Report - www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html

Report Overview

Visited public
2023-12-01 22:44:47
Tags
URL
www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Finishing URL
www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
IP / ASN
192.185.106.252
#46606 UNIFIEDLAYER-AS-1
Title
Srpski vatrogasci se bore sa stihijom Buknuo je na ulici, oni rade sve da ugase vatru! - Vugla

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
psuftoum.com	unknown	2023-04-12	2023-04-12 10:42:16	2023-11-19 15:37:13	1.6 kB	76 kB	139.45.197.244
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-01 08:02:13	897 B	12 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-01 05:29:09	6.6 kB	372 kB	216.58.207.227
amunfezanttor.com	unknown	2023-03-31	2023-03-31 14:42:42	2023-12-01 13:22:24	2.0 kB	2.0 kB	139.45.197.250
vintageperk.com	unknown	unknown	No data	No data	4.8 kB	7.4 kB	173.233.137.60
vaugroar.com	unknown	2022-04-19	2022-04-21 19:10:04	2023-11-27 21:40:27	3.4 kB	63 kB	139.45.197.250
cdn.yourwebbars.com	62037	2020-08-21	2021-01-29 18:47:27	2023-12-01 01:01:13	503 B	2.2 kB	104.26.6.19
unseenreport.com	unknown	2022-03-30	2022-03-30 16:33:17	2023-11-30 20:03:45	1.5 kB	847 B	192.243.59.20
www.variouscreativeformats.com	408415	2021-06-09	2021-06-13 08:53:26	2023-11-28 18:09:46	457 B	12 kB	173.233.137.44
www.profitabledisplaycontent.com	138390	2020-10-14	2020-10-16 04:07:47	2023-12-01 16:49:53	3.1 kB	6.1 kB	173.233.137.36
ssl.gstatic.com	unknown	2008-02-11	2012-05-23 08:57:57	2023-12-01 13:19:29	446 B	6.1 kB	142.250.74.163
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15 17:46:22	2023-12-01 11:43:19	3.1 kB	313 kB	172.64.108.10
persecutionmachinery.com	unknown	2023-11-28	2023-11-28 10:00:57	2023-11-29 03:02:28	6.4 kB	40 kB	173.233.137.44
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-01 06:26:25	432 B	86 kB	142.250.74.168
pl15560907.passtechusa.com	unknown	2020-02-27	2022-10-27 15:33:11	2023-11-25 04:22:29	455 B	16 kB	192.243.59.12
proftrafficcounter.com	unknown	2023-11-16	2023-11-21 09:55:14	2023-12-01 06:19:54	878 B	840 B	18.157.203.0
tharbadir.com	670354	2018-04-25	2018-05-21 22:07:02	2023-11-20 17:43:39	10 kB	462 kB	139.45.197.238
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12 17:15:41	2023-12-01 06:35:15	2.0 kB	142 kB	45.133.44.9
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-12-01 07:35:53	580 B	580 B	142.250.74.163
www.vugla.com	unknown	2013-09-24	2015-02-06 16:22:31	2023-12-01 16:07:35	42 kB	1.2 MB	192.185.106.252
www.kursnalista.co	unknown	2019-01-14	2015-04-30 23:56:04	2023-11-19 14:45:56	878 B	131 kB	192.185.106.47
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-12-01 05:09:40	1.8 kB	868 B	216.239.32.36
interbuzznews.com	237501	2018-07-24	2018-08-10 18:24:14	2023-12-01 19:14:00	6.1 kB	99 kB	139.45.197.154
accounts.google.com	81	1997-09-15	2016-03-20 13:44:49	2023-12-01 08:33:49	720 B	1.3 kB	142.250.150.84
fleraprt.com	unknown	2022-01-14	2022-01-14 23:55:14	2023-12-01 20:18:58	535 B	481 B	139.45.195.254
eehuzaih.com	unknown	2022-02-21	2022-02-21 12:12:25	2023-11-25 20:59:40	2.9 kB	168 kB	139.45.197.237
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21 01:06:24	2023-12-01 08:11:25	700 B	1.9 kB	143.204.53.97
friendshipmale.com	unknown	2022-10-21	2022-10-21 14:15:25	2023-12-01 15:23:59	822 B	173 kB	172.64.173.31
pl16411290.alternativecpmgate.com	unknown	2021-07-01	2023-05-22 08:21:17	2023-12-01 20:01:56	460 B	10 kB	173.233.137.52
my.rtmark.net	9054	2014-10-29	2015-02-04 10:54:57	2023-11-30 20:01:36	1.0 kB	1.5 kB	139.45.195.8
offerimage.com	304078	2019-06-10	2019-06-10 13:11:53	2023-12-01 12:59:37	1.4 kB	59 kB	172.67.22.216
skiofficerdemote.com	unknown	2023-11-28	2023-11-28 13:03:09	2023-12-01 18:13:41	497 B	467 B	173.233.137.52
apis.google.com	105	1997-09-15	2013-05-06 22:20:21	2023-12-01 05:11:42	4.3 kB	149 kB	142.250.74.78
tzegilo.com	unknown	2022-01-14	2022-01-14 16:27:15	2023-11-30 22:37:49	408 B	20 kB	172.67.193.52

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-01	medium	vaugroar.com	Sinkholed
2023-12-01	medium	fleraprt.com	Sinkholed
2023-12-01	medium	eehuzaih.com	Sinkholed
2023-12-01	medium	vaugroar.com	Sinkholed
2023-12-01	medium	vaugroar.com	Sinkholed
2023-12-01	medium	vaugroar.com	Sinkholed
2023-12-01	medium	eehuzaih.com	Sinkholed
2023-12-01	medium	amunfezanttor.com	Sinkholed
2023-12-01	medium	amunfezanttor.com	Sinkholed
2023-12-01	medium	amunfezanttor.com	Sinkholed
2023-12-01	medium	amunfezanttor.com	Sinkholed
2023-12-01	medium	persecutionmachinery.com	Sinkholed
2023-12-01	medium	vaugroar.com	Sinkholed
2023-12-01	medium	persecutionmachinery.com	Sinkholed
2023-12-01	medium	persecutionmachinery.com	Sinkholed
2023-12-01	medium	persecutionmachinery.com	Sinkholed
2023-12-01	medium	persecutionmachinery.com	Sinkholed
2023-12-01	medium	vintageperk.com	Sinkholed
2023-12-01	medium	skiofficerdemote.com	Sinkholed
2023-12-01	medium	vaugroar.com	Sinkholed
2023-12-01	medium	vintageperk.com	Sinkholed
2023-12-01	medium	vintageperk.com	Sinkholed
2023-12-01	medium	vintageperk.com	Sinkholed
2023-12-01	medium	unseenreport.com	Sinkholed
2023-12-01	medium	eehuzaih.com	Sinkholed
2023-12-01	medium	vaugroar.com	Sinkholed
2023-12-01	medium	psuftoum.com	Sinkholed
2023-12-01	medium	psuftoum.com	Sinkholed
2023-12-01	medium	unseenreport.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (55)

