r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16351
Expires: Mon, 30 Jan 2023 01:59:05 GMT
Date: Sun, 29 Jan 2023 21:26:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16122
Expires: Mon, 30 Jan 2023 01:55:16 GMT
Date: Sun, 29 Jan 2023 21:26:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 20:43:09 GMT
content-type: application/json
age: 2605
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14976
Expires: Mon, 30 Jan 2023 01:36:10 GMT
Date: Sun, 29 Jan 2023 21:26:34 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7nwNT3pjyeDFWnwAaV4RcMikWJVCOfa49x/NTW2m4Em/E7atbMyL3etdda99ph40Ln2LcO+So5SsHeT3pT4b/A==
x-amz-request-id: 549QVXRT3VMFQZYP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 20:50:28 GMT
age: 2166
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 21:26:34 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
hotelroyale.ro/
89.41.38.48200 OK 58 kB IP 89.41.38.48:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1746), with CRLF, LF line terminators
Hash 3f6240e3404c6325714968079e734093
8c7ecdbc9e7b7a84ca003ec819127cc5ed385bff
60550b811af265f1dc7e2079edeead3450e050e52723c2e16bc897a5b1daa5e1
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:32 GMT
Server: Apache
Link: <http://hotelroyale.ro/wp-json/>; rel="https://api.w.org/", <http://hotelroyale.ro/>; rel=shortlink
Set-Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/tippy.js/tippy.css?ver=2.5.4
89.41.38.48200 OK 14 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/tippy.js/tippy.css?ver=2.5.4
IP 89.41.38.48:0
File type ASCII text, with very long lines (13867), with no line terminators
Hash da65705b2ad9d9baca32485425264dbc
862629a7395eeccfb236b99f5b859e53c172a414
b1ad47eb0e6b0605504215dc4828def5e59c248f70f6f0991ec904d1427797cf
GET /wp-content/plugins/awebooking/assets/vendor/tippy.js/tippy.css?ver=2.5.4 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 12:42:38 GMT
Accept-Ranges: bytes
Content-Length: 13867
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
fonts.googleapis.com/css?family=Roboto:500%7CPlayfair+Display:400
142.250.74.106200 OK 632 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto:500%7CPlayfair+Display:400
IP 142.250.74.106:0
Hash 9d2b5c95b2763ea2ecede6d3daf3fc71
4c4fee1f9e3e4e5292b6116c0306b0e0b2b0ad16
49df1840d15a63e91d6ce15f4910a55ec87ac2c53d256e11c4f42980fbffcb76
GET /css?family=Roboto:500%7CPlayfair+Display:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 29 Jan 2023 21:26:34 GMT
Date: Sun, 29 Jan 2023 21:26:34 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
hotelroyale.ro/wp-content/plugins/awebooking/assets/css/awebooking.css?ver=3.1.12
89.41.38.48200 OK 12 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/awebooking/assets/css/awebooking.css?ver=3.1.12
IP 89.41.38.48:0
Hash 3e58068e4ab03205def529d2104a4b3a
cd186eb2d953c8d10c7868a99fd09cde48153b35
8502e6f5d04c90ba7519bc0f5d5aac89f01284fddca22f588d51b8d607a3b68d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/awebooking/assets/css/awebooking.css?ver=3.1.12 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 22 Oct 2018 12:42:38 GMT
Accept-Ranges: bytes
Content-Length: 12453
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Content-Type: text/css
hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/flatpickr/flatpickr.css?ver=4.5.1
89.41.38.48200 OK 18 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/flatpickr/flatpickr.css?ver=4.5.1
IP 89.41.38.48:0
Hash d9f12f2b9523c3c775d5e264e57080ac
b0a7cba4404e9b3164f768871d357058ae65bdf6
b54160e32eaa8f85933752f32fcddd0ae209c2bffe561a61fe77fcda00ff5f6c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/awebooking/assets/vendor/flatpickr/flatpickr.css?ver=4.5.1 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 22 Oct 2018 12:42:38 GMT
Accept-Ranges: bytes
Content-Length: 17582
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Content-Type: text/css
hotelroyale.ro/wp-content/plugins/awebooking/assets/fonts/awebooking-webfont.css?ver=3.1.12
89.41.38.48200 OK 5.8 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/awebooking/assets/fonts/awebooking-webfont.css?ver=3.1.12
IP 89.41.38.48:0
Hash 9dcd26ca07fadb61b22ec64a9c68bcf8
68f87e50d9cd958856137058e217e44b2d9ba947
0c4063645bba8482287bf24a46d1ce1f80f7ff1feff82f190d24e945168b555b
GET /wp-content/plugins/awebooking/assets/fonts/awebooking-webfont.css?ver=3.1.12 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 22 Oct 2018 12:42:38 GMT
Accept-Ranges: bytes
Content-Length: 5778
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Content-Type: text/css
hotelroyale.ro/wp-content/plugins/fleurdesel-required/vendor/awethemes/vc-extended//css/vc-extended.css?ver=4.9.22
89.41.38.48200 OK 445 B URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/fleurdesel-required/vendor/awethemes/vc-extended//css/vc-extended.css?ver=4.9.22
IP 89.41.38.48:0
File type ASCII text, with CRLF line terminators
Hash 387c5e6b0cc44c3cb230d3329f97de3d
f07a8f576855704b6663526d6c193f0fc932c177
41b541b48d3a63148d1187657f5f4d2be670818c2b94077fc11487d9a0a170a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fleurdesel-required/vendor/awethemes/vc-extended//css/vc-extended.css?ver=4.9.22 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:38 GMT
Accept-Ranges: bytes
Content-Length: 445
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
hotelroyale.ro/wp-content/themes/fleurdesel/dist/css/font-fleurdeselhotel.css?ver=4.9.22
89.41.38.48200 OK 14 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/dist/css/font-fleurdeselhotel.css?ver=4.9.22
IP 89.41.38.48:0
File type troff or preprocessor input, ASCII text, with very long lines (314)
Hash bcb6b368d3cdac0349077b2b2cf5dfed
c90d6a0773769a93ffcba9c6a427e818392fc412
d0fbef81c5a23255618eafbd3388a95c3592cb2dfba422b791e33c2b0f61d9ee
GET /wp-content/themes/fleurdesel/dist/css/font-fleurdeselhotel.css?ver=4.9.22 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 14044
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
hotelroyale.ro/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8
89.41.38.48200 OK 40 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8
IP 89.41.38.48:0
File type Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Hash 3562402588e3bd6410012cf058d1948c
16685faf56b7ab684f50cd6876e4b2ac2c102545
23a57aed407545bd964231bcb511674996bdd28a4f2a57ca66bca72de0bf3d2d
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 01 Aug 2018 07:51:32 GMT
Accept-Ranges: bytes
