 20:20:44 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc64139e3-1714-4207-9f83-6963efdebdb1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 11303
x-amzn-requestid: 133e1b8e-7db3-4337-92a0-b693c3ba40aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UeQEkHN1IAMF6qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bbfa1d-65b9ee0025592952377ccb6d;Sampled=0
x-amzn-remapped-date: Wed, 29 Jun 2022 07:07:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b6w4cQYK6SWIq1ovO9TD7-v9aiHUWt03LDuS6OeVOQ2GRV100sif2g==
via: 1.1 cb2af39fbf29fa8b3d7f263c2b822092.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 07:08:00 GMT
age: 47564
etag: "91d2dc48008a198adb2b740bec1843a146f826c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11303
Md5:    b38a21dc4af2a753ec1149a58eca2ee2
Sha1:   91d2dc48008a198adb2b740bec1843a146f826c1
Sha256: 2e56992e4642c248dd330fc1343977dedd2ec4e944564214be432f3f390488e7
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd936a38-7fb2-43eb-b94b-bd2c81ade0b1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6777
x-amzn-requestid: c005a5ae-e474-43cb-9973-43dd74949627
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ujh1tGKcIAMF3Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62be168a-25378680023affeb0bffc59f;Sampled=0
x-amzn-remapped-date: Thu, 30 Jun 2022 21:32:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RPW8qGTETJUd9kgX5ob-4cOqTzbg_u_e6b9QNyN4cjv2XJqPpfe5tw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Jun 2022 21:40:27 GMT
age: 81617
etag: "3ef7bccae71f2082f56d185cb2e009f35eee08df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6777
Md5:    da6177e6bf4587c118780e44a2277b81
Sha1:   3ef7bccae71f2082f56d185cb2e009f35eee08df
Sha256: e49dafb03a8e282c3137b9efa813a9b0da81da02d1f128e40b9609d31d62d9bd
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6db634e-e239-4b93-881b-a8655a27d650.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8188
x-amzn-requestid: 27339e76-dbd1-45f6-b0d3-d60795d3402c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Uji5yEvRIAMFoEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62be183e-71771e9a59cd04481fa7155b;Sampled=0
x-amzn-remapped-date: Thu, 30 Jun 2022 21:40:14 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y54qk4SpJnKkEfEgUen1gHReCShGpS4xp0xsZEA_JUiiNRQplScSyA==
via: 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Jun 2022 21:45:22 GMT
age: 81322
etag: "bce84b1e6ac56efc7ad37190eeefd129183d2a2b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8188
Md5:    a00287c642d20230cf09897d4c7cf848
Sha1:   bce84b1e6ac56efc7ad37190eeefd129183d2a2b
Sha256: 6e2b5ba420cba4324d3f1232a680ebff32babd2bc7fbc125d16f32b7bdc19b34
                                        
                                            GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.12 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 14:10:12 GMT
ETag: "6f602-5506de5495900-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 43844
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   43844
Md5:    8642ba13aa690384cbbe0b22790def1b
Sha1:   fcc63ec24d9c15e56a19921d7aa7776498b31a2c
Sha256: c0d0b8ca26f8a0f9a99c893223cb87ffbea59ba0b3af9212bc66593e341e8792

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css?family=Roboto&subset=latin-ext&display=swap&ver=1541440819 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.211.10
HTTP/2 200 OK
                                        