	URL	From	Size	First Seen	Last Seen
	tzegilo.com/stattag.js	ScriptElement	19 kB	2023-09-07	2024-08-21
Pretty URL tzegilo.com/stattag.js IP 172.67.193.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-07 20:07 Last Seen2024-08-21 07:20 Times Seen2395 Hash 89e89aea544ea2785d49cc4cd9cf26f6 7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b 86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9 Loading...

	apis.google.com/js/plusone.js	ScriptElement	58 kB	2023-11-28	2023-12-18
Pretty URL apis.google.com/js/plusone.js IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 16:18 Last Seen2023-12-18 14:18 Times Seen259 Hash 12476fdc6b8599d03eac729748337611 7a15dc04ad6e77026bf45927b78247411e3e0466 c5be6532f19ca90fb5966ed89be694f2bc2cded1e443d3489467cb28cd69af43 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs	ScriptElement	66 kB	2023-11-28	2024-08-20
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 11:17 Last Seen2024-08-20 17:36 Times Seen195 Hash 009832d077d8fc42d725066c2b774fd6 0994f8575917c4eeb66f6bdb0a65609aa8902cac b1e012aaab4e65462b456ff6a07a6512c7b11d1682d228531d66b132dcf3d364 Loading...

	www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html	ScriptElement	3.3 kB	2023-11-13	2024-08-20
Pretty URL www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-13 23:13 Last Seen2024-08-20 19:42 Times Seen77 Hash d13d41a1b861ef9aa0e02b02b0f7d642 2054927fbb35d426ca430a809cd4ba350f2ddec2 84b675950434bdf327774b6e23b2a2737f07135d842888d8b99be08475d9be94 Loading...

	connect.facebook.net/en_US/all.js#xfbml=1	ScriptElement	17 kB	2023-05-05	2025-05-11
Pretty URL connect.facebook.net/en_US/all.js#xfbml=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 22:33 Last Seen2025-05-11 20:27 Times Seen54228 Hash b938e0b835c600209bdaae9d8ccda6d7 d5ee79d277057e05f002a18381722b5eb75d3883 d1b95aeb57c3285042e1e24c00cc56a8560d16daf7ee5cdfd5c75296b21ac91b Loading...

	www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html	ScriptElement	233 B	2024-08-20	2024-08-20
Pretty URL www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:08 Last Seen2024-08-20 17:08 Times Seen1 Hash dbb986b466c42a02654408ff39368e44 0d2142b1f3389cf67a9f61cac08cd55f3384133e d8af897c5dff824bcaea84a5b97a60fc8186666dad75c19e676d1a3a2e33f7e8 Loading...

	www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html	ScriptElement	459 B	2024-08-20	2024-08-20
Pretty URL www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:08 Last Seen2024-08-20 17:08 Times Seen1 Hash 0663baa7fcae7d6f82ebd33283487810 2bc3342c75dc64790b67d7e303c4776ec726f2b3 8c3037ac55459c6df35e5060b18674a960ee94c8f738eed092d1a5746d174d25 Loading...

	www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html	ScriptElement	130 B	2023-05-22	2024-08-21
Pretty URL www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen180 Hash 071769b9151182dafbb83441dc6fd6e8 2d0debcc38211b79d10eb26c1f233ab0bb385666 cb6b201c1fe09a074a97d8a5f952a0b246e9d4cab3c890cdd66fc72267c8814b Loading...

	www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html	ScriptElement	153 B	2023-10-28	2024-08-20
Pretty URL www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-28 22:45 Last Seen2024-08-20 22:01 Times Seen131 Hash 378b048db9feb942a4873575f1b0a66b 6d87c4a103cb5fffe86ff758571eae39a1237c35 bc4c36697eee6b442da5b8f9faa8b7686e2d148ca08be69e1312ba734c5e9de8 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_1?le=scs	ScriptElement	100 kB	2023-11-28	2023-12-18
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_1?le=scs IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 16:18 Last Seen2023-12-18 03:57 Times Seen144 Hash e0fbc84518a1bab9c8bad9f76463d338 ecce9ef563bc5170ebcfcfd35e0dd5b17bc0b874 d99dd3891be0d37edbcc13fdaad780f164a758be5d0c8a71f66596e6cda04f70 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs	ScriptElement	161 kB	2023-11-28	2023-12-18
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 16:18 Last Seen2023-12-18 14:18 Times Seen255 Hash 4a256001cbbe7af37c71afbd89ba1656 4760f1dee9f6ff6db6f33eeee3dc7ec76155f7dd 5b683a525a2a814b27fc09152ee8030b6d542cd24a61de371bbe5e8815e9d0b1 Loading...

	www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-05-11
Pretty URL www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-05-11 20:22 Times Seen106249 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	www.vugla.com/wp-includes/js/underscore.min.js?ver=1.13.4	ScriptElement	19 kB	2023-03-08	2025-05-11
Pretty URL www.vugla.com/wp-includes/js/underscore.min.js?ver=1.13.4 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26 Last Seen2025-05-11 18:14 Times Seen20827 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js		1.7 kB	2023-05-05	2025-05-11
Pretty URL moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 22:33 Last Seen2025-05-11 20:27 Times Seen54828 Hash 865f01cbb34eb505834e826380d7dc2e c239ccc37191f1be78dfaa6bb3f1da5d314fdf9e 30ed6392b8de4590bd974a4a797ee0b12b382f2141738115bfd2d692cfa6ec17 Loading...

	unknown	ScriptElement	196 B	2023-11-17	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-17 15:46 Last Seen2024-08-20 19:05 Times Seen39 Hash 43603cd222cb16c705b5e2d8ea8b85ea 8b6753fa36c7c328d0035594638d67b6af1611fc 760b2727afb68b6edfe1f97a3c2df60fda81477a451f3913b2b15d72e29c4ffb Loading...

	psuftoum.com/5/1316441	ScriptElement	72 kB	2023-12-01	2023-12-01
Pretty URL psuftoum.com/5/1316441 IP 139.45.197.244 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-01 23:44 Last Seen2023-12-01 23:44 Times Seen1 Hash 7f3dd61a0967a7875c6029fe0384265c b041d052124a80c47bbf94072d5b8896b0644800 5c93084da9d65abfb9a78fc8ba709bfa2372ca82263007ff8f4bef33ca3284aa Loading...

