Report - rguga.ro/

Report Overview

Submitted URL
rguga.ro/
IP
81.181.253.254
ASN
#0
Submitted
2022-12-02 09:01:53
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
28

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
rguga.ro	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	929 B	81.181.253.254
www.rguga.ro	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	12 kB	1.9 MB	81.181.253.254
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	322 B	1.3 kB	142.250.74.106
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.70.68.230
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	428 B	32 kB	142.250.74.35
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	64 kB	34.120.237.76
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-02	medium	rguga.ro/	Phishing
2022-12-02	medium	www.rguga.ro/	Phishing
2022-12-02	medium	www.rguga.ro/assets/plugins/bootstrap/js/bootstrap.min.js	Phishing
2022-12-02	medium	www.rguga.ro/assets/plugins/back-to-top.js	Phishing
2022-12-02	medium	www.rguga.ro/assets/plugins/bootstrap-hover-dropdown.min.js	Phishing
2022-12-02	medium	www.rguga.ro/assets/plugins/jquery-placeholder/jquery.placeholder.js	Phishing
2022-12-02	medium	www.rguga.ro/assets/plugins/jquery-1.12.3.min.js	Phishing
2022-12-02	medium	www.rguga.ro/assets/plugins/pretty-photo/js/jquery.prettyPhoto.js	Phishing
2022-12-02	medium	www.rguga.ro/assets/plugins/flexslider/jquery.flexslider-min.js	Phishing
2022-12-02	medium	www.rguga.ro/assets/js/main.js	Phishing
2022-12-02	medium	www.rguga.ro/assets/plugins/jflickrfeed/jflickrfeed.min.js	Phishing
2022-12-02	medium	www.rguga.ro/pictures/small/stiri0.71860800%201654579014.jfif	Phishing
2022-12-02	medium	www.rguga.ro/assets/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3	Phishing
2022-12-02	medium	www.rguga.ro/assets/plugins/pretty-photo/js/jquery.prettyPhoto.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	www.rguga.ro/assets/plugins/bootstrap-hover-dropdown.min.js	1.5 kB	2023-03-08	2024-03-18
Pretty URL www.rguga.ro/assets/plugins/bootstrap-hover-dropdown.min.js IP 81.181.253.254 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:41:26 Last Seen2024-03-18 14:13:25 Times Seen600 Hash 3960bfa224954e671f0800f3747fa843 fa9d2bf2f783773f9d8024f2b3b3da97e20179ea da84cf4713049dedeeba546c46309ad6ed81c63b89f93dddc9b29d03a62cba11 Loading...

	www.rguga.ro/assets/plugins/back-to-top.js	3.8 kB	2023-03-08	2024-02-20
Pretty URL www.rguga.ro/assets/plugins/back-to-top.js IP 81.181.253.254 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:37:19 Last Seen2024-02-20 22:44:01 Times Seen28 Hash 61e6b758b35f8dd84b510e2ecbfbe26f d55b707e9f485f2759f3a85a4172bc53f8b1cc6b 660c2307ca84524b8a046718de4a063014e0da0f86f4a2ce313f6703808a3f98 Loading...

	www.rguga.ro/assets/plugins/jflickrfeed/jflickrfeed.min.js	1.7 kB	2023-03-07	2024-03-13
Pretty URL www.rguga.ro/assets/plugins/jflickrfeed/jflickrfeed.min.js IP 81.181.253.254 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:13 Last Seen2024-03-13 14:57:19 Times Seen171 Hash edddf66884fe1a84ed2bfadf5de6b61c cd8b2cdc1137045fd67fdd1cf3cad81e2752b717 7331e568d44900f570f233a6cc0022a6a8f272f6fdabcae6ddc2092fe1c00c1a Loading...

	www.rguga.ro/assets/js/main.js	2.7 kB	2023-03-08	2023-11-05
Pretty URL www.rguga.ro/assets/js/main.js IP 81.181.253.254 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:34:49 Last Seen2023-11-05 07:45:19 Times Seen11 Hash 4ed21eeb98e4fee24d6733477bb3afb3 30bcc155a902a753d9cd89a962adf65c8088c1ad 37e56155eba5c6695978bd0c0d95c23914b1c3ce18e73879408cb0c0892947e5 Loading...