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Jul 2022 20:20:44 GMT
date: Fri, 01 Jul 2022 20:20:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   11322
Md5:    5a5a81bdb55ab0b2a46a72422028cbb3
Sha1:   ac0d62b849bc3065b7b858c4af039b536daf1418
Sha256: 0605c96d77500f889422a016727824be4ba37188f678edb1432b6aba306cd0b0
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B"
Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7631
Expires: Fri, 01 Jul 2022 22:27:55 GMT
Date: Fri, 01 Jul 2022 20:20:44 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.3.1 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:39:09 GMT
ETag: "bdd-5da3f683880d1-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1086
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (3037), with no line terminators
Size:   1086
Md5:    f46e666160800ab91bb12cccc7555662
Sha1:   63b98922823c1f54ed1a96e1dcd0c227e3e51419
Sha256: f5cc9892eb6b336791126838b53edfe9dc4b12b99aae085cadf52d8e734f5c68
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B"
Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7631
Expires: Fri, 01 Jul 2022 22:27:55 GMT
Date: Fri, 01 Jul 2022 20:20:44 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=4.12 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 14:10:12 GMT
ETag: "37f-5506de5495900-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 351
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   351
Md5:    caa6ca5d23d1adf35e63b219631fff8e
Sha1:   786acb0cf5a9033939c4c4b8f5c4109e2e15401f
Sha256: 50973c0a98e9463c4417b2ccd9424a5f89a9924b80878548f19422b25d23d901

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd926d5f1-970b-4f0d-ba69-ce0a27fd786b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9568
x-amzn-requestid: 83293b3e-b423-441a-adbd-b4cfc58dfaa7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UjicjHTroAMFwkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62be1783-47fc8cb065f0214a32e2cce5;Sampled=0
x-amzn-remapped-date: Thu, 30 Jun 2022 21:37:07 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: D7M05OAqURYWEQbJEUjGPgSCKtdPhsv6cqb6GFKvs8QUsy77SXZLmQ==
via: 1.1 6a63e853422f3197776fb098fab5a416.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Jun 2022 21:51:08 GMT
age: 80976
etag: "89ba3ae28d26e989798688b9eb580aeb9adc3c9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9568
Md5:    d147a3f7b9a135ebf5e32f8b3e651a8a
Sha1:   89ba3ae28d26e989798688b9eb580aeb9adc3c9b
Sha256: 0491f99ead2be6ab16d8abafe4083807bc31166e70faa094cad27fb9fc98898d
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B"
Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7631
Expires: Fri, 01 Jul 2022 22:27:55 GMT
Date: Fri, 01 Jul 2022 20:20:44 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8c568de-dd75-46d8-a4b9-f178f3798a53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7641
x-amzn-requestid: 20b289aa-2eee-4c86-9dcf-10ba4a0f5a90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UgdXLGCXoAMFkZQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bcdc2d-652396ae74f1146b05c066ea;Sampled=0
x-amzn-remapped-date: Wed, 29 Jun 2022 23:11:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nwKljOqoF29FeG9htmVduwRDq73bRydZWpIr-giPVfQMScUt4IMidw==
via: 1.1 2a44ef7b9d28e74c78ffadeedcbb887c.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 01 Jul 2022 13:17:21 GMT
age: 25403
etag: "879055ce294f5227ff9583d2f8f4e5d4333ba66e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7641
Md5:    204528d6d0fd0a8c0991353d096b4eb0
Sha1:   879055ce294f5227ff9583d2f8f4e5d4333ba66e
Sha256: 0a7f74062dc45f19a38cf43b91459beaaee359373286de2d0a7d0f82ebb08d24
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Tue, 08 Jun 2021 22:15:12 GMT
ETag: "4705-5c4487ddedc00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 4930
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (15224)
Size:   4930
Md5:    3179794486ec4ca8f59329ccd67ae3e1
Sha1:   4b9c6e22ee7966479ef9844259f39f19d584f4a4
Sha256: 6e616b83910943042f683d5d21691f7e15aca8e2d8d154ff8f35bf09c612297a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
ETag: "15db1-5bd3006388300-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 30908
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30908
Md5:    9640915738503451aa21181699feab5b
Sha1:   c053eaf36ef0da96619706b3abda326305063bd6
Sha256: f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
                                        
                                            GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Fri, 25 Mar 2022 10:03:03 GMT
ETag: "195e-5db08117d9f9c-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 2422
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6494), with no line terminators
Size:   2422
Md5:    c16f2821df385b57b616cb7c867e1253
Sha1:   6327ed04bc2d7c294db8358cdf8b06ff62c3eb13
Sha256: ff1c71b966df6e007b9175772a52be12d7dd9b65aafcb78a55046f60e792ae42
                                        