	apis.google.com/js/rpc:shindig_random.js?onload=init	ScriptElement	18 kB	2023-11-28	2023-12-18
Pretty URL apis.google.com/js/rpc:shindig_random.js?onload=init IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 06:17 Last Seen2023-12-18 09:03 Times Seen200 Hash 84a5ff7df274c2aa0f5db3d0db8deb60 fe9d4e60961ea15195134fa043256585a3956984 0d3c50c1af81534edee9a430edb5d09c6068348173496657982a4546ff2ee231 Loading...

	www.variouscreativeformats.com/c3b6bab9a3e6c622d733121998e0014d/invoke.js	ScriptElement	30 kB	2023-11-26	2023-12-12
Pretty URL www.variouscreativeformats.com/c3b6bab9a3e6c622d733121998e0014d/invoke.js IP 173.233.137.44 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-26 17:50 Last Seen2023-12-12 22:21 Times Seen66 Hash 223406d9dbf6d31ee7d9236d1c95ea29 8a45024df7b5013212b1fd369c5670655bd55b66 8eb1cd23b38e67fb1ec812debb06ff9f68891aeecaf2edeba8c0a73081c27ed0 Loading...

	tharbadir.com/2?z=1347951	ScriptElement	43 kB	2023-12-01	2023-12-01
Pretty URL tharbadir.com/2?z=1347951 IP 139.45.197.238 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-01 23:44 Last Seen2023-12-01 23:44 Times Seen1 Hash abfd1a6492ea3d7b30b295334259aead 40d5027eec9cef8f2474f1612ee8b454456d772e 232fdb27e4d76f8150db20a584a56ceb34416789928ff2f4a622fc6f5523e565 Loading...

	tharbadir.com/27/b7af9eee900df9a8aa2af9ad8ee46174	ScriptElement	413 kB	2023-11-24	2024-08-20
Pretty URL tharbadir.com/27/b7af9eee900df9a8aa2af9ad8ee46174 IP 139.45.197.238 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-24 13:48 Last Seen2024-08-20 18:04 Times Seen548 Hash 1dc3ebe1459db3cde0597b21156f2665 0e5a8c7b79a34f4fffaeab7c7eb4f3a19b0d75f6 1a3f7f2cfe5fba958e9df1a38c0980aab5bb21225601ea849f9e6df4afe09f2e Loading...

	www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1	ScriptElement	571 kB	2023-03-07	2025-04-24
Pretty URL www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:33 Last Seen2025-04-24 02:06 Times Seen295 Hash 6d53ab10ac8d6c3be0ee1df6b4bdc00f a5b0990fbcaf8b5f73085d9c02236e68b02f113e 0e12b6aea62f8d1c2e29e27393e231a8a17472728b303b586e2d4fb3ff5b481f Loading...

	friendshipmale.com/sfp.js	ScriptElement	86 kB	2023-11-23	2024-08-20
Pretty URL friendshipmale.com/sfp.js IP 172.64.173.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-23 18:35 Last Seen2024-08-20 18:08 Times Seen6307 Hash 924e967bca1d599992556a8d139b1c5a 222b09dbf164ddc03d39100fd0524a22018d28b2 ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95 Loading...

	www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1	ScriptElement	15 kB	2023-05-22	2024-08-21
Pretty URL www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen228 Hash ad955f14cdcc21d58014f25ab7c8d46d 8915b95d672d54be6fb01a239088aba305d4798e d6304e162f8fe5054a4c5430d2f1d78ea2ad54c1ff61ea708d148bf385312407 Loading...

	www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html	ScriptElement	63 kB	2023-05-22	2024-08-21
Pretty URL www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen197 Hash be4906ea1de45e4a62febac1060e305a cac55e3d64f37ecd4c069a10277c888e27fedce4 6b95ca3aa5c2c38a6db46a8a40b9b30a248a35f815d619c7e86fb5e569b0d224 Loading...

	www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html	ScriptElement	231 B	2023-05-22	2024-08-21
Pretty URL www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen197 Hash 8eb49f7b6efd94cdd86e86cb6fb64ab1 556d6d9c3502c6c9e0a4fafb3e6d35244fbef674 43544840429e505afe1d466f749f47712d8213c4c1d14772e7e879ccc9b09cbf Loading...

	www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html	ScriptElement	275 B	2023-03-14	2024-08-21
Pretty URL www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 00:55 Last Seen2024-08-21 08:08 Times Seen202 Hash 75a198bff010258566f15c985871f637 c73be2b97536168613d453147e3dcff01999220c dd9b861b501b2e39307932dff8443bdf955fad5346b2d9c2854670c5d48752ee Loading...

	www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6	ScriptElement	28 kB	2023-04-14	2025-04-17
Pretty URL www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-14 15:15 Last Seen2025-04-17 03:23 Times Seen362 Hash 68f8af044f685b84c7d49ac2356acabf 585889874b36224e980f4d285044ec0fb478dc7c 9fe6a07f596d507305d1480e6bb301d04cbf5ef8660b24b9fa411e39607a7ab5 Loading...

	unknown	ScriptElement	88 kB	2023-11-02	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 10:05 Last Seen2024-08-20 21:23 Times Seen2914 Hash d46d2997ab218d1dba1ab614422ed53f 3f1f6b9847c8ad209835db366c62fcb209b83a67 09e8ce2dfeac0ad09cd24788931b38ea7e7592f2c28eecc324b2dd1cd69d1b42 Loading...

	pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js	ScriptElement	25 kB	2023-12-01	2023-12-10
Pretty URL pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js IP 173.233.137.52 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-01 23:44 Last Seen2023-12-10 05:35 Times Seen3 Hash 10a74ed89f6bdb373f3a7fa2660e42f1 dae3420e64712b2c342761c76d2b699e3555c1b0 0533499885f1cd8eb580f8b2d2c26ce0575d75e6f339e5668765c557aea1c4b0 Loading...

	ssl.gstatic.com/accounts/o/478691279-postmessagerelay.js	ScriptElement	12 kB	2023-09-06	2024-08-21
Pretty URL ssl.gstatic.com/accounts/o/478691279-postmessagerelay.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-06 15:46 Last Seen2024-08-21 07:24 Times Seen1994 Hash 92169c8a0fbf6e404267d0705cdbdf42 a5cd88b74ca5ced239cdbfb458fe25540d671f46 dba668b49a111527aac8f616b9053ea57c944e01a84ebdcd02a13da921223384 Loading...

	interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D3214379760%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3D9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D5f996158-b87c-4954-a391-debbcfdd2267%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D3214379760%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3D9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D5f996158-b87c-4954-a391-debbcfdd2267%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 IP 139.45.197.154 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 20:35 Times Seen4657207 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6	ScriptElement	13 kB	2023-03-07	2025-05-09
Pretty URL www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33 Last Seen2025-05-09 07:51 Times Seen475 Hash 416d2c5e5425c640a7d63f25e0376fd6 a95b218161d94bdb148d108aedf065b4a4762045 b875bead01dfa1b02a553e8efda0f3a65d39da24f19ad37af95f06795eee76dc Loading...