Content-Length: 39750
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Content-Type: text/css
hotelroyale.ro/wp-content/themes/fleurdesel/src/css/slick.css?ver=1.6.0
89.41.38.48200 OK 1.8 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/css/slick.css?ver=1.6.0
IP 89.41.38.48:0
File type ASCII text, with CRLF line terminators
Hash 3eb34b0e99f1034770766f8bef0f4864
07c398fed94ad8601e3b5c73aa50e5105a51c6c8
7bfb4cc906d6c916081c5d9d2d8d6521170c630a702186c536f82dd44952aaff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/fleurdesel/src/css/slick.css?ver=1.6.0 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 1846
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:26:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hotelroyale.ro/wp-includes/css/dashicons.min.css?ver=4.9.22
89.41.38.48200 OK 46 kB URL HTTP/1.1 hotelroyale.ro/wp-includes/css/dashicons.min.css?ver=4.9.22
IP 89.41.38.48:0
File type ASCII text, with very long lines (46325)
Hash 1c364e777cd2b874ea6cf09100861c6c
58bb8dabdb753287be070ac2840c0fdbbd27f533
d0df2ff25fded9e43a0cfa5159393d4482725bfb390e8ca94f34da85b5304117
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=4.9.22 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Sat, 19 Aug 2017 20:10:47 GMT
Accept-Ranges: bytes
Content-Length: 46360
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
hotelroyale.ro/wp-content/plugins/awebooking/assets/css/awebooking-colour.css?ver=3.1.12
89.41.38.48200 OK 51 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/awebooking/assets/css/awebooking-colour.css?ver=3.1.12
IP 89.41.38.48:0
Hash de7bb09b7cf3bc092c79c6c8f05c3519
f576b2e6d43588cb7719a3a0b5af53f879701a78
e8dfd0dd78b9cac82c0630fe2b156f492f3930a4b320849d374109f75a2b1698
GET /wp-content/plugins/awebooking/assets/css/awebooking-colour.css?ver=3.1.12 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 22 Oct 2018 12:42:38 GMT
Accept-Ranges: bytes
Content-Length: 50984
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Content-Type: text/css
hotelroyale.ro/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.5.5
89.41.38.48200 OK 31 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.5.5
IP 89.41.38.48:0
File type ASCII text, with very long lines (30449)
Hash 17d35b1ddb5a58cc19379d19f22b9fdc
29ada89a0d529ff139afc0b58fac96471ece2853
8cdc53975174314cc55ef7ca7ee80afbf80e724452e4b0fc7e4bea1e43ad4f59
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.5.5 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 09:44:30 GMT
Accept-Ranges: bytes
Content-Length: 30611
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
hotelroyale.ro/wp-content/themes/fleurdesel/src/css/magnific-popup.css?ver=1.1.0
89.41.38.48200 OK 7.3 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/css/magnific-popup.css?ver=1.1.0
IP 89.41.38.48:0
File type ASCII text, with CRLF line terminators
Hash c03fe8704d90e35eba342d2ca2c5a530
74a41372d833195b77dd9e167f82ca395cc4702d
1155981e8193622f58553eed0bba2fa43512af362a3d54dedef64c46970bb371
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/fleurdesel/src/css/magnific-popup.css?ver=1.1.0 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 7302
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/popper.js/popper.min.js?ver=1.14.3
89.41.38.48200 OK 20 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/popper.js/popper.min.js?ver=1.14.3
IP 89.41.38.48:0
File type ASCII text, with very long lines (20363)
Hash 84910d80281fc6b554f4ae2d14612494
af6f046adaab7e1501adee034fb7c366b8c059fc
106b3d4f5c4c1ddbccd6078cf233e9a28f04675575551b26709cfc381c8434b0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/awebooking/assets/vendor/popper.js/popper.min.js?ver=1.14.3 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 12:42:38 GMT
Accept-Ranges: bytes
Content-Length: 20536
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
89.41.38.48200 OK 10 kB URL HTTP/1.1 hotelroyale.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 89.41.38.48:0
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
Accept-Ranges: bytes
Content-Length: 10056
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/a11y-dialog/a11y-dialog.min.js?ver=5.1.2
89.41.38.48200 OK 4.6 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/a11y-dialog/a11y-dialog.min.js?ver=5.1.2
IP 89.41.38.48:0
File type Unicode text, UTF-8 text, with very long lines (4513)
Hash a9da87e3ddf376d3a550e643df3d49d2
4b57a75195f02c02cd1d27b79052af226723cfbb
8b712b3c4a6b6207bf0209e92f08b6777b4720124f611bd2069c925187588268
GET /wp-content/plugins/awebooking/assets/vendor/a11y-dialog/a11y-dialog.min.js?ver=5.1.2 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 12:42:38 GMT
Accept-Ranges: bytes
Content-Length: 4562
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-includes/js/jquery/jquery.js?ver=1.12.4
89.41.38.48200 OK 97 kB URL HTTP/1.1 hotelroyale.ro/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 89.41.38.48:0
File type ASCII text, with very long lines (31997)
Hash dc5ba5044fccc0297be7b262ce669a7c
f137ff98ae379e35b0702967d3b6866a0a40e3be
cf34e1b87bbfd9d9b185dec994924a496e279d8dc9387ad8d35bc0110134c4d3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:48:10 GMT
Accept-Ranges: bytes
Content-Length: 96874
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.5.5
89.41.38.48200 OK 485 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.5.5
IP 89.41.38.48:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 485 kB (484758 bytes)
Hash 1d631ff6e5e0c48d06c17e294924c762
94d01897df7c13fd9d5eef562dca4873488cc9d4
18fd322583b992be8df5cc0713fee5fc2ec1f43004f1d838cfe1a76d49cb8f4a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=5.5.5 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 09:44:30 GMT
Accept-Ranges: bytes
Content-Length: 484758
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
hotelroyale.ro/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22
89.41.38.48200 OK 12 kB URL HTTP/1.1 hotelroyale.ro/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22
IP 89.41.38.48:0
File type ASCII text, with very long lines (9063)
Hash fe0575b66568074463f12485d90f6d4c
aeedd9ab3b7874e63f647042963cb1301a38b391
647a6b36f3fd1f21bae171270111096b4613c23a47e6621628a51bae9c82b0b7
GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.22 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:48:10 GMT
Accept-Ranges: bytes
Content-Length: 11943
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/knockout/knockout-latest.js?ver=3.4.2