	www.rguga.ro/assets/plugins/bootstrap/js/bootstrap.min.js	37 kB	2023-03-07	2024-04-24
Pretty URL www.rguga.ro/assets/plugins/bootstrap/js/bootstrap.min.js IP 81.181.253.254 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-24 11:39:30 Times Seen54524 Hash 5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef Loading...

	www.rguga.ro/assets/plugins/jquery-placeholder/jquery.placeholder.js	5.1 kB	2023-03-07	2024-02-24
Pretty URL www.rguga.ro/assets/plugins/jquery-placeholder/jquery.placeholder.js IP 81.181.253.254 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:11 Last Seen2024-02-24 17:31:22 Times Seen77 Hash 28aa04521a7a3e0c66454ca6aa60f13c f18e3ab96ef9c699b65a2e19da2d5c5efc579362 f37e63c3419f32424ee638fb6e5db3da2d23e23d89ce211faff76cc2284040e0 Loading...

	unknown	0 B	2023-03-07	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 13:26:47 Times Seen37039125 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.rguga.ro/assets/plugins/flexslider/jquery.flexslider-min.js	17 kB	2023-03-07	2024-04-21
Pretty URL www.rguga.ro/assets/plugins/flexslider/jquery.flexslider-min.js IP 81.181.253.254 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:45 Last Seen2024-04-21 18:09:09 Times Seen507 Hash 8ed7ad7336853e8a1fca3dcae0ad8e5a ce1d5cc64806d697dfd69faad926a606495683db d274203a9480a7beceb8405e21775a4b077706794968219b78bce8f4f4a69517 Loading...

HTTP Transactions (57)

URL IP Response Size

rguga.ro/

81.181.253.254

301 Moved Permanently

707 B

URL HTTP/1.1
rguga.ro/
IP
81.181.253.254:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 02 Dec 2022 09:01:41 GMT
server: LiteSpeed
location: http://www.rguga.ro/

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17416
Expires: Fri, 02 Dec 2022 13:51:58 GMT
Date: Fri, 02 Dec 2022 09:01:42 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4779
Cache-Control: max-age=96549
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:01:42 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 11:50:51 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3193
Expires: Fri, 02 Dec 2022 09:54:55 GMT
Date: Fri, 02 Dec 2022 09:01:42 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 08:19:54 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2508
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: +vfdhDeiwrdz9OsSjtejUoWQZM4Or2bxUhT8iV/vpXUOeVPdUgdXH8wAQ7YZX1fgrOGRRZUVA8H2jMyYSwtDGA==
x-amz-request-id: G9TPNSYFXFVRH5J8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 08:46:38 GMT
age: 904
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 09:01:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 08:08:57 GMT
cache-control: public,max-age=3600
age: 3165
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4777
Cache-Control: max-age=91484
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:01:42 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:26:26 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

www.rguga.ro/

81.181.253.254

200 OK

7.1 kB

URL HTTP/1.1
www.rguga.ro/
IP
81.181.253.254:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1327), with CRLF, LF line terminators
Size
7.1 kB (7097 bytes)
Hash
a25a8d1e6e9a9609bae71d19de948f8e
eab56280bf2cd230e87b737a70b69b2582b76f30
254eb91a993cb3cc65687de660247bf2699a7bde74756bb965ac670ba3d8e2ac

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.3.29
set-cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html
content-length: 7097
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 02 Dec 2022 09:01:42 GMT
server: LiteSpeed

fonts.googleapis.com/css?family=Open+Sans:300,400,600,700

142.250.74.106

200 OK

726 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
726 B (726 bytes)
Hash
f695a50aad9a7f635d32fb725051cdf9
0528fac2131b6367b6ffde48dd421a0ea945c504
8deb5e5efaca71e5ef829c4fa214913332aba71be8d68fa2c291789f92c9ea18

HTTP Headers

GET /css?family=Open+Sans:300,400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 02 Dec 2022 09:01:43 GMT
Date: Fri, 02 Dec 2022 09:01:43 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

push.services.mozilla.com/

54.70.68.230

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.70.68.230:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MikHRki8VYauGTE/tjvQxA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mk6gSLU5pSX9gFXAXPFXaAR9BVk=

www.rguga.ro/assets/plugins/bootstrap/css/bootstrap.min.css

81.181.253.254

200 OK

20 kB

URL HTTP/1.1
www.rguga.ro/assets/plugins/bootstrap/css/bootstrap.min.css
IP
81.181.253.254:0
ASN
#0