	www.googletagmanager.com/gtag/js?id=G-7NCJ73THPT	ScriptElement	246 kB	2023-12-01	2023-12-01
Pretty URL www.googletagmanager.com/gtag/js?id=G-7NCJ73THPT IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-01 23:44 Last Seen2023-12-01 23:44 Times Seen1 Hash 509bbc3545807d97a1643feebac6b022 3f86a9375f8e9d0b8c35e0711773b168c208d5d3 3dd1856d86f3ddbb9179000dec299fe8c4742ed03d1f431501bce1e3f53a597b Loading...

	eehuzaih.com/400/5005565	ScriptElement	89 kB	2023-12-01	2023-12-01
Pretty URL eehuzaih.com/400/5005565 IP 139.45.197.237 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-01 23:44 Last Seen2023-12-01 23:44 Times Seen1 Hash bfcb1f9732e0bc6c6b8c693ad5bbb883 56eebfa8f812825cee8531911a7699ca5fcc4563 4eeb16bcdf598effbbe63094ecd08cee67f2bf795fb2a2dad9b8f5f463ef4888 Loading...

	vaugroar.com/pfe/current/tag.min.js?z=1548391	ScriptElement	13 kB	2023-11-02	2024-08-20
Pretty URL vaugroar.com/pfe/current/tag.min.js?z=1548391 IP 139.45.197.250 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 10:05 Last Seen2024-08-20 21:23 Times Seen2697 Hash 258578af3c107ccb907f73c3a2f4c25f 7a192edea829968fb7f57f2a2fc4cb5b612598be 1f945c9c46c47a2b0e867b0d09c3e4559cd768a2d3747abf28d1d65667733b75 Loading...

	eehuzaih.com/400/5005565	ScriptElement	89 kB	2024-08-20	2024-08-20
Pretty URL eehuzaih.com/400/5005565 IP 139.45.197.237 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 17:08 Last Seen2024-08-20 17:08 Times Seen1 Hash 69c4a7d4f832b465a275068b2ae72bd4 6693ab720a6bd3685f4c2111160dfb624b3fd9b3 357c1aa9a29da5eb6fc8a767b1597deb256637187e9ded3cc050092dfc5fbaaf Loading...

	www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1	ScriptElement	95 B	2023-05-22	2024-08-21
Pretty URL www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen222 Hash 64829824ee643f09fb3821dc49b3089a 446608ff9f4128b9503476135a8c28599f8d5c2e 0b967c52b8e899c4266110c97fa50018d61ccf1365144d16f09f901523d48c95 Loading...

	unknown	ScriptElement	145 B	2023-08-25	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 09:27 Last Seen2024-08-21 08:08 Times Seen146 Hash 25ee70ccfb4bb15c14c145562f0f0305 750f0fcb4ebd205c768b5bbb7dba73a7100e66e3 4873fcd169e86b6cf750a5c26c2217dd0493a0f27b3407d75ed7feb77ba9f45c Loading...

	unknown	ScriptElement	4.1 kB	2023-11-26	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-26 22:07 Last Seen2024-08-20 17:49 Times Seen21 Hash 457a363a3f8319e1ef6a374db2436088 1d407b11b40fdea73d4b56b445b7b3a4cd5efec9 e76d709f1992bf5c7b8a234d65019ca1269b6d9f1ffae7555e6873aa901df91a Loading...

	www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1	ScriptElement	3.4 kB	2023-03-07	2025-05-08
Pretty URL www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32 Last Seen2025-05-08 00:34 Times Seen715 Hash 6755415003869bd599c3fae8e9792027 57946a22c79654014eb00fb548f727d302221873 07f79fbda35a2bf03f2940978670a2a53cf21e490ecce887bf92fc2e3f359293 Loading...

	pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js	ScriptElement	43 kB	2023-12-01	2023-12-01
Pretty URL pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js IP 192.243.59.12 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-01 23:44 Last Seen2023-12-01 23:44 Times Seen1 Hash 0a2b7edd37bb8c698fb2e852e86eb1c5 0ad77ae75449792ec91bd77d7d82ca5b7624c990 f904e7df23847f72f87373af069556c0b3d8c0ab035c400bc6a34d5f9bffce66 Loading...

	persecutionmachinery.com/65/aa/28/65aa283021630dfd9030555c4c61a78c.js	ScriptElement	60 kB	2023-11-30	2023-12-04
Pretty URL persecutionmachinery.com/65/aa/28/65aa283021630dfd9030555c4c61a78c.js IP 173.233.137.44 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 10:20 Last Seen2023-12-04 10:34 Times Seen3 Hash d8373a275a5a72d5da90f7db4558f057 50c1facea031fd7684f8e83542557a2c9d1f8e10 8730cd2ac274aafb27bd451c69dbac3bb3b33b266e94e030c65f5b2499e4820b Loading...

	www.vugla.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	ScriptElement	88 kB	2023-11-03	2025-05-11
Pretty URL www.vugla.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-05-11 20:22 Times Seen92626 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=6.4.1	ScriptElement	104 kB	2023-05-22	2024-08-21
Pretty URL www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=6.4.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen199 Hash ef9b7abbc5670902d89c6d20af50b7c3 2593f7764d07fecf938574d3d93693f1974759d2 17cadc0ae5ff07b667c2150bce71007b771bcc75ce070fd2a697ee2e60109535 Loading...

	www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html	ScriptElement	204 B	2023-08-25	2024-08-21
Pretty URL www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-25 09:27 Last Seen2024-08-21 08:08 Times Seen159 Hash ff3448265c8993d78798a96ece09fe88 07af2a326db79b0282f3e0399f4481e37b3c1be7 b0568da9ebb64ae54d9132b080408fccc6f1011f2116550f842a05beb81b0f33 Loading...

	www.kursnalista.co/banners/banners.js	ScriptElement	8.1 kB	2023-05-22	2024-08-21
Pretty URL www.kursnalista.co/banners/banners.js IP 192.185.106.47 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen221 Hash 0fa58c243ecc9c6ff829da27563c78c4 771e757dcaddc90a127b557e6a8a69b9dfe4767d 4631955f687225007a1227be7e662f1f45798c13a573f70670e748ff50aa194b Loading...

	www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html	ScriptElement	888 B	2023-08-25	2024-08-21
Pretty URL www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-25 09:27 Last Seen2024-08-21 08:08 Times Seen159 Hash b764db4fe165c62db0d123b867e94bd5 d6b4fdaea71527d774ea41a3673e8c4e6c6b0709 6b9344d192e83f73413812f815e820abcf65bf83ccbe0426b5a55d186ed03ef1 Loading...