89.41.38.48200 OK 60 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/knockout/knockout-latest.js?ver=3.4.2
IP 89.41.38.48:0
File type ASCII text, with very long lines (644)
Hash e956a74c005b7a243f0884d67e60f8f3
c4fda6eee21550785a1c89ce291a2d3072e0ed9b
a305fbb2ba223bf3b56bb8776b85f6f40d60dd082a74dbe28d143b5794c7e393
GET /wp-content/plugins/awebooking/assets/vendor/knockout/knockout-latest.js?ver=3.4.2 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 12:42:38 GMT
Accept-Ranges: bytes
Content-Length: 60354
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8
89.41.38.48200 OK 111 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8
IP 89.41.38.48:0
File type ASCII text, with very long lines (27287), with CRLF line terminators
Size 111 kB (110564 bytes)
Hash 67a9644e880e7a471d49c73bb7621932
2ac89b145da02402ce1877c580850e08076c5109
a1dff8b0c66227748951c4ff891f146f49c5a382ac8e3d6e3c2e9cf8aa560dc8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 07:51:34 GMT
Accept-Ranges: bytes
Content-Length: 110564
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 20:49:04 GMT
age: 2250
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
hotelroyale.ro/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8
89.41.38.48200 OK 65 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8
IP 89.41.38.48:0
File type ASCII text, with very long lines (64614), with CRLF line terminators
Hash e1223af8dbcd0552f6f6dc540431451e
c01d6134f72ae04cb327a86918f3e88a63684e90
27ead7f47a3fb4d1e7cbef0c68e28bde7ea18923cf41d8ca82ba13584eebc710
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 07:51:34 GMT
Accept-Ranges: bytes
Content-Length: 64949
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.4
89.41.38.48200 OK 1.7 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.4
IP 89.41.38.48:0
Hash ec96e53e57b5d34f762d567cdb29a312
33d59800f24b9967590354a7b47b37000dc5a5cc
a559ba07f12aeda335ca811bb96b6f57b555815a835fe5f86ad6e7f166190e6d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.4 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 09:44:23 GMT
Accept-Ranges: bytes
Content-Length: 1743
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/flatpickr/flatpickr.min.js?ver=4.5.1
89.41.38.48200 OK 45 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/flatpickr/flatpickr.min.js?ver=4.5.1
IP 89.41.38.48:0
File type ASCII text, with very long lines (45151)
Hash 84bd8daf729e4bb36c67b4dc29d5df8f
6afca019e677d1c31631fea69d043c494e71e85b
e384de1356f310fe017e92fa59bd3909580b0ca37a3b338023bf5734c3d1e01b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/awebooking/assets/vendor/flatpickr/flatpickr.min.js?ver=4.5.1 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 12:42:38 GMT
Accept-Ranges: bytes
Content-Length: 45189
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/tippy.js/tippy.standalone.min.js?ver=2.5.4
89.41.38.48200 OK 19 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/tippy.js/tippy.standalone.min.js?ver=2.5.4
IP 89.41.38.48:0
File type ASCII text, with very long lines (18655)
Hash 9c9f9f4a32e45fee2fb2e5404e8dda02
49ccca56b646fba2ce3c294910b6b57d9a7b2d44
5731816060cc00f1859be13f28ed936bf2c6817d97329585e82bb54a338846d1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/awebooking/assets/vendor/tippy.js/tippy.standalone.min.js?ver=2.5.4 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 12:42:38 GMT
Accept-Ranges: bytes
Content-Length: 18656
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:26:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/jquery.spinner/jquery.spinner.min.js?ver=0.2.1
89.41.38.48200 OK 3.9 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/jquery.spinner/jquery.spinner.min.js?ver=0.2.1
IP 89.41.38.48:0
File type ASCII text, with very long lines (3804)
Hash d5db447a20a072dbe606d55b2dd8bcfc
7ec0d63517640fea299ce372973f6916a82f39b4
0e082f3eebc0c0b5a3eda22258aafafb79930dd01eeff4ea015b2380c7567a2d
GET /wp-content/plugins/awebooking/assets/vendor/jquery.spinner/jquery.spinner.min.js?ver=0.2.1 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 12:42:38 GMT
Accept-Ranges: bytes
Content-Length: 3947
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/plugins/awebooking/assets/js/awebooking.min.js?ver=3.1.12
89.41.38.48200 OK 18 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/awebooking/assets/js/awebooking.min.js?ver=3.1.12
IP 89.41.38.48:0
File type Unicode text, UTF-8 text, with very long lines (18037), with no line terminators
Hash 6a8e7d609f062a58908149a32f58caae
d25244199e58214e8b1f1b30893c1aec750c0508
7fc04b504bd8c53a7bf8a96438801e4d8d473d8a30067099562d66c2bc49a5b1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/awebooking/assets/js/awebooking.min.js?ver=3.1.12 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 12:42:38 GMT
Accept-Ranges: bytes
Content-Length: 18047
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/plugins/awebooking/assets/js/search-form.min.js?ver=3.1.12
89.41.38.48200 OK 3.2 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/awebooking/assets/js/search-form.min.js?ver=3.1.12
IP 89.41.38.48:0
File type ASCII text, with very long lines (3155), with no line terminators
Hash a9842af758d61c5ac63e1a2805502d52
7e7981def7d3756d1f47636bde0a3c1ec8b195dd
bb935ea009e1ffa46bef3288f4938bfe3826a7ff81c40be1f1eab9deceaaeb3f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/awebooking/assets/js/search-form.min.js?ver=3.1.12 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 12:42:38 GMT
Accept-Ranges: bytes
Content-Length: 3155
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/themes/fleurdesel/src/js/tether.min.js?ver=032017
89.41.38.48200 OK 23 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/js/tether.min.js?ver=032017
IP 89.41.38.48:0
File type ASCII text, with very long lines (23383), with no line terminators
Hash df4c4d96cf342bbc4f37123f25d72fde
614e3f2ccf3b6a811b35566583f19d5000ca1a69
7a208a14587694c3607e6a9421063aec6495232c103d872a1d3e750379d83c28
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/fleurdesel/src/js/tether.min.js?ver=032017 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 23383
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.4
89.41.38.48200 OK 15 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.4
IP 89.41.38.48:0
Hash 4fd769dd0d168d4af82c7db048af866b
d82c97e09e8d4ca64160aff9345e0a448c8c7759
2abe34835f5555333edccab5786c3fb72eb1755110f38d2fdb2c0ae7ed4db6ed