                                            GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Fri, 25 Mar 2022 10:03:03 GMT
ETag: "4b3d-5db08117d97cc-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 7013
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (19111)
Size:   7013
Md5:    3d97cdcc7f05c2b5782d39b135850bc3
Sha1:   d4427472e22221d71413745415a7b1e959da28f3
Sha256: 3b9a4010e3156a9143b38a24e91a5b34d898b1eeab165f49cda8c16212a968f7

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /pagead/conversion.js HTTP/1.1 
Host: www.googleadservices.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.98
HTTP/2 200 OK
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 01 Jul 2022 20:20:45 GMT
expires: Fri, 01 Jul 2022 20:20:45 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3151637731994422235
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 17003
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2154)
Size:   17003
Md5:    ccc7d58a0d9fc81ecdd013b48818096f
Sha1:   f43048d4f5915fa611f86978d553c8060ae16a10
Sha256: af462ab0c711a0981c98c334480f9b07e75281c9d6e8aaa965c57901cf156cee
                                        
                                            GET /wp-content/themes/xstore/js/head.min.js?ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 15:10:04 GMT
ETag: "dadc-5506ebb62eb00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 18879
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (33004)
Size:   18879
Md5:    b9e994aac6ade5848b12912d94a080c6
Sha1:   7ed227c9a6f7c22c9adddd7c0ffd732fedfcedc2
Sha256: 518b427ac32abe6704e7c7bf80078fcab1042aba756d1e0984cc12f93c2709ae

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:40:10 GMT
ETag: "25f8-5da3f6bd0561c-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 3286
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (9720), with no line terminators
Size:   3286
Md5:    4ac0d5ab8d83806d59c4e1f7bf0a855a
Sha1:   81153a2f5e3a21febe9ede53c9f0073da3e14829
Sha256: 605fd4e7f4d3fbb5505bb81e3f72c685b6ef411c27cde2f7bab2787c3d870b10

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.3.1 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:39:09 GMT
ETag: "72a-5da3f6838abca-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 982
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1668)
Size:   982
Md5:    e66463f2023b738680c9bdefece69a37
Sha1:   315dc8e6ebdfb18c662851244ee33e2758ad3c83
Sha256: fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.3.1 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:39:09 GMT
ETag: "85b-5da3f683888a1-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 794
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2139), with no line terminators
Size:   794
Md5:    29307e8dec33cf3411ca4e1f2c84e9d0
Sha1:   484402289464d7ffb1475827f3438329d520bfc6
Sha256: a2db59efaa416ef0c9d5d58f142cd5e44c475348cff20a664586fd3cda1b5f5b
                                        
                                            GET /wp-content/plugins/woo-confirmation-email/assets/js/woo-confirmation-email-admin.js?ver=3.5.0 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 09:06:41 GMT
ETag: "95f-5da3e1d81052b-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 609
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   609
Md5:    16caa86480b4f28a82e91b2140b368f9
Sha1:   578dafc85128d6e7d95f199c14c898e36435cd78
Sha256: 11ed66e60e925e0fd0ec71791de5e0bc34219884540b864a3cfa17b746ebdae1
                                        
                                            GET /wp-content/themes/xstore/style.css?ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 01 Jul 2022 20:20:44 GMT
Server: Apache
Last-Modified: Fri, 25 Mar 2022 10:29:27 GMT
ETag: "b682a-5db086fe57aad-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (1335)
Size:   106964
Md5:    fafbd0c7dd161da585a7e115b7b8be6d
Sha1:   e1aef4d0bebfb3fc3ae5f1370b850fea29169c52
Sha256: d7082a2ec628324562d1eb22cded00cafbc11dcdc587871504ab5a89120e813b