	unknown	ScriptElement	3.3 kB	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 17:08 Last Seen2024-08-20 17:08 Times Seen1 Hash 4d8612de039a0caddf4bd283781b28fd 5c68c4fcecd90498e61261aa8cb7c1934b6809c9 4aa8d0a733850864389323eab45a306e9e6a8a4dc6de7b7ece2ac5e75979f7de Loading...

	www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1	ScriptElement	23 kB	2023-03-07	2025-05-09
Pretty URL www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33 Last Seen2025-05-09 07:51 Times Seen694 Hash 3229aa93c44fa4628707e80959a97bc1 5a2d4dbc4d1df02e7a386489e7b5c5a9e22dd40f 095834cc86bd018fdb4a9e31c99f9f96904b819be2b9dc16b3390383288d4d90 Loading...

	www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html	ScriptElement	140 B	2023-11-13	2024-08-20
Pretty URL www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-13 23:13 Last Seen2024-08-20 19:42 Times Seen85 Hash 26ff9d1af4532dd17eb41e6415eea9c1 5503e4032968e229087012da0c0b6a48690f4e55 5f396c3ff05da19529975f5bc46464e9fc9306c56b540e72acd574461e28c978 Loading...

	unknown	ScriptElement	26 kB	2023-03-07	2025-01-30
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18 Last Seen2025-01-30 15:49 Times Seen1752 Hash a912e7afe74b51fdd03b28bf67e7d409 85004dfe087af5a730261c85262661d89b3d2516 706b3882753d8f81cfcf35aa2623303b1b380c8106686a4ad12a1fae23cf4650 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 3fb1f9b7af596defa36285f23285a032	2.1 kB	2024-08-20 17:08	2024-08-20 17:08
Pretty Observations First Seen2024-08-20 17:08 Last Seen2024-08-20 17:08 Times Seen1 Hash 3fb1f9b7af596defa36285f23285a032 0a955c7038ba4ccd8c80fc48ab8b517e85f7a648 fdda7b2e72229fcef081bc9fdfb8ed7e52b7c7dd09bd38d8376c3ad130c855f1 Loading...

		Size	First Seen	Last Seen
	#1 Write - 31c9da99d87f30d4105f391c11ae8757	128 B	2023-08-25 09:27	2024-08-21 08:08
Pretty Observations First Seen2023-08-25 09:27 Last Seen2024-08-21 08:08 Times Seen183 Hash 31c9da99d87f30d4105f391c11ae8757 da2648a5466570fd4aa986282e122d12ab6b5648 1dbdd8a3b493ad2b2750901f83983de94b8f59db68ab58aebe45672fc4dba75d Loading...

	#2 Write - 2c8ef87725e24bb5d68d5a514b98b015	202 B	2023-09-25 18:05	2024-08-21 05:47
Pretty Observations First Seen2023-09-25 18:05 Last Seen2024-08-21 05:47 Times Seen20 Hash 2c8ef87725e24bb5d68d5a514b98b015 c73d7f9f64ecdd4f8b8e381d57531f5cd9012ae3 ecffee74e66a1dc196725d35fac1197343438d92a6f450d026989559c119f818 Loading...

	#3 Write - 4caf252d8b5f67a4a15a37b9a44e0a8a	51 kB	2023-05-22 08:22	2024-08-21 08:08
Pretty Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen191 Hash 4caf252d8b5f67a4a15a37b9a44e0a8a 0336cd0390878dffa987b70d66cd9181f975034e 3c2f3f2a1ab8a2ddae090dfc52981d4b729beacc08487c95eb64a83af9217bd8 Loading...

HTTP Transactions (168)

URL IP Response Size

www.googletagmanager.com/gtag/js?id=G-7NCJ73THPT

142.250.74.168

200 OK

86 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-7NCJ73THPT
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (3034)
Size
86 kB (85504 bytes)
Hash
509bbc3545807d97a1643feebac6b022
3f86a9375f8e9d0b8c35e0711773b168c208d5d3
3dd1856d86f3ddbb9179000dec299fe8c4742ed03d1f431501bce1e3f53a597b

HTTP Headers

GET /gtag/js?id=G-7NCJ73THPT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 22:44:25 GMT
expires: Fri, 01 Dec 2023 22:44:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 85504
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.4.6

192.185.106.252

200 OK

1.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.4.6
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (4310), with CRLF line terminators
Size
1.4 kB (1410 bytes)
Hash
b236fbc68ad6824d6fd4be9501a56ea5
5147f5e6779b335a45771a6a9ec9f0a1db8079ef
d49c9ad378618e0a0eb8e6fca04c13f6005e13badf79e0c977d76d851f7aa60a

HTTP Headers

GET /wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.4.6 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1410
content-type: text/css
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1

192.185.106.252

200 OK

398 B

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text
Size
398 B (398 bytes)
Hash
4f140b946bdc4cb833896a992db68c6d
52d6c64f9c5478bb70604068a66f06283ecff968
f8f90d1cacc59cf90886948787ef5c723b8de9e41092285611f2f915b5996ef2

HTTP Headers

GET /wp-content/themes/vugla/style.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 24 Mar 2020 17:57:12 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 398
content-type: text/css
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=6.4.1

192.185.106.252

200 OK

320 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
320 B (320 bytes)
Hash
199decab27dd471d35814631e71e6fea
42c2847529b6859230bc2f4e8e6432805a06148b
7279594a46188e3246db42ffd4c609fc254c6fa06bfca8b72dd82e63fa4e6385

HTTP Headers

GET /wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 26 May 2014 20:39:02 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 320
content-type: text/css
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

apis.google.com/js/plusone.js

142.250.74.78

200 OK

22 kB

URL GET HTTP/2
apis.google.com/js/plusone.js
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint06:87:C0:63:02:21:98:02:BD:FC:A0:11:93:E9:3A:9F:51:21:06:D8
ValidityMon, 23 Oct 2023 11:25:10 GMT - Mon, 15 Jan 2024 11:25:09 GMT

File type
ASCII text, with very long lines (2664)
Size
22 kB (21930 bytes)
Hash
12476fdc6b8599d03eac729748337611
7a15dc04ad6e77026bf45927b78247411e3e0466
c5be6532f19ca90fb5966ed89be694f2bc2cded1e443d3489467cb28cd69af43