File type
ASCII text, with very long lines (65371)
Size
20 kB (19714 bytes)
Hash
572faaf4a4e3d7cdb0812939c3dcd68b
251156396b9886492b1a57d47fb2ae26652ab79e
65cfe7aa5c2a749e4a0c6d8a6dbc950a78f6cf73ff55a980c608e63c5bd726fe

HTTP Headers

GET /assets/plugins/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: text/css
last-modified: Tue, 07 Feb 2017 12:43:26 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 19714
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/plugins/flexslider/flexslider.css

81.181.253.254

200 OK

1.4 kB

URL HTTP/1.1
www.rguga.ro/assets/plugins/flexslider/flexslider.css
IP
81.181.253.254:0
ASN
#0

File type
ASCII text, with very long lines (366)
Size
1.4 kB (1380 bytes)
Hash
3b4e9f695009885a13f824f45edc22c4
4cf2d1fd4bd49ec40c698d3d369b6842cf88ad93
97268f806833ad8864589627c088013d9dfcb0d09126c3f4397f253ea9a257cd

HTTP Headers

GET /assets/plugins/flexslider/flexslider.css HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: text/css
last-modified: Tue, 07 Feb 2017 12:43:41 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1380
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/plugins/font-awesome/css/font-awesome.css

81.181.253.254

200 OK

7.0 kB

URL HTTP/1.1
www.rguga.ro/assets/plugins/font-awesome/css/font-awesome.css
IP
81.181.253.254:0
ASN
#0

File type
troff or preprocessor input, ASCII text, with very long lines (372)
Size
7.0 kB (6980 bytes)
Hash
7bfb935528edd387fda0e073eb4e6df7
352d61d10b8269d6ee82b0038961869ba665ad80
a8d9ce30db7eb80438b5a8096fbc5ce1aef1138f0d9deacab6638782449711f2

HTTP Headers

GET /assets/plugins/font-awesome/css/font-awesome.css HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: text/css
last-modified: Tue, 07 Feb 2017 12:43:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6980
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/plugins/pretty-photo/css/prettyPhoto.css

81.181.253.254

404 Not Found

1.2 kB

URL HTTP/1.1
www.rguga.ro/assets/plugins/pretty-photo/css/prettyPhoto.css
IP
81.181.253.254:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

HTTP Headers

GET /assets/plugins/pretty-photo/css/prettyPhoto.css HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/css/styles.css

81.181.253.254

200 OK

6.7 kB

URL HTTP/1.1
www.rguga.ro/assets/css/styles.css
IP
81.181.253.254:0
ASN
#0

File type
assembler source, ASCII text
Size
6.7 kB (6737 bytes)
Hash
0bce2139a452dfefddbc5e5e84be7128
487d576c5dfb25bc68d2dcae35747637efe42071
ebc48997b690cd3e36c9de7c88d51b6165b10d0df70a0e7aa007cabbe7f1dd13

HTTP Headers

GET /assets/css/styles.css HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: text/css
last-modified: Fri, 03 Mar 2017 07:19:22 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6737
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/plugins/bootstrap/js/bootstrap.min.js

81.181.253.254

200 OK

9.9 kB

URL HTTP/1.1
www.rguga.ro/assets/plugins/bootstrap/js/bootstrap.min.js
IP
81.181.253.254:0
ASN
#0

File type
ASCII text, with very long lines (32033)
Size
9.9 kB (9860 bytes)
Hash
e66d1cadef9709b7e1177fa2bad57689
803a0026f5687b488fd80e99268a8ec6aebbd487
7ee290583814a684905461e9338a94be5b0ef39de9cf4cddd995e5d3b3805fc9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/plugins/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:43:40 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 9860
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/plugins/back-to-top.js

81.181.253.254

200 OK

1.6 kB

URL HTTP/1.1
www.rguga.ro/assets/plugins/back-to-top.js
IP
81.181.253.254:0
ASN
#0

File type
ASCII text, with CRLF line terminators
Size
1.6 kB (1619 bytes)
Hash
2a7614d16dc483bf6b3ba64e1ce43cbf
dce9599862ae69e3cacc3e95bb833264e0ac433a
6ffeb4be19e76180dce70333919d0c8f17ed88c830fa98886bf498aab1117ef8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/plugins/back-to-top.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:43:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1619
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/plugins/bootstrap-hover-dropdown.min.js