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Server: Apache
Last-Modified: Fri, 25 Mar 2022 10:03:03 GMT
ETag: "5dc-5db08117cb924-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 705
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1465)
Size:   705
Md5:    19bbc441740a1a6f3a64155bdfc3dba5
Sha1:   55a4beb22cd76a1d66c4a6947968408f337b4890
Sha256: ed5fdb40d566079267ca224b2d9bbe7235a66ce393c083c28c64be9c24a0dfda

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css?family=Open+Sans:300,300italic,regular,italic,600,600italic,700,700italic,800,800italic HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.10
HTTP/2 200 OK
                                        
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Jul 2022 20:20:44 GMT
date: Fri, 01 Jul 2022 20:20:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3453
Md5:    4367422a3009906cbee6912a6dfa36d3
Sha1:   1db39b776fda5388edc58c328682c7cdc3e65f18
Sha256: c5f0102b341c3651a5e8435c2f9aea37868aec1e81889899120bf56b3a7bbea1
                                        
                                            GET /wp-content/uploads/2017/10/doctor.png HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Server: Apache
Last-Modified: Sat, 28 Oct 2017 16:18:58 GMT
ETag: "99a-55c9dc331e080"
Accept-Ranges: bytes
Content-Length: 2458
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:45 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size:   2458
Md5:    25b3243dd1516fadf120f3ea15b66264
Sha1:   7fd85099d59cdba269da6532ce3de1e6e1b8550f
Sha256: bfd1f11a7fd60f63e57dfa6257f1e7429da0b4d226f4b43599369471025a83d4
                                        
                                            GET /wp-content/themes/xstore/js/etheme.min.js?ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 15:10:04 GMT
ETag: "8871-5506ebb62eb00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 10095
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32002)
Size:   10095
Md5:    25656c9752012587f2a713db97455a2d
Sha1:   7944823485ed0d12ca3bbf08e88793d531a37828
Sha256: 23ab4ca722add09ce04076bc48372a65f6eb67f0f7a9bf9500882e4f7e0c7824
                                        
                                            GET /wp-content/uploads/2017/04/Organika-Com-Logo.png HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Server: Apache
Last-Modified: Sat, 28 Oct 2017 15:05:38 GMT
ETag: "2008-55c9cbcef3480"
Accept-Ranges: bytes
Content-Length: 8200
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:45 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 250 x 150, 8-bit colormap, non-interlaced\012- data
Size:   8200
Md5:    1f94d9fa8ad0099dcf537078fb392f62
Sha1:   40cbc2f1e4d4daa42de0b73c6736cbba40bad624
Sha256: 7d49d7139cabb37cd25c9329ce5fe07bb2ddb370c8966c185b87cf98e363e8e2
                                        
                                            GET /wp-content/themes/xstore/images/preloader.png HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Server: Apache
Last-Modified: Sat, 28 Oct 2017 10:39:56 GMT
ETag: "5d7a-55c9906b79700"
Accept-Ranges: bytes
Content-Length: 23930
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:45 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size:   23930
Md5:    69d422030f88f3a1c0818ebc3c57174e
Sha1:   fe649847033c2cc2fff22953d29a30d77b0316cb
Sha256: c245f92ddfeffd6ae6b90ea55ad909e0e12e721dfd04261631f258abf58ba9f2
                                        
                                            GET /wp-content/themes/xstore/js/plugins.min.js?ver=ffc150dadb158112032d70bbf4fdc8fb HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 15:10:04 GMT
ETag: "45a19-5506ebb62eb00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (32035)
Size:   85626
Md5:    1ad2a18045bc392984b6a510530a0f37
Sha1:   844feaba3fc9dce5000aede55090a3c4bda99189
Sha256: ee50e09c1299ec6840178ea7c289dee6874ba4c6ccc36f72949e910639e32b86