HTTP Headers

GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 21930
date: Fri, 01 Dec 2023 22:44:25 GMT
expires: Fri, 01 Dec 2023 22:44:25 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "b82ec1e6cb6f99ed"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=KM2NEkByn1mlPV0-XrMOV0YwewBIy9JydYJpHqYKNss0NCmXX7rJ_ZKZKZn-e8UVq5GTPG7EsgX_TYu5c24PuRxOxbIOLIQd4-6xkPLLURz-4BN_XeZEjzgOFNTQ2nBuACnrBOTMeyP-i8j947J_SdZLPwnPj1Vm6EUYwKAsU5Q; expires=Sat, 01-Jun-2024 22:44:25 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/style/video-js.css?ver=6.4.1

192.185.106.252

200 OK

14 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/style/video-js.css?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
Unicode text, UTF-8 text, with very long lines (5844)
Size
14 kB (13761 bytes)
Hash
514fccb15bdc95ea2c2b6fddaded8ecc
4c999194bb19b83cc85f40621fa1c74cd1a4cbf7
d86730f73982f170cb0943d0d47c3c2520743d6a3d6cf5330cde12667df675ca

HTTP Headers

GET /wp-content/plugins/vn-video-player/style/video-js.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 13761
content-type: text/css
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=6.4.1

192.185.106.252

200 OK

89 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
89 B (89 bytes)
Hash
b20aaffdf9d8e1f413b536edb9d1b649
0f3afd6ef6940700eb7f245629d1b79c52f45b47
9534982bd24eaa3205ac2e5a4dbd6a16a3129b70df981f422562ef3a30ade7cd

HTTP Headers

GET /wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:50:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 89
content-type: text/css
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/style/theme-city.css?ver=6.4.1

192.185.106.252

200 OK

733 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/style/theme-city.css?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (2553), with no line terminators
Size
733 B (733 bytes)
Hash
229bf132659b3607e05296743613ecca
2f498516b73ae5f087904669ccd6b3eb57054711
73214adfea5dc8d2ab7aae66baec56aab47e70224557c08f424b80909d1acd7c

HTTP Headers

GET /wp-content/plugins/vn-video-player/style/theme-city.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 733
content-type: text/css
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.kursnalista.co/banners/banners.js

192.185.106.47

200 OK

1.3 kB

URL GET HTTP/2
www.kursnalista.co/banners/banners.js
IP
192.185.106.47:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.kursnalista.co
Fingerprint1C:D4:9B:DE:4F:51:D3:F0:32:B2:6C:A1:1C:03:E2:3E:18:FC:D4:2A
ValidityMon, 20 Nov 2023 10:01:16 GMT - Sun, 18 Feb 2024 10:01:15 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (394), with CRLF line terminators
Size
1.3 kB (1261 bytes)
Hash
0fa58c243ecc9c6ff829da27563c78c4
771e757dcaddc90a127b557e6a8a69b9dfe4767d
4631955f687225007a1227be7e662f1f45798c13a573f70670e748ff50aa194b

HTTP Headers

GET /banners/banners.js HTTP/1.1
Host: www.kursnalista.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sun, 10 Jul 2022 10:44:43 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1261
content-type: application/javascript
date: Fri, 01 Dec 2023 22:44:26 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

192.185.106.252

200 OK

5.4 kB

URL GET HTTP/2
www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (13479)
Size
5.4 kB (5422 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 5422
content-type: application/javascript
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.3

192.185.106.252

409 Conflict

83 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.3
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 409 Conflict
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1

192.185.106.252

200 OK

7.0 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text, with very long lines (14641), with CRLF line terminators
Size
7.0 kB (6964 bytes)
Hash
ad955f14cdcc21d58014f25ab7c8d46d
8915b95d672d54be6fb01a239088aba305d4798e
d6304e162f8fe5054a4c5430d2f1d78ea2ad54c1ff61ea708d148bf385312407

HTTP Headers

GET /wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 12:00:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 6964
content-type: application/javascript
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js

173.233.137.52

200 OK

9.3 kB

URL GET HTTP/1.1
pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js
IP
173.233.137.52:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectalternativecpmgate.com
FingerprintC9:1F:74:2C:C9:F2:3A:E6:2D:4F:6C:DC:DD:18:6E:93:10:75:9E:24
ValidityFri, 20 Oct 2023 06:02:37 GMT - Thu, 18 Jan 2024 06:02:36 GMT

File type
Unicode text, UTF-8 text, with very long lines (25099), with no line terminators
Size
9.3 kB (9280 bytes)
Hash
10a74ed89f6bdb373f3a7fa2660e42f1
dae3420e64712b2c342761c76d2b699e3555c1b0
0533499885f1cd8eb580f8b2d2c26ce0575d75e6f339e5668765c557aea1c4b0

HTTP Headers

GET /c9123167a2366d360cd4d80dad2ac358/invoke.js HTTP/1.1
Host: pl16411290.alternativecpmgate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 01 Dec 2023 22:44:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c69fa9be1527bf4a478cac1e803c31bf
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6

192.185.106.252

200 OK

8.6 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
Unicode text, UTF-8 text, with very long lines (629), with CRLF line terminators
Size
8.6 kB (8560 bytes)
Hash
68f8af044f685b84c7d49ac2356acabf
585889874b36224e980f4d285044ec0fb478dc7c
9fe6a07f596d507305d1480e6bb301d04cbf5ef8660b24b9fa411e39607a7ab5

HTTP Headers

GET /wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 8560
content-type: application/javascript
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/mobile-share/whatsapp-64x64.png

192.185.106.252

200 OK

5.9 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/mobile-share/whatsapp-64x64.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
5.9 kB (5880 bytes)
Hash
616a93e26f2d9261cd8412a8741f7be8
5fbfd88e502bcc766a9c9ef1d1751ed16ce1197c
306accb5ad46635aeb9481a9bc934c14ae474e924ec52b6673141c5acacd800d

HTTP Headers

GET /wp-content/themes/vugla/images/mobile-share/whatsapp-64x64.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 22 Dec 2016 10:00:28 GMT
accept-ranges: bytes
content-length: 5880
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/reddit.png

192.185.106.252

200 OK

2.3 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/reddit.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2328 bytes)
Hash
91d33236832e22fe9743606623bd001a
d7101e60e49e86dbe1f34876228aa6831ad568f7
5571cdc5e0d90001474bf488c142929a02a39e55a4a7f61c44d1f94a4087eda1

HTTP Headers

GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/reddit.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 2328
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/logo.png

192.185.106.252

200 OK

7.9 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/logo.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 254 x 96, 8-bit/color RGBA, non-interlaced\012- data
Size
7.9 kB (7870 bytes)
Hash
f8e78d7eed20f4d77ca41cbf9700c0fa
9c40c7c5ae212e070b2aceda05b7e34de143a670
cf314f8938fb5d378e49a7e09683a206e244024b7ca3a7ec1676f22804285ca7

HTTP Headers

GET /wp-content/themes/vugla/images/logo.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 18 Nov 2013 11:35:09 GMT
accept-ranges: bytes
content-length: 7870
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/kranjska-gora-webcam-150x150.jpg