81.181.253.254

200 OK

729 B

URL HTTP/1.1
www.rguga.ro/assets/plugins/bootstrap-hover-dropdown.min.js
IP
81.181.253.254:0
ASN
#0

File type
ASCII text, with very long lines (1101)
Size
729 B (729 bytes)
Hash
111e2484ac73c6328952edef7217fa9a
32676e6524c1e068ef448bbf67cede7cdad92c8e
648f7690f7a7f99b4c136bbc209bf8f280a01a9dbdb0248eca38893263a22719

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/plugins/bootstrap-hover-dropdown.min.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:43:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 729
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/plugins/jquery-placeholder/jquery.placeholder.js

81.181.253.254

200 OK

1.6 kB

URL HTTP/1.1
www.rguga.ro/assets/plugins/jquery-placeholder/jquery.placeholder.js
IP
81.181.253.254:0
ASN
#0

File type
ASCII text
Size
1.6 kB (1597 bytes)
Hash
58d39f7e8e082a7b1b4e508cd9719d31
c555f036ad1137d14d0c5013d46a5582681122a2
25484d193e628c45bfc50323de7f20253414d9f5e7306a125ffca29a13590133

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/plugins/jquery-placeholder/jquery.placeholder.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:44:17 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1597
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/plugins/jquery-1.12.3.min.js

81.181.253.254

200 OK

34 kB

URL HTTP/1.1
www.rguga.ro/assets/plugins/jquery-1.12.3.min.js
IP
81.181.253.254:0
ASN
#0

File type
ASCII text, with very long lines (32029)
Size
34 kB (33877 bytes)
Hash
8240ec820384f15e0edc57eb59992e40
af79b9bac5562cd44f05e75490d1d950b142444e
7dc48c879e82028c8698f4d00a529fb62a1f455e735ab593d73c3ab258d6c171

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/plugins/jquery-1.12.3.min.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:43:12 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 33877
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/plugins/pretty-photo/js/jquery.prettyPhoto.js

81.181.253.254

404 Not Found

1.2 kB

URL HTTP/1.1
www.rguga.ro/assets/plugins/pretty-photo/js/jquery.prettyPhoto.js
IP
81.181.253.254:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/plugins/pretty-photo/js/jquery.prettyPhoto.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2

142.250.74.35

200 OK

31 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 31320, version 1.0\012- data
Size
31 kB (31320 bytes)
Hash
3fe71527811fbfedd2c07962e1bc49e7
f63e158a0480c5d711b5e268db0e75e57d87a8a5
24c0e724005344165ee0a0ff4c96a914e174bb4caa20c8a533fb194d92853e95

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.rguga.ro
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 31320
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 16:50:22 GMT
Expires: Fri, 01 Dec 2023 16:50:22 GMT
Cache-Control: public, max-age=31536000
Age: 58281
Last-Modified: Mon, 15 Aug 2022 18:11:37 GMT
Content-Type: font/woff2

www.rguga.ro/assets/plugins/flexslider/jquery.flexslider-min.js

81.181.253.254

200 OK

5.2 kB

URL HTTP/1.1
www.rguga.ro/assets/plugins/flexslider/jquery.flexslider-min.js
IP
81.181.253.254:0
ASN
#0

File type
ASCII text, with very long lines (528)
Size
5.2 kB (5191 bytes)
Hash
0c55b14441e5ca9afe3620587eec6c2a
be2909d02af6087637ccc5dc6e1e6d25694ff89b
49f1fc11f4e07df9cefd1e0164d6079e362c26e5efa004d40ef8b65794c17aca

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/plugins/flexslider/jquery.flexslider-min.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:43:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5191
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/js/main.js

81.181.253.254

200 OK

1.0 kB

URL HTTP/1.1
www.rguga.ro/assets/js/main.js
IP
81.181.253.254:0
ASN
#0

File type
ASCII text
Size
1.0 kB (1014 bytes)
Hash
71a2a7f2430d781df1132add1700fc2e
e3395868dcfda7bc7d95ab2cd940511248def787
8a40925bb95fc77469121a4c0e5222ddcd0fc7dc4b5943e22b9beb2b01347380