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce-email-inquiry-cart-options/assets/images/loading.gif HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:40:28 GMT
ETag: "f9e2-5da3f6ce8f62d"
Accept-Ranges: bytes
Content-Length: 63970
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:45 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 200\012- data
Size:   63970
Md5:    f101cdc8d95a8266529d17d2140444cf
Sha1:   c6600b6a96f07f1e00d66acb7c02255e052be629
Sha256: 3d5e8c674599fd255d1e209e8a45d3f9f0b6aab4365984c86e13de7af8fea585
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://farmacia-organika.ro
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Jun 2022 17:10:21 GMT
expires: Wed, 28 Jun 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 270624
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size:   23580
Md5:    e1b3b5908c9cf23dfb2b9c52b9a023ab
Sha1:   fcd4136085f2a03481d9958cc6793a5ed98e714c
Sha256: 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://farmacia-organika.ro
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Jun 2022 19:34:08 GMT
expires: Thu, 29 Jun 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 175597
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/xstore/images/404-bg.png HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/wp-content/themes/xstore/style.css?ver=ffc150dadb158112032d70bbf4fdc8fb
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d; _gcl_au=1.1.1664508571.1656706845
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 01 Jul 2022 20:20:45 GMT
Server: Apache
Last-Modified: Fri, 26 May 2017 15:10:04 GMT
ETag: "2cbe95-5506ebb62eb00"
Accept-Ranges: bytes
Content-Length: 2932373
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:45 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 1920 x 1080, 8-bit/color RGB, non-interlaced\012- data
Size:   2932373
Md5:    510dbd9da99188760fbdc51b949ff444
Sha1:   7a2daf571b14edeba13f6ed659440c7b75f808d9
Sha256: 3eb7d83ba381b3635fb14da3a3573feb75eedfce69e8b201c5f938307ff0b529
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Fri, 01 Jul 2022 18:41:12 GMT
expires: Fri, 01 Jul 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 5975
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/viewthroughconversion/835067631/?random=1656706845565&cv=9&fst=1656706845565&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Ffarmacia-organika.ro%2Fdoc%2FbME%2Fo3Y%2Fj3S%2FLR3cf33.zip&tiba=Nu%20am%20g%C4%83sit%20pagina%20-%20Farmacia%20Organika&hn=www.googleadservices.com&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.162
HTTP/2 200 OK
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 01 Jul 2022 20:20:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1049
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 01-Jul-2022 20:35:47 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2270), with no line terminators
Size:   1049
Md5:    c3f2a91439bffa3b436f4630b1b3c3f3
Sha1:   f0e91b31e7b892bfe241b5ead016619f5057ac5f
Sha256: 3ddb7e83bb797685f2273afdd4813dd13bfd05e3f7c023e2b7c33931cfe96771
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2017/04/favicon-organika-1-205x205.png HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d; _gcl_au=1.1.1664508571.1656706845
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 01 Jul 2022 20:20:47 GMT
Server: Apache
Last-Modified: Mon, 23 Oct 2017 14:38:40 GMT
ETag: "6c0d-55c37c7499c00"
Accept-Ranges: bytes
Content-Length: 27661
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:47 GMT
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 205 x 205, 8-bit/color RGBA, non-interlaced\012- data
Size:   27661
Md5:    ab53a601773d55ea4f72cdfcdb59a6c6
Sha1:   516310b74535079b1aa2b79172da7d9e168ded46
Sha256: 4cd81f02737d66bf9a375aed1f92ae57fbb8d0fb61df81187aafeef01081c350
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.3.1 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 01 Jul 2022 20:20:48 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 10:39:09 GMT
ETag: "b7a-5da3f683884b9-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:48 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1039
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2938), with no line terminators
Size:   1039
Md5:    45db3d2887c26700a51bf469e3bb3aa1
Sha1:   d070b5fb53d2fbb66964bbfd482270b855d0ee96
Sha256: 1abc0cff49f82d9a063c04cd086b991af6ad00467efc4cb8d8d4e3c9a0f95777
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-106162848-1&cid=153594592.1656706848&jid=1127810811&gjid=1282498347&_gid=1660627738.1656706848&_u=YEBAAUAAAAAAAC~&z=118804944 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://farmacia-organika.ro
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         173.194.73.154
HTTP/2 200 OK
                                        