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.4 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 09:44:23 GMT
Accept-Ranges: bytes
Content-Length: 14710
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
89.41.38.48200 OK 3.9 kB URL HTTP/1.1 hotelroyale.ro/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP 89.41.38.48:0
File type ASCII text, with very long lines (3704)
Hash e6784d91bf2c668bc4093063c5b15113
687e1d2e957a821280dbd205ae66182f16dfdc30
194ebae85ff853319e8668f23a4c5bf371a7d9f5d550a40980ab53026ddaaa17
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:48:10 GMT
Accept-Ranges: bytes
Content-Length: 3929
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
89.41.38.48200 OK 36 kB URL HTTP/1.1 hotelroyale.ro/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
IP 89.41.38.48:0
File type ASCII text, with very long lines (35951)
Hash cb1f7699be677def94bc41a5d9da4f82
b1aff76bd04ba59abed8e19a71db339332d9e15d
131c19ca61ef3ab0c3199b1db78997ec2efb8327722cef4df46f09c4892d273d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:48:10 GMT
Accept-Ranges: bytes
Content-Length: 36176
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/themes/fleurdesel/src/js/navigation.js?ver=20151215
89.41.38.48200 OK 3.3 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/js/navigation.js?ver=20151215
IP 89.41.38.48:0
File type ASCII text, with CRLF line terminators
Hash 34ffb5a75b7e4e0b1fe3ca42abbccfa5
9e01b7b24a40cce758a7298d32a8884244d24e28
eb3f6a4cfbc54cf87fa4c53eca29bb044bb71b6bdf581b6d0db39bdfaa011177
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/fleurdesel/src/js/navigation.js?ver=20151215 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 3318
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
demo.info3d.ro/galati/wp-content/uploads/2018/10/fav.png
89.41.38.48200 OK 23 kB URL HTTP/1.1 demo.info3d.ro/galati/wp-content/uploads/2018/10/fav.png
IP 89.41.38.48:0
File type PNG image data, 99 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash cbd6bad517370f79fc435562343f4f69
09f1ad23a9905c6b95455150997195642a582196
ccab3f20cda15c840ea11dc1855b83e57a83bf3db114ded623dae0366b6bd727
GET /galati/wp-content/uploads/2018/10/fav.png HTTP/1.1
Host: demo.info3d.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 22 Oct 2018 11:51:57 GMT
Accept-Ranges: bytes
Content-Length: 23144
Keep-Alive: timeout=5, max=100
Content-Type: image/png
hotelroyale.ro/wp-content/themes/fleurdesel/src/js/skip-link-focus-fix.js?ver=20151215
89.41.38.48200 OK 913 B URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/js/skip-link-focus-fix.js?ver=20151215
IP 89.41.38.48:0
File type ASCII text, with CRLF line terminators
Hash c29b9c67eb69f593acfce7cec1b34f7c
17933de3b676638ed0525f7fd56b0e8e2c5417d5
9d0e1c0dcd908c46d13404d733ba76ff92427f32e66f455cc4c2370d17a2d535
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/fleurdesel/src/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 913
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/themes/fleurdesel/src/js/slick.min.js?ver=1.8.0
89.41.38.48200 OK 42 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/js/slick.min.js?ver=1.8.0
IP 89.41.38.48:0
File type ASCII text, with very long lines (32076), with CRLF line terminators
Hash 94d3404fc64c643c15990b74aa45dc4d
e1e7e0c662c37e39911b0a44146463721e8bd84f
5bd085ae9683aaf57ae67bb6bd1f645359b5a1150b548e79ee0c7be68a2e3a23
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/fleurdesel/src/js/slick.min.js?ver=1.8.0 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 41970
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/themes/fleurdesel/src/js/jquery.magnific-popup.min.js?ver=1.1.0
89.41.38.48200 OK 20 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/js/jquery.magnific-popup.min.js?ver=1.1.0
IP 89.41.38.48:0
File type ASCII text, with very long lines (20087), with CRLF line terminators
Hash b37d7edf99565d3858eaa1ad80df3cff
786a4343711e9af5e5dfcc493e7d2331b48875bb
b0a45cd5aed66e27bd8ee861d0e3b782c8e79849bde32f90f078b9f2451a36f2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/fleurdesel/src/js/jquery.magnific-popup.min.js?ver=1.1.0 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 20219
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/waypoints/jquery.waypoints.min.js?ver=4.0.1
89.41.38.48200 OK 9.0 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/awebooking/assets/vendor/waypoints/jquery.waypoints.min.js?ver=4.0.1
IP 89.41.38.48:0
File type Unicode text, UTF-8 text, with very long lines (8863)
Hash 7d05f92297dede9ecfe3706efb95677a
56bdb149d9baf64474a4c24ae66445769a28254e
368daab67b1a5b2b2802edbbac79a2aa4ba992a2ebf9c67b98ad784d8004018c
GET /wp-content/plugins/awebooking/assets/vendor/waypoints/jquery.waypoints.min.js?ver=4.0.1 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 12:42:38 GMT
Accept-Ranges: bytes
Content-Length: 9028
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
demo.info3d.ro/galati/wp-content/uploads/2018/10/logolungroyale.png
89.41.38.48200 OK 34 kB URL HTTP/1.1 demo.info3d.ro/galati/wp-content/uploads/2018/10/logolungroyale.png
IP 89.41.38.48:0
File type PNG image data, 342 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 6918ec547d97538a0b6d8d847b13531a
f79345d873a5e0c45529e1b18c9dd6d009b02b59
afe417a71a4105ba1cdc670d2c3e5a86bee8301d246642e8ea050ff0941292f5
GET /galati/wp-content/uploads/2018/10/logolungroyale.png HTTP/1.1
Host: demo.info3d.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 25 Oct 2018 08:21:57 GMT
Accept-Ranges: bytes
Content-Length: 34132
Keep-Alive: timeout=5, max=100
Content-Type: image/png
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14664
Expires: Mon, 30 Jan 2023 01:30:59 GMT
Date: Sun, 29 Jan 2023 21:26:35 GMT
Connection: keep-alive
demo.info3d.ro/galati/wp-content/uploads/2018/10/logohotelroyale.png
89.41.38.48200 OK 18 kB URL HTTP/1.1 demo.info3d.ro/galati/wp-content/uploads/2018/10/logohotelroyale.png
IP 89.41.38.48:0
File type PNG image data, 250 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 576b687541b994331311d96b0815a872
adcfbf3b79ffad329d81fae7cd5a6ed9789c7ae3
5b3532dda67fdc7c1a6d21131e86b8fb6a9002a89703c5aa0330f5dbaf07fdc0
GET /galati/wp-content/uploads/2018/10/logohotelroyale.png HTTP/1.1
Host: demo.info3d.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 22 Oct 2018 11:49:15 GMT
Accept-Ranges: bytes
Content-Length: 17778
Keep-Alive: timeout=5, max=100
Content-Type: image/png
hotelroyale.ro/wp-content/themes/fleurdesel/src/js/jquery.counterup.min.js?ver=1.0.0