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/main.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:43:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1014
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/plugins/jflickrfeed/jflickrfeed.min.js

81.181.253.254

200 OK

822 B

URL HTTP/1.1
www.rguga.ro/assets/plugins/jflickrfeed/jflickrfeed.min.js
IP
81.181.253.254:0
ASN
#0

File type
ASCII text, with very long lines (425), with CRLF line terminators
Size
822 B (822 bytes)
Hash
044b754fed189433316ae5be3fcc9a75
66b5110820d01426b9d45cbe65fa67487ceefb3c
04b0be3cdb66f5d3a7b8fe844611cc26961103a4b5696f8c226b4ef5cff7e510

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/plugins/jflickrfeed/jflickrfeed.min.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:44:12 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 822
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/images/logo.png

81.181.253.254

200 OK

4.7 kB

URL HTTP/1.1
www.rguga.ro/assets/images/logo.png
IP
81.181.253.254:0
ASN
#0

File type
PNG image data, 223 x 62, 8-bit/color RGBA, non-interlaced\012- data
Size
4.7 kB (4654 bytes)
Hash
e2bbd3c0ab86f7f545aaca16d230287d
d996080417f7d218bcff71db875fad3560acd847
555d664c88d8a09fe7d4389ce9fedf2f363cd0e10646583c132d637485e0bca6

HTTP Headers

GET /assets/images/logo.png HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/png
last-modified: Fri, 24 Feb 2017 08:17:19 GMT
accept-ranges: bytes
content-length: 4654
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/pictures/small/stiri0.84216000%201655979205.jpg

81.181.253.254

200 OK

7.4 kB

URL HTTP/1.1
www.rguga.ro/pictures/small/stiri0.84216000%201655979205.jpg
IP
81.181.253.254:0
ASN
#0

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 100x50, components 3\012- data
Size
7.4 kB (7400 bytes)
Hash
3cf8b536f71c0ff314136632067db824
430d90f5d96fa64f7e30164518a14033f3f44e07
4a3dd40a0f6371b34a2fd3ba533abb7ed2a4bf125308e317b929f46d050348ac

HTTP Headers

GET /pictures/small/stiri0.84216000%201655979205.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Thu, 23 Jun 2022 10:13:25 GMT
accept-ranges: bytes
content-length: 7400
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/pictures/small/stiri0.71860800%201654579014.jfif

81.181.253.254

200 OK

15 kB

URL HTTP/1.1
www.rguga.ro/pictures/small/stiri0.71860800%201654579014.jfif
IP
81.181.253.254:0
ASN
#0

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 100x133, components 3\012- data
Size
15 kB (15024 bytes)
Hash
9a388e398d64f09d48212b17a62a02d8
953049def639c6de54331b4c07488f85ea81ddd7
c0b744bae341dadb24cc7fd67e46e866f3e11a37bb9601887b76e0457984f2e8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /pictures/small/stiri0.71860800%201654579014.jfif HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: application/octet-stream
last-modified: Tue, 07 Jun 2022 05:16:55 GMT
accept-ranges: bytes
content-length: 15024
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/pictures/small/stiri0.15287900%201635861326.jpg

81.181.253.254

200 OK

5.9 kB

URL HTTP/1.1
www.rguga.ro/pictures/small/stiri0.15287900%201635861326.jpg
IP
81.181.253.254:0
ASN
#0

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 100x79, components 3\012- data
Size
5.9 kB (5932 bytes)
Hash
47bb501c685c215cd9f6ff7f4892e407
574275bd5e65d935499d77515962e7a5e4c5107a
0dc59bf3d83033c25b543c3f04c2c6cc096fab68df8a09a533cce0985370b059

HTTP Headers

GET /pictures/small/stiri0.15287900%201635861326.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Tue, 02 Nov 2021 13:55:26 GMT
accept-ranges: bytes
content-length: 5932
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/images/awards/award1.jpg

81.181.253.254

200 OK

14 kB

URL HTTP/1.1
www.rguga.ro/assets/images/awards/award1.jpg
IP
81.181.253.254:0
ASN
#0

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Size
14 kB (13782 bytes)
Hash
548d0673d8ed89e2b1b9d86bfe45ab3b
0dc4baf138d780c0858f304a94fe49bd4e89bf64
b4fae9947217e6bbf6866a0d02adeb561825ee05efd85eec5ce46e7617154210