192.185.106.252

200 OK

6.0 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/kranjska-gora-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
6.0 kB (6044 bytes)
Hash
989b60424d56f5946b48524e7bea5fa1
86ea5ad56aaa32d89398f3dc2b52c6cac6880c87
76c00718e82cff5e59d381080695ededa0b3173ea9fea5d64b13e19ef66bd5ea

HTTP Headers

GET /wp-content/uploads/2021/11/kranjska-gora-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sun, 28 Nov 2021 10:20:29 GMT
accept-ranges: bytes
content-length: 6044
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/linkedin.png

192.185.106.252

200 OK

725 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/linkedin.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Size
725 B (725 bytes)
Hash
5da9fb18cfc9264a6e95b4a8bf4d2fcb
7bb78a36bc621ea268a0dad519c9c5c539e751ce
c6e399926b1aeb3634681cf7eb6af4e355325a6b2b6f8a89ad65ece3523fab18

HTTP Headers

GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/linkedin.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 725
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/venice-grand-canal-webcam-150x150.jpg

192.185.106.252

200 OK

8.2 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/venice-grand-canal-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
8.2 kB (8225 bytes)
Hash
865eb6d2d9e49679aeb404a873622d1a
611dad75aa193ae50c30b004c113d85accb73096
9ca91a22bac7e3c47364e0df7b66b518672b7d5c85f21cb5be3a952dcdc7142e

HTTP Headers

GET /wp-content/uploads/2021/11/venice-grand-canal-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sun, 28 Nov 2021 10:41:10 GMT
accept-ranges: bytes
content-length: 8225
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/backa-west-ham-golovi-30-11-2023-150x150.jpg

192.185.106.252

200 OK

4.2 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/backa-west-ham-golovi-30-11-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
4.2 kB (4163 bytes)
Hash
d2944a2988ea437dd47e366c35318287
bb2ce83b81e69d624aebf85a53d328b79e794fe0
3e810cdaa1d877d350dcc84007411d3df081852910972b4cbae76eccbc14a39d

HTTP Headers

GET /wp-content/uploads/2023/12/backa-west-ham-golovi-30-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 30 Nov 2023 23:14:23 GMT
accept-ranges: bytes
content-length: 4163
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/mobile-share/viber-64x64.png

192.185.106.252

200 OK

7.1 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/mobile-share/viber-64x64.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
7.1 kB (7120 bytes)
Hash
de186be4358ae6892385bcb78cc79b01
d933c306c857b9e84e321c4756d384a6e8093da2
c912b95fc0e537dbd5d103172a9ad3df2a3c8ad4ce5e6d6cebbaf31d7f6d58be

HTTP Headers

GET /wp-content/themes/vugla/images/mobile-share/viber-64x64.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 22 Dec 2016 10:00:29 GMT
accept-ranges: bytes
content-length: 7120
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700

142.250.74.106

200 OK

3.4 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
gzip compressed data, max compression\012- data
Size
3.4 kB (3386 bytes)
Hash
b63b99f1954070195c741d9eff02d806
36c5fb6e7e807c672da5cfef5e14cb46fd1f018d
ce411a0daa0c10181083d05b3bf36b582db39621ab0a7e8327885fbaeb0ca93a

HTTP Headers

GET /css?family=Open+Sans:400italic,700italic,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Dec 2023 22:44:25 GMT
date: Fri, 01 Dec 2023 22:44:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/split-trogir-katedrala-svetog-lorenca-webcam-150x150.jpg

192.185.106.252

200 OK

6.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/split-trogir-katedrala-svetog-lorenca-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
6.7 kB (6683 bytes)
Hash
728ab77212729fa32398d11c83324eeb
61d9572c3b12309d67ba45cc3928cc83576580a0
687cd6500754dc82b7d76b398fd1fe515f4f1d91dc1e2c2a34bf5b6a911a9b3e

HTTP Headers

GET /wp-content/uploads/2021/11/split-trogir-katedrala-svetog-lorenca-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 30 Nov 2021 13:49:24 GMT
accept-ranges: bytes
content-length: 6683
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js

192.243.59.12

200 OK

15 kB

URL GET HTTP/1.1
pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectpasstechusa.com
FingerprintF4:5F:CD:11:B9:E4:E0:B6:E3:01:2A:A2:FB:0E:11:26:44:B4:D0:9D
ValidityFri, 13 Oct 2023 07:12:41 GMT - Thu, 11 Jan 2024 07:12:40 GMT

File type
ASCII text, with very long lines (42760), with no line terminators
Size
15 kB (15423 bytes)
Hash
0a2b7edd37bb8c698fb2e852e86eb1c5
0ad77ae75449792ec91bd77d7d82ca5b7624c990
f904e7df23847f72f87373af069556c0b3d8c0ab035c400bc6a34d5f9bffce66

HTTP Headers

GET /d1/37/02/d137022925bcc2a680f8a4476ff94144.js HTTP/1.1
Host: pl15560907.passtechusa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 01 Dec 2023 22:44:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 37814a15085a5cd9b4890e9af31bce84
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.vugla.com/wp-content/uploads/2023/11/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru-620x350.jpg

192.185.106.252

200 OK

32 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/11/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru-620x350.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 620x350, components 3\012- data
Size
32 kB (32255 bytes)
Hash
0598414630b396dcde7ca0cf5f51515a
63fa53e75427f12483ea95a71f17100dedcd6c38
090df18ab0220f41ab8ff946721ff331eb7923a4bc52e56a79a59359994885e0

HTTP Headers

GET /wp-content/uploads/2023/11/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru-620x350.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 15 Nov 2023 10:54:04 GMT
accept-ranges: bytes
content-length: 32255
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/venice-rialto-bridge-webcam-150x150.jpg

192.185.106.252

200 OK

7.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/venice-rialto-bridge-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
7.4 kB (7424 bytes)
Hash
bc56c6497c2c5b009e93d949e6d0fb55
c51a8c4cf1177fc6a67eaaca4ff9d4000b7d2c2e
48b7b6fd0ffa2ef0fb13218e8ecce9f257553f8753f240ee673c7cf5bbebfbf6

HTTP Headers

GET /wp-content/uploads/2021/11/venice-rialto-bridge-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sun, 28 Nov 2021 10:48:30 GMT
accept-ranges: bytes
content-length: 7424
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6

192.185.106.252

200 OK

4.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (12917), with CRLF line terminators
Size
4.7 kB (4708 bytes)
Hash
416d2c5e5425c640a7d63f25e0376fd6
a95b218161d94bdb148d108aedf065b4a4762045
b875bead01dfa1b02a553e8efda0f3a65d39da24f19ad37af95f06795eee76dc