89.41.38.48200 OK 2.2 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/js/jquery.counterup.min.js?ver=1.0.0
IP 89.41.38.48:0
File type ASCII text, with very long lines (2181), with CRLF line terminators
Hash 1c232d83bb9d944295b4a0b014cdfc33
57ba39e3b803f4d6498e5caa67d92b6690afa9fc
7772a4b61605d37556784814cb18711cfa00cf8f99a57c8c93246d13b89f6f89
GET /wp-content/themes/fleurdesel/src/js/jquery.counterup.min.js?ver=1.0.0 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 2183
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-includes/js/imagesloaded.min.js?ver=3.2.0
89.41.38.48200 OK 7.9 kB URL HTTP/1.1 hotelroyale.ro/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP 89.41.38.48:0
File type ASCII text, with very long lines (7855), with no line terminators
Hash f5c25c9c6d60162ba8865649b89e56fc
520fa90c637f9e93f16ec3674136c61a0c1e3d60
337c515e1a749dfe4d3fc568c830b631f7ed4de0a1ee9ba28ed5c8c430ec1f9a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:48:10 GMT
Accept-Ranges: bytes
Content-Length: 7855
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:26:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hotelroyale.ro/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=5.5.5
89.41.38.48200 OK 36 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=5.5.5
IP 89.41.38.48:0
File type ASCII text, with very long lines (32004)
Hash 035a94b2b3f2103ab665f2885f953836
3cb37f0004158f3e8f9194ebdb1d361dce6f0ed0
2ac1dec2ea676653dc33c1dc718636434357b352fd07d6bf9750c69250191abc
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=5.5.5 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 09:44:30 GMT
Accept-Ranges: bytes
Content-Length: 35503
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-includes/js/masonry.min.js?ver=3.3.2
89.41.38.48200 OK 29 kB URL HTTP/1.1 hotelroyale.ro/wp-includes/js/masonry.min.js?ver=3.3.2
IP 89.41.38.48:0
File type ASCII text, with very long lines (28817)
Hash 5420b6516c14245b504e7240a8310f2c
bf6d46e754eca13c3074f002abb124e55ef4c3aa
3ca3e467b7d4d6b403aa4619019d9250b11449c8ee9c91c90bcbc9acdd64fea2
GET /wp-includes/js/masonry.min.js?ver=3.3.2 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Tue, 28 Jun 2016 18:48:31 GMT
Accept-Ranges: bytes
Content-Length: 28954
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hotelroyale.ro
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 20:52:23 GMT
expires: Mon, 29 Jan 2024 20:52:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 2052
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hotelroyale.ro/wp-content/themes/fleurdesel/src/js/packery.pkgd.min.js?ver=2.0.0
89.41.38.48200 OK 14 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/js/packery.pkgd.min.js?ver=2.0.0
IP 89.41.38.48:0
File type ASCII text, with very long lines (13547), with CRLF line terminators
Hash 576115e48f03ad9c8369979bc65d0ddb
0362a204387d78d719ef6273fa9f877e96d97e1f
cb6090fd811f5ec56c5f5d9e062f6fa8c0fca26805377e7e511e83d94f561468
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/fleurdesel/src/js/packery.pkgd.min.js?ver=2.0.0 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 13625
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/themes/fleurdesel/src/js/jff-vendor.min.js?ver=1.0.0
89.41.38.48200 OK 16 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/js/jff-vendor.min.js?ver=1.0.0
IP 89.41.38.48:0
File type ASCII text, with very long lines (12478), with CRLF line terminators
Hash e6014cec90ec72c7b240283eb3416234
d81819f5a7c71213bf95ee852c309179eeb56f09
bc0fd6bae02f5f1ded9f39912fbe350c9b347ae9631c96ca094bf7607d358522
GET /wp-content/themes/fleurdesel/src/js/jff-vendor.min.js?ver=1.0.0 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 15991
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/themes/fleurdesel/src/js/jff-utils.js?ver=1.0.0
89.41.38.48200 OK 12 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/js/jff-utils.js?ver=1.0.0
IP 89.41.38.48:0
File type ASCII text, with very long lines (1472), with CRLF line terminators
Hash 9814b91253c01742693ca405ea7851be
aa14bbeeb6888ba4876830bec4c946605634b813
157ca8f0229fc771b458515c76474f9b48485fcc8fdec437cd7a06a3844e0325
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/fleurdesel/src/js/jff-utils.js?ver=1.0.0 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 11602
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/themes/fleurdesel/src/js/select2.full.min.js?ver=4.0.3
89.41.38.48200 OK 75 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/js/select2.full.min.js?ver=4.0.3
IP 89.41.38.48:0
File type Unicode text, UTF-8 text, with very long lines (32091), with CRLF line terminators
Hash 0a3a08dc01bbd8d727372c0a0f2b70d7
cfe6c3a94e058178d187751846c3af1092f12336
9b8c0a1953e5ea4dfddeb1dbd04bf03da2bf66b0542fba29bb642ecc2b9768d1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/fleurdesel/src/js/select2.full.min.js?ver=4.0.3 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 75007
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/themes/fleurdesel/src/js/main.js?ver=2.0.0
89.41.38.48200 OK 14 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/js/main.js?ver=2.0.0
IP 89.41.38.48:0
Hash 1924268293410a67308e34d4b24d0784
bcdb2a1f72bcbc68c8b2aa59da30068dac32bac8
fcbd91ed72acdcb173b344caabc80eefdfd67bddc195178361259d896bbbf5c9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/fleurdesel/src/js/main.js?ver=2.0.0 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 13739
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:26:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hotelroyale.ro/wp-content/themes/fleurdesel/src/js/awebooking-custom-datepicker.js?ver=2.0.0
89.41.38.48200 OK 2.3 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/js/awebooking-custom-datepicker.js?ver=2.0.0
IP 89.41.38.48:0
Hash ccb890583ec0090b0762a69b8620488e
ce7a2087c2f555de2ee563aec48c1bdb141dac0e
a3e57f1bddc0d53b59c0735ddbd7eb25bdb0bcd0cd2d56b55279df0beacf9896
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/fleurdesel/src/js/awebooking-custom-datepicker.js?ver=2.0.0 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 2253
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.5.5
89.41.38.48200 OK 20 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.5.5
IP 89.41.38.48:0
File type ASCII text, with very long lines (19706), with no line terminators
Hash 9d22f9409c43e4abec30c88531a5c5df
277c5fa5e6412254b72c12d4cdbc8a8063c2f854