HTTP Headers

GET /assets/images/awards/award1.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Fri, 24 Feb 2017 08:39:31 GMT
accept-ranges: bytes
content-length: 13782
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/images/awards/award2.jpg

81.181.253.254

200 OK

8.0 kB

URL HTTP/1.1
www.rguga.ro/assets/images/awards/award2.jpg
IP
81.181.253.254:0
ASN
#0

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Size
8.0 kB (7967 bytes)
Hash
7febeaa63cb9c350b2fa338fdb6f5932
8c1a7152b394ae0321d4b2d5f5dc62c002f3ebf9
b36af7a15493c643893c5c1eefc2672cd1cd3e299b2eede6124a07814a4c602d

HTTP Headers

GET /assets/images/awards/award2.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Fri, 24 Feb 2017 08:42:39 GMT
accept-ranges: bytes
content-length: 7967
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3

81.181.253.254

200 OK

72 kB

URL HTTP/1.1
www.rguga.ro/assets/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3
IP
81.181.253.254:0
ASN
#0

File type
Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Size
72 kB (71896 bytes)
Hash
e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.rguga.ro/assets/plugins/font-awesome/css/font-awesome.css
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: font/woff2
last-modified: Tue, 07 Feb 2017 12:43:59 GMT
accept-ranges: bytes
content-length: 71896
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/plugins/pretty-photo/js/jquery.prettyPhoto.js

81.181.253.254

404 Not Found

1.2 kB

URL HTTP/1.1
www.rguga.ro/assets/plugins/pretty-photo/js/jquery.prettyPhoto.js
IP
81.181.253.254:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/plugins/pretty-photo/js/jquery.prettyPhoto.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/prof_logo.png

81.181.253.254

200 OK

29 kB

URL HTTP/1.1
www.rguga.ro/assets/prof_logo.png
IP
81.181.253.254:0
ASN
#0

File type
PNG image data, 250 x 210, 8-bit/color RGBA, non-interlaced\012- data
Size
29 kB (29291 bytes)
Hash
f0b1894f7e7a0c5fb126ee1e13b5ffba
beac70084bee5efd8d04c4199c2ef3bf4c528bad
e33d09cd00b183051e059770ac24414e9e701b05d540f5f88a4456807215573b

HTTP Headers

GET /assets/prof_logo.png HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/png
last-modified: Thu, 17 Feb 2022 07:04:09 GMT
accept-ranges: bytes
content-length: 29291
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/images/awards/award3.jpg

81.181.253.254

200 OK

6.5 kB

URL HTTP/1.1
www.rguga.ro/assets/images/awards/award3.jpg
IP
81.181.253.254:0
ASN
#0

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Size
6.5 kB (6506 bytes)
Hash
8768e027f45605b88934085d5c06834d
a0b113ff9de46fd7f76bc15a07e8b27441393886
c50695dc1a3f3d9b27fb4de7647b94dcf498d89da2d217d45030ba57aad46369

HTTP Headers

GET /assets/images/awards/award3.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Fri, 24 Feb 2017 08:52:24 GMT
accept-ranges: bytes
content-length: 6506
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/images/awards/award4.jpg

81.181.253.254

200 OK

5.1 kB

URL HTTP/1.1
www.rguga.ro/assets/images/awards/award4.jpg
IP
81.181.253.254:0
ASN
#0

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Size
5.1 kB (5067 bytes)
Hash
fe9188a0d5915e4dbde155ef658d5407
60a39b7380c44b6fa3d28360ba76cd2480448115
f9ba2f83c078969f70547a2e123c6974223171560718c880c3859ce707ed1e19

HTTP Headers

GET /assets/images/awards/award4.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Fri, 24 Feb 2017 08:53:35 GMT
accept-ranges: bytes
content-length: 5067
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/images/awards/award5.jpg

81.181.253.254

200 OK

10 kB

URL HTTP/1.1
www.rguga.ro/assets/images/awards/award5.jpg
IP
81.181.253.254:0
ASN
#0

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Size
10 kB (10438 bytes)
Hash
1245c2deb528711e310b04356981be08
40f3548e5a87e3d33a69f0bff749443b487957bd
a79b0eac9f98ff3dc9b49e027cfc288551230d5747c7c03b650079e41f1b46ac