access-control-allow-origin: https://farmacia-organika.ro
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 01 Jul 2022 20:20:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            GET /pagead/1p-user-list/835067631/?random=1656706845565&cv=9&fst=1656705600000&num=1&guid=ON&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=0&url=https%3A%2F%2Ffarmacia-organika.ro%2Fdoc%2FbME%2Fo3Y%2Fj3S%2FLR3cf33.zip&tiba=Nu%20am%20g%C4%83sit%20pagina%20-%20Farmacia%20Organika&fmt=3&is_vtc=1&random=2863532452&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 01 Jul 2022 20:20:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/835067631/?random=1656706845565&cv=9&fst=1656705600000&num=1&guid=ON&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=0&url=https%3A%2F%2Ffarmacia-organika.ro%2Fdoc%2FbME%2Fo3Y%2Fj3S%2FLR3cf33.zip&tiba=Nu%20am%20g%C4%83sit%20pagina%20-%20Farmacia%20Organika&fmt=3&is_vtc=1&random=2863532452&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://farmacia-organika.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 01 Jul 2022 20:20:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 01 Jul 2022 20:20:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /?wordfence_lh=1&hid=3E68D1796906246745E89440D995813F&r=0.1641096050235401 HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d; _gcl_au=1.1.1664508571.1656706845; _ga=GA1.2.153594592.1656706848; _gid=GA1.2.1660627738.1656706848; _gat_gtag_UA_106162848_1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=UTF-8
                                        
Date: Fri, 01 Jul 2022 20:20:47 GMT
Server: Apache
Link: <https://farmacia-organika.ro/wp-json/>; rel="https://api.w.org/", <https://farmacia-organika.ro/wp-json/wp/v2/pages/4978>; rel="alternate"; type="application/json", <https://farmacia-organika.ro/>; rel=shortlink
Connection: close
X-Robots-Tag: noindex
Content-Length: 0
Cache-Control: max-age=31536000
Expires: Sat, 01 Jul 2023 20:20:47 GMT
Referrer-Policy: no-referrer-when-downgrade

                                        
                                            POST /?wc-ajax=get_refreshed_fragments HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://farmacia-organika.ro
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d; _gcl_au=1.1.1664508571.1656706845; _ga=GA1.2.153594592.1656706848; _gid=GA1.2.1660627738.1656706848; _gat_gtag_UA_106162848_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
                                        
Date: Fri, 01 Jul 2022 20:20:48 GMT
Server: Apache
Access-Control-Allow-Origin: https://farmacia-organika.ro
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 332
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- exported SGML document, ASCII text, with very long lines (681), with no line terminators
Size:   332
Md5:    c26924739e571bb84c19c9e7877f7d4c
Sha1:   ea4801e7055cf655ac9d4606fa53358bcc19bf7c
Sha256: b89f21da0f5ba83900286a1041baf72d703a72793500247159ef34cf2ae6b235

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-admin/admin-ajax.php?action=etheme_wishlist_fragments HTTP/1.1 
Host: farmacia-organika.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: wp_woocommerce_session_cf4f759364cb836c0672facf3e0000eb=t_4e413db2c9fb9568cfcb5eb81219fe%7C%7C1656879643%7C%7C1656876043%7C%7C5d13085ea8bb8c5dbcbe2af11f2b1c4d; _gcl_au=1.1.1664508571.1656706845; _ga=GA1.2.153594592.1656706848; _gid=GA1.2.1660627738.1656706848; _gat_gtag_UA_106162848_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         89.39.83.31
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
                                        
Date: Fri, 01 Jul 2022 20:20:48 GMT
Server: Apache
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
Content-Length: 268
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (459), with no line terminators
Size:   268
Md5:    6562c21ef30b8270a7e651a08537ebf6
Sha1:   d7086f4902da55a5e89b96503d33fb112282469e
Sha256: 364ff4332b4fdba277f4da919ca1094c1ef1057b48c4b41c64f4a67d782262db