2c0bcb73a9ca9483f3d74255ce1a77f5fbc491f09a5516929e55b4c38c2e9ecd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.5.5 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 09:44:30 GMT
Accept-Ranges: bytes
Content-Length: 19706
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-includes/js/wp-embed.min.js?ver=4.9.22
89.41.38.48200 OK 1.4 kB URL HTTP/1.1 hotelroyale.ro/wp-includes/js/wp-embed.min.js?ver=4.9.22
IP 89.41.38.48:0
File type ASCII text, with very long lines (1391), with no line terminators
Hash 570ae0f3c201604926ea599d3d1f6c04
2c29243a73660964d4712b969d2a15e27777bc14
5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=4.9.22 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 10:48:10 GMT
Accept-Ranges: bytes
Content-Length: 1391
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
www.info3d.ro/images/promo/info3d-animated-logo.gif
89.41.38.48200 OK 137 kB URL HTTP/1.1 www.info3d.ro/images/promo/info3d-animated-logo.gif
IP 89.41.38.48:0
File type GIF image data, version 89a, 200 x 50\012- data
Size 137 kB (136734 bytes)
Hash 3a2bbc477f4bcd338528af2252e5ce84
e6a078a4f87856e328fb5c833f3a776ab79501f8
cf6af5e021233d0927924e759f23a7505b1e3e7e308999b5c80caa8afaeac9fa
GET /images/promo/info3d-animated-logo.gif HTTP/1.1
Host: www.info3d.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 25 Jan 2016 09:54:15 GMT
Accept-Ranges: bytes
Content-Length: 136734
Keep-Alive: timeout=5, max=100
Content-Type: image/gif
hotelroyale.ro/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
89.41.38.48200 OK 77 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 89.41.38.48:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://hotelroyale.ro/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.5.5
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 09:44:30 GMT
Accept-Ranges: bytes
Content-Length: 77160
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff2
hotelroyale.ro/wp-content/uploads/2018/10/slidephoto1.jpg
89.41.38.48200 OK 56 kB URL HTTP/1.1 hotelroyale.ro/wp-content/uploads/2018/10/slidephoto1.jpg
IP 89.41.38.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 967x330, components 3\012- data
Hash 72c150ee3cb4f8e6a931d157e2fe177f
f63aa9db69f04157fdfcfd75e46d8233a7da6d68
66e93751bb7cf433c73d15a86839e485efaf326ef1ef6e03a2548fb42bbd6abc
GET /wp-content/uploads/2018/10/slidephoto1.jpg HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Thu, 25 Oct 2018 08:09:02 GMT
Accept-Ranges: bytes
Content-Length: 56340
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hotelroyale.ro
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15920
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 26 Jan 2023 02:42:22 GMT
Expires: Fri, 26 Jan 2024 02:42:22 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 11 May 2022 19:24:45 GMT
Content-Type: font/woff2
Age: 326653
fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2
142.250.74.35200 OK 20 kB URL HTTP/1.1 fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 19860, version 1.0\012- data
Hash a95e391373ad634c3b7dbaf77de3f40e
ddc4638bc28c21a400fcd2df94448743f198a257
fa3d5a0422c9b413abb4c78f8ff80de8a8ed58766f7110c82febf5296e899b47
GET /s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hotelroyale.ro
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 19860
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 03:17:02 GMT
Expires: Sat, 27 Jan 2024 03:17:02 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 18 Jul 2022 19:06:33 GMT
Content-Type: font/woff2
Age: 238173
hotelroyale.ro/wp-content/uploads/2018/10/fav.png
89.41.38.48200 OK 23 kB URL HTTP/1.1 hotelroyale.ro/wp-content/uploads/2018/10/fav.png
IP 89.41.38.48:0
File type PNG image data, 99 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash cbd6bad517370f79fc435562343f4f69
09f1ad23a9905c6b95455150997195642a582196
ccab3f20cda15c840ea11dc1855b83e57a83bf3db114ded623dae0366b6bd727
GET /wp-content/uploads/2018/10/fav.png HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:51:57 GMT
Accept-Ranges: bytes
Content-Length: 23144
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
hotelroyale.ro/wp-content/uploads/2017/06/hotelroyale-camera8-3.jpg
89.41.38.48200 OK 147 kB URL HTTP/1.1 hotelroyale.ro/wp-content/uploads/2017/06/hotelroyale-camera8-3.jpg
IP 89.41.38.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x428, components 3\012- data
Size 147 kB (147025 bytes)
Hash c098b48c13b7314f6fb3de8734119e1d
71b0a959b1cc6ee6cf8b119e1c77aac13fe83568
3f3ad9508e2b7dfe3763f604289bd3964f3baac58e99a20d7acfac3b485a5c8d
GET /wp-content/uploads/2017/06/hotelroyale-camera8-3.jpg HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 14:18:24 GMT
Accept-Ranges: bytes
Content-Length: 147025
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hotelroyale.ro
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 13:09:06 GMT
expires: Wed, 24 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 461849
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b67335a8e235eacf68e4b7f98cc5dc40
887a9b34cf2ba9371bbe8c93e362c174668cf812
1ad2f6328af6d819acd85f4e4646afcafd945e17e555d5eeb54244db83cd48fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:26:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
142.250.74.35200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Hash 60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8
GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hotelroyale.ro
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 18:29:09 GMT
expires: Mon, 29 Jan 2024 18:29:09 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
age: 10646
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hotelroyale.ro/wp-content/uploads/2017/06/hotelroyale-camera2-3.jpg
89.41.38.48200 OK 169 kB URL HTTP/1.1 hotelroyale.ro/wp-content/uploads/2017/06/hotelroyale-camera2-3.jpg
IP 89.41.38.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x428, components 3\012- data
Size 169 kB (168846 bytes)
Hash 3dc9b79942fa3c9210860c24d0791b37
097140f8b22b07c906c5b47cbeab9706d4bc0078
d631a8ca1fb5f41d749a9fed32a02afd74bcf38659ccf2ee828df8adb1b99877
GET /wp-content/uploads/2017/06/hotelroyale-camera2-3.jpg HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 13:49:22 GMT
Accept-Ranges: bytes
Content-Length: 168846
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
hotelroyale.ro/wp-content/uploads/2018/10/hotelroyale-camera6-1.jpg
89.41.38.48200 OK 173 kB URL HTTP/1.1 hotelroyale.ro/wp-content/uploads/2018/10/hotelroyale-camera6-1.jpg