HTTP Headers

GET /assets/images/awards/award5.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Fri, 24 Feb 2017 08:57:35 GMT
accept-ranges: bytes
content-length: 10438
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/images/awards/award6.jpg

81.181.253.254

200 OK

9.8 kB

URL HTTP/1.1
www.rguga.ro/assets/images/awards/award6.jpg
IP
81.181.253.254:0
ASN
#0

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Size
9.8 kB (9848 bytes)
Hash
c43050f0e2e4b78acb236ad6de47da06
a5a2084b94ae85f9c3e6db446fa73c28398a89d0
c5d68fc82f48333199903f67a9139f0331f3bcf3257f48c9d3a64e125052895e

HTTP Headers

GET /assets/images/awards/award6.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Fri, 24 Feb 2017 09:05:10 GMT
accept-ranges: bytes
content-length: 9848
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/plugins/flexslider/images/bg_direction_nav.png

81.181.253.254

200 OK

2.0 kB

URL HTTP/1.1
www.rguga.ro/assets/plugins/flexslider/images/bg_direction_nav.png
IP
81.181.253.254:0
ASN
#0

File type
PNG image data, 55 x 26, 8-bit/color RGBA, non-interlaced\012- data
Size
2.0 kB (1995 bytes)
Hash
51e3dc355952c2c002937c1ce8415f74
087462436918fbac870c96bd96b91a3b1886eed6
cb90c6888a5fa58b1ba6e28edabec91b7a299e9817bbdda5e5ac89874b8ad1b9

HTTP Headers

GET /assets/plugins/flexslider/images/bg_direction_nav.png HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/assets/plugins/flexslider/flexslider.css
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/png
last-modified: Tue, 07 Feb 2017 12:43:44 GMT
accept-ranges: bytes
content-length: 1995
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/images/slides/slide-2.jpg

81.181.253.254

200 OK

383 kB

URL HTTP/1.1
www.rguga.ro/assets/images/slides/slide-2.jpg
IP
81.181.253.254:0
ASN
#0

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1140x350, components 3\012- data
Size
383 kB (382577 bytes)
Hash
3e6f0956289d040891a0092251c95b0c
51098e5413ddaed66e16bc99c82699f8d5db5243
08860ed2dbe6ed0b0aabbfb83559e7c184d3215ccefabc1c1be5c6c21c41acc0

HTTP Headers

GET /assets/images/slides/slide-2.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Mon, 20 Feb 2017 11:07:49 GMT
accept-ranges: bytes
content-length: 382577
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/images/slides/slide-1.jpg

81.181.253.254

200 OK

338 kB

URL HTTP/1.1
www.rguga.ro/assets/images/slides/slide-1.jpg
IP
81.181.253.254:0
ASN
#0

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1140x350, components 3\012- data
Size
338 kB (337829 bytes)
Hash
03c58a1c1771a2f6c6977f378c478dd9
147e3625c8506f3b5dc82c7305931a9df47c4105
c19b649f47465ce5120b00889d7f3fa4a8ba85530ebf38cd797dccc27f11e158

HTTP Headers

GET /assets/images/slides/slide-1.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Mon, 20 Feb 2017 12:07:12 GMT
accept-ranges: bytes
content-length: 337829
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/images/slides/slide-4.jpg

81.181.253.254

200 OK

436 kB

URL HTTP/1.1
www.rguga.ro/assets/images/slides/slide-4.jpg
IP
81.181.253.254:0
ASN
#0

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1140x350, components 3\012- data
Size
436 kB (436213 bytes)
Hash
b7a1620e69288ddb19524d5a83eff3d1
d9ced4af7cff6f5979424770ec57c4cf0bb3690e
9207891be7b3f400440a33f9f7d70139754a7dfd0c7c00769d475964c974c0f5

HTTP Headers

GET /assets/images/slides/slide-4.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Wed, 01 Mar 2017 16:10:36 GMT
accept-ranges: bytes
content-length: 436213
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/assets/images/slides/slide-3.jpg

81.181.253.254

200 OK

434 kB

URL HTTP/1.1
www.rguga.ro/assets/images/slides/slide-3.jpg
IP
81.181.253.254:0
ASN
#0