IP 89.41.38.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x428, components 3\012- data
Size 173 kB (173035 bytes)
Hash 14378b1b4693c90586c8aa798a62556c
e063510433c00283683bf1560e9a4a90881a2b98
429d86270c021815d789d6b0de81b9018b3b1d6a0cddd4b1db60b89439c90944
GET /wp-content/uploads/2018/10/hotelroyale-camera6-1.jpg HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Tue, 23 Oct 2018 08:03:10 GMT
Accept-Ranges: bytes
Content-Length: 173035
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
hotelroyale.ro/wp-content/uploads/2018/10/hotelroyale-camera6-2.jpg
89.41.38.48200 OK 176 kB URL HTTP/1.1 hotelroyale.ro/wp-content/uploads/2018/10/hotelroyale-camera6-2.jpg
IP 89.41.38.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x428, components 3\012- data
Size 176 kB (176013 bytes)
Hash 226f082e0d87a11a165c6d6c14ff8378
9b30f4fb3f60a310c2195d943ad4b71b0267803c
a2cb79373a3825609fa65228bc49301ee83eb71d436dcf908d82a9b3354ac0a1
GET /wp-content/uploads/2018/10/hotelroyale-camera6-2.jpg HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Wed, 24 Oct 2018 13:27:14 GMT
Accept-Ranges: bytes
Content-Length: 176013
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
hotelroyale.ro/wp-content/uploads/2017/06/hotelroyale-camera6-4.jpg
89.41.38.48200 OK 212 kB URL HTTP/1.1 hotelroyale.ro/wp-content/uploads/2017/06/hotelroyale-camera6-4.jpg
IP 89.41.38.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x428, components 3\012- data
Size 212 kB (212424 bytes)
Hash edfce8875424f097168035710a86f524
1deebfe73c77fe48052d98f9da0971a1a0352312
e809061ad95573fd0b4ad998a2dad068b7dc867f0b804093edcb9aa469a23826
GET /wp-content/uploads/2017/06/hotelroyale-camera6-4.jpg HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 14:11:05 GMT
Accept-Ranges: bytes
Content-Length: 212424
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
demo.info3d.ro/galati/wp-content/uploads/2018/10/footer-bg.jpg
89.41.38.48200 OK 64 kB URL HTTP/1.1 demo.info3d.ro/galati/wp-content/uploads/2018/10/footer-bg.jpg
IP 89.41.38.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x436, components 3\012- data
Hash 15d978f39913427bf09facb552d7941f
1e9e24e2ecb30dae9af7367710f026da428d47ba
41262d2ff9df817ad0552cf4384666e092d030ad32d075d4e8a310ac3c604106
GET /galati/wp-content/uploads/2018/10/footer-bg.jpg HTTP/1.1
Host: demo.info3d.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:56:52 GMT
Accept-Ranges: bytes
Content-Length: 64523
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
push.services.mozilla.com/
54.70.68.230101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.70.68.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TGEHtJjyzKgPpL7Ffg/aPQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: va4l2RyNlHAhvgeOlo7C2trzW/Q=
hotelroyale.ro/wp-content/themes/fleurdesel/src/fonts/Fleurdesel-Hotel.ttf?b8b1c2
89.41.38.48200 OK 173 kB URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/src/fonts/Fleurdesel-Hotel.ttf?b8b1c2
IP 89.41.38.48:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Fleurdesel-Hotel\012- data
Size 173 kB (173096 bytes)
Hash 68733a163fa1eb09df9437166104b008
0523e2f584ec61834be43dbf7edaa3eae9b34935
776e981dad7a4bbd0f426bbd6cd2c6198c6ab27997f0caacf265982ea6149c95
GET /wp-content/themes/fleurdesel/src/fonts/Fleurdesel-Hotel.ttf?b8b1c2 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/wp-content/themes/fleurdesel/dist/css/font-fleurdeselhotel.css?ver=4.9.22
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Mon, 22 Oct 2018 11:42:23 GMT
Accept-Ranges: bytes
Content-Length: 173096
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: font/ttf
hotelroyale.ro/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8
89.41.38.48200 OK 29 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8
IP 89.41.38.48:0
File type ASCII text, with very long lines (28818), with CRLF line terminators
Hash 10f428f59d120bf8adbc39b86d547a2f
fe92af104d1ca10761ec932fdd2da77f759286d4
e0a244f4ace8e695c3aa03697b9dd349f5f1abbae8974d87e879274808305595
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 07:51:34 GMT
Accept-Ranges: bytes
Content-Length: 29070
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8
89.41.38.48200 OK 26 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8
IP 89.41.38.48:0
File type ASCII text, with very long lines (25862), with CRLF line terminators
Hash 05ec8fa18732b68a634f95e7c2bebd2e
2204916097137e7afe60b7d8a612e04f86496cbc
38da5f0c3fd471c5a28d03d7155aba416ae2562ba4a73a2ca3920b19e4b47a63
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.8 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 07:51:34 GMT
Accept-Ranges: bytes
Content-Length: 26103
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3960.335031563179!2d28.032124000694985!3d45.42184559981452!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x40b6dee147bca68d%3A0x3b3b1991622a2498!2sHotel+Royale+Galati!5e0!3m2!1sen!2sro!4v1540282170793
216.58.207.228200 OK 1.2 kB URL HTTP/2 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3960.335031563179!2d28.032124000694985!3d45.42184559981452!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x40b6dee147bca68d%3A0x3b3b1991622a2498!2sHotel+Royale+Galati!5e0!3m2!1sen!2sro!4v1540282170793
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2199)
Hash 40e901637f00e2c592be718ac5b363ec
6da2a95107d31096ed3000b7b0a2319844c50175
e1f1bbf6f69dcc7ef5e0b7d5f163a4ec7139f83d3f9c0f80b36f8dc85f611d66
GET /maps/embed?pb=!1m18!1m12!1m3!1d3960.335031563179!2d28.032124000694985!3d45.42184559981452!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x40b6dee147bca68d%3A0x3b3b1991622a2498!2sHotel+Royale+Galati!5e0!3m2!1sen!2sro!4v1540282170793 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hotelroyale.ro/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sun, 29 Jan 2023 21:26:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-kjSeNZ3z_kpGSgKGCIxInw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1227
x-xss-protection: 0
server-timing: gfet4t7; dur=175
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hotelroyale.ro/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8
89.41.38.48200 OK 56 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8
IP 89.41.38.48:0
File type ASCII text, with very long lines (55556), with CRLF line terminators
Hash a78982b40bf915f977f2bcb73e907934
540b38654ca018e915d4de20f586f7999d5119f2
f46438dc69e006684fd2254a035cd58fa8fc9277206bdf0f8c9a278bbfbc8756