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1140x350, components 3\012- data
Size
434 kB (434396 bytes)
Hash
835edf44f268ab4f96b73418130f4802
fababdab1c52eef03580ee82df06886d4cf83981
d10aa0ce80e0246c76ce9a8d93d96a24b00c2394b31c9f2bf88942daecfd599d

HTTP Headers

GET /assets/images/slides/slide-3.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Mon, 20 Feb 2017 11:14:55 GMT
accept-ranges: bytes
content-length: 434396
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

www.rguga.ro/favicon.ico

81.181.253.254

404 Not Found

1.2 kB

URL HTTP/1.1
www.rguga.ro/favicon.ico
IP
81.181.253.254:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4

HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15880
Expires: Fri, 02 Dec 2022 13:26:24 GMT
Date: Fri, 02 Dec 2022 09:01:44 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15880
Expires: Fri, 02 Dec 2022 13:26:24 GMT
Date: Fri, 02 Dec 2022 09:01:44 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15880
Expires: Fri, 02 Dec 2022 13:26:24 GMT
Date: Fri, 02 Dec 2022 09:01:44 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15880
Expires: Fri, 02 Dec 2022 13:26:24 GMT
Date: Fri, 02 Dec 2022 09:01:44 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg

34.120.237.76

200 OK

2.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.9 kB (2942 bytes)
Hash
b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:49:56 GMT
age: 40308
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15495 bytes)
Hash
82ea44d6cb116fb1f5752ce9bb87e345
f799dfd89a4f5a452dc837b8616549f578fb4184
e9087e7fce332289d67d4d5646d0233c2f2d871cc88dc1c51d5ea1e9f2fb5abd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15495
x-amzn-requestid: 977cdbce-3a9c-4006-a5a1-5c4c82bd4a94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfHDIFxzIAMFzEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891ee0-4b2cb3a16ca745537a8caf8c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KnOx0PJ8BR9OoAzXfuWk_Je_yawqzY4isC0hYTZRvJ74YiVs8jqyIQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:25:42 GMT
age: 38162
etag: "f799dfd89a4f5a452dc837b8616549f578fb4184"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6174 bytes)
Hash
b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 06:00:48 GMT
age: 10856
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10270 bytes)
Hash
4c7113338bc3310b13d23ca415c177e2
2cb4edc6b161c6d2d5b47aa498ae54e677966466
3a83adce869dd7eb064c583bf7ff93c57fabd7ea2da872f7d1f7d868b8a492e9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10270
x-amzn-requestid: ac2d2825-2ec4-435e-9921-3ea6524df1dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfG1nEvYoAMFliA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e8a-4419423112b5723e3dba46ea;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2ihxuuXiECC4oX11t_vswhnLF0UpqDuboPLkrhpWwp-vfCR5pxGGxw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:53:50 GMT
age: 40074
etag: "2cb4edc6b161c6d2d5b47aa498ae54e677966466"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7334 bytes)
Hash
498ab4412ed5cf977bc23e4e870894b0
23753fe8af09ec8ffa10eed4d201a71833885c99
036042656f15e42b4d1537c45f5b8e7190c70305fa9a69c1287c6739ad0b7122

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7334
x-amzn-requestid: a6b8b420-8394-496b-8be8-26dee52e3887
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoHJOoAMF75g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0b38d07f518c8b3134457df2;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tuKmV_nb4HVbqkhtCnZY3b33VB-bB6UxaBl6HsY_JgWesbUB8SPt-g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:09:38 GMT
age: 39126
etag: "23753fe8af09ec8ffa10eed4d201a71833885c99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7591 bytes)
Hash
d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 40373
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6752 bytes)
Hash
f0fc684e61682c4078a82ee3d901ae52
ea65ad98933ec58afa3fa5c7642491d77db7e6c2
5e953012dba2b85cfda5befe2448ab87fbc2432a071e11a33b44be4f5148a4a4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 6752
x-amzn-requestid: f398ce98-353e-4783-aa42-dbf1ad036ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepE6roAMF4zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0753d209291e197e7c6422a6;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yQ2Oc2viJ7EoRW4QSMG30tsGK73zxYQsXKKcWP3vleI0CTBVRfB1Fg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:31:16 GMT
age: 37835
etag: "ea65ad98933ec58afa3fa5c7642491d77db7e6c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (57)

URL HTTP/1.1