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 07:51:34 GMT
Accept-Ranges: bytes
Content-Length: 55809
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
hotelroyale.ro/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.8
89.41.38.48200 OK 11 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.8
IP 89.41.38.48:0
File type ASCII text, with very long lines (10692), with CRLF line terminators
Hash 5af695fc2f9242677472d46c921b407e
7ee73735c7b0e0c8b4ebaccac77ab3268a3ef00a
dd831ed9e0bf5acd44bcdaa92f5d357f65ba9fb8b839e60a9d0af23dfd0b68f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.8 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 07:51:34 GMT
Accept-Ranges: bytes
Content-Length: 10931
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:26:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hotelroyale.ro/favicon.ico
89.41.38.48200 OK 0 B URL HTTP/1.1 hotelroyale.ro/favicon.ico
IP 89.41.38.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
maps.gstatic.com/maps-api-v3/embed/js/51/7/init_embed.js
216.58.207.227200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/7/init_embed.js
IP 216.58.207.227:0
File type ASCII text, with very long lines (2599)
Hash fd4867728783671f13b38d1f073e7be9
ff5ba304ce5b2838e4b49b6cff833dede37e1098
52a398663110b5dc50e72094c287b049ec5ed33a2b639418e4e1a9c3d313b82c
GET /maps-api-v3/embed/js/51/7/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69373
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 03:51:36 GMT
expires: Sun, 28 Jan 2024 03:51:36 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 21:48:16 GMT
content-type: text/javascript
age: 149699
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hotelroyale.ro/wp-content/plugins/revslider/public/assets/assets/loader.gif
89.41.38.48200 OK 2.5 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 89.41.38.48:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 07:50:58 GMT
Accept-Ranges: bytes
Content-Length: 2545
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/gif
hotelroyale.ro/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
89.41.38.48200 OK 7.5 kB URL HTTP/1.1 hotelroyale.ro/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 89.41.38.48:0
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://hotelroyale.ro/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:34 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 07:51:34 GMT
Accept-Ranges: bytes
Content-Length: 7536
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: font/woff
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10824
Expires: Mon, 30 Jan 2023 00:27:00 GMT
Date: Sun, 29 Jan 2023 21:26:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10824
Expires: Mon, 30 Jan 2023 00:27:00 GMT
Date: Sun, 29 Jan 2023 21:26:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10824
Expires: Mon, 30 Jan 2023 00:27:00 GMT
Date: Sun, 29 Jan 2023 21:26:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4jPbm4WufkUKm7ljLvpHrJUFhr-JQ_nl3iYfI5S8nTqEszFdUtz9EQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 05:24:09 GMT
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
age: 57747
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 5a5a883e-d7d4-4fc5-925a-3a95830c504e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVguyG7BIAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d214c4-390b59a32060e41203533c58;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 05:51:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ewSsCY4u9DwRtaj00U9JCim9tYeCgHRuIQFpdHm4ttI6L02-e44iDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:11:24 GMT
age: 80112
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 17:35:56 GMT
age: 13840
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6af6f32397882f56d14d22348e44a9f1
5a626376807e7507fa3a204c4e4e9e44aa074a37
478f32e98c0a1f0d62fa337795ca88b7927e14b684b681f7629b648bc2d709a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7417
x-amzn-requestid: 8dca6752-c548-4526-ae81-4626843ade3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYbDjGREoAMFxiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d33ee3-1c097c131b91c34b4e7df1be;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i8JJruxoRfordb6WFNf67-GLWrA_Q930x3GCCQoUmDwXrfZtBXvsZg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 03:34:32 GMT
age: 64324
etag: "5a626376807e7507fa3a204c4e4e9e44aa074a37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10a6491e2c1dfde68c7cd7297e70700f
d0f195319825a6d3e5e50ad15b2fcab27cb65896
4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:12:28 GMT
age: 80048
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c77437e3a7361861aed8bfecbfe6bd6
fefd238c13c0fdfb7d964c90fcc8a8cbbf953034
282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: d56c9b84-dc1f-4d5c-91bf-7db55058bf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLyeEGOloAMFpzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce3126-5013a6b971d6800c5c85a4eb;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:03:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D2ZAelkDgsd0wjoOSoPRwTzhozs84_aIcgwU-QmbDrTnHztVD0VL_A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 05:26:16 GMT
age: 57620
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Playfair+Display%3A400%2C700%7CRoboto%3A400%2C500%2C700&subset=latin%2Clatin-ext
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Playfair+Display%3A400%2C700%7CRoboto%3A400%2C500%2C700&subset=latin%2Clatin-ext
IP 142.250.74.106:0
GET /css?family=Playfair+Display%3A400%2C700%7CRoboto%3A400%2C500%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hotelroyale.ro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 21:26:34 GMT
date: Sun, 29 Jan 2023 21:26:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hotelroyale.ro/wp-content/themes/fleurdesel/dist/css/main.css?ver=2.0.0
89.41.38.48200 OK 0 B URL HTTP/1.1 hotelroyale.ro/wp-content/themes/fleurdesel/dist/css/main.css?ver=2.0.0
IP 89.41.38.48:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/fleurdesel/dist/css/main.css?ver=2.0.0 HTTP/1.1
Host: hotelroyale.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hotelroyale.ro/
Cookie: awebooking_session=u3XxpvmutZJMNRSeMERBaAjUsRNQen8ipjTbbOMf
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 21:26:33 GMT
Server: Apache
Last-Modified: Thu, 25 Oct 2018 09:54:36 GMT
Accept-Ranges: bytes
Content-Length: 395731
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css