HTTP Headers

GET /wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 4708
content-type: application/javascript
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-includes/js/underscore.min.js?ver=1.13.4

192.185.106.252

200 OK

8.3 kB

URL GET HTTP/2
www.vugla.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (18798)
Size
8.3 kB (8305 bytes)
Hash
f88d5720bb454ed5d204cbdb56901f6b
f1952292fde4b15936e9aac16b2b9896684db95b
726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 8305
content-type: application/javascript
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1

192.185.106.252

200 OK

8.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (17739), with CRLF line terminators
Size
8.7 kB (8747 bytes)
Hash
3229aa93c44fa4628707e80959a97bc1
5a2d4dbc4d1df02e7a386489e7b5c5a9e22dd40f
095834cc86bd018fdb4a9e31c99f9f96904b819be2b9dc16b3390383288d4d90

HTTP Headers

GET /wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 8747
content-type: application/javascript
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/11/bayern-munich-fc-copenhagen-golovi-29-11-2023-150x150.jpg

192.185.106.252

200 OK

6.5 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/11/bayern-munich-fc-copenhagen-golovi-29-11-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
6.5 kB (6455 bytes)
Hash
7b7ac3fe315dc9eb4b7939372ed450e9
6a2a2a5470e3648a563cce65ac6d1cd6ac8428ee
54d808ec3b10ea6b3b241b4703caabe1170aa6d07e91c54cb0b68784478ad51d

HTTP Headers

GET /wp-content/uploads/2023/11/bayern-munich-fc-copenhagen-golovi-29-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 30 Nov 2023 19:26:18 GMT
accept-ranges: bytes
content-length: 6455
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/cinque-terre-panorama-del-borgo-webcam-150x150.jpg

192.185.106.252

200 OK

5.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/cinque-terre-panorama-del-borgo-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
5.7 kB (5748 bytes)
Hash
92775e7877cd37ac74a0d777b93320ea
3ebbf0f353f119c3ee27c1b703e5ea4496344a83
1e0651ce45654ff7396f9da4ca4059cf04fe122d2f3749a25e5b77a069815f6f

HTTP Headers

GET /wp-content/uploads/2021/11/cinque-terre-panorama-del-borgo-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 27 Nov 2021 11:31:19 GMT
accept-ranges: bytes
content-length: 5748
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/mail.png

192.185.106.252

200 OK

1.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/mail.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1659 bytes)
Hash
42bec42b54ef1bb6bb9596efa815973d
88145ca02b72936eb430e818cd7a80f189ca9166
154a5b712eedff5cdee156292d8795dd139a350c7ed09982e5faec55a0ab2f42

HTTP Headers

GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/mail.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 1659
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/facebook.png

192.185.106.252

200 OK

584 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/facebook.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Size
584 B (584 bytes)
Hash
114d84e23ab95df71589ab5e67b93b85
2270334f4b83486ceaab53133e4706537c16f38a
1353c448068301ee8534bd1d3c8eb214863afa0b9f716222dfe93e2739cffac2

HTTP Headers

GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/facebook.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 584
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/twitter.png

192.185.106.252

200 OK

1.8 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/twitter.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1762 bytes)
Hash
9cb3d67f468539abb72395dc73934190
9928de37e21649c1799e3287a13f897a34aab5e1
04a457e988270cb1dc76bd57ac8e62fddf02c02b618a1ac6cb0880b93633f5e0

HTTP Headers

GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/twitter.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 1762
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/11/benfica-inter-golovi-29-11-2023-150x150.jpg

192.185.106.252

200 OK

4.6 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/11/benfica-inter-golovi-29-11-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
4.6 kB (4550 bytes)
Hash
f25ddb130bb8a894d4b33c0b2dc7f1c1
c385eb5107fcb92146738fe1846ce4b33cd41659
3c03f20d9971177deee5a25b222a9af1dc8eb62a5c4b24fbde4ac84ba7360421

HTTP Headers

GET /wp-content/uploads/2023/11/benfica-inter-golovi-29-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 30 Nov 2023 19:26:20 GMT
accept-ranges: bytes
content-length: 4550
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/11/mallorca-cadiz-golovi-29-11-2023-150x150.jpg

192.185.106.252

200 OK

3.2 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/11/mallorca-cadiz-golovi-29-11-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
3.2 kB (3206 bytes)
Hash
c4ac3f2f10ead27a6c470fae8fc5c5e7
33d7f8215ac9949c54459676bf8048df6d51d73b
ba12aca2f09ad73a05991204f75c235aedee8fd2265f66d6d5e26384cea71e34

HTTP Headers

GET /wp-content/uploads/2023/11/mallorca-cadiz-golovi-29-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 30 Nov 2023 19:26:29 GMT
accept-ranges: bytes
content-length: 3206
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html

192.185.106.252

200 OK

76 kB

URL User Request GET HTTP/2
www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
gzip compressed data, from Unix\012- data
Size
76 kB (75849 bytes)
Hash
ab9d243b802d0e7e44ef59919695703e
b04994c0a497b49f98897eea8f54cc17dd5d4c84
b56fb63c9e706d22d33a187200b8c0d9fdc605498bf26480e1476018f088d6f8

HTTP Headers

GET /srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-pingback: https://www.vugla.com/xmlrpc.php
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/", <https://www.vugla.com/wp-json/wp/v2/posts/571237>; rel="alternate"; type="application/json", <https://www.vugla.com/?p=571237>; rel=shortlink
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=10800
expires: Sat, 02 Dec 2023 01:44:23 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: text/html; charset=UTF-8
date: Fri, 01 Dec 2023 22:44:23 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/las-vegas-treasure-island-webcam-150x150.jpg

192.185.106.252

200 OK

8.1 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/las-vegas-treasure-island-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
8.1 kB (8053 bytes)
Hash
f66f3bb3900915b883738cae9040d613
76772728b39c5dda3c2cacf844d4ebb7e634a9bd
982528ea360e4734e63d9c84512638e8948df3ae8237b01912b456abaf9a54bb

HTTP Headers

GET /wp-content/uploads/2021/11/las-vegas-treasure-island-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Nov 2021 18:20:33 GMT
accept-ranges: bytes
content-length: 8053
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/11/real-sociedad-salzburg-golovi-29-11-2023-150x150.jpg

192.185.106.252

200 OK

5.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/11/real-sociedad-salzburg-golovi-29-11-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
5.4 kB (5353 bytes)
Hash
3dd0b6a881bcbf037b6fc140e05dc03e
88a53f3308d933fe32230071702ebd547d7ea65f
2acd2ffefda761e9164ef6e6107caed96686c26e1af57498ba71d448c6c1766d

HTTP Headers

GET /wp-content/uploads/2023/11/real-sociedad-salzburg-golovi-29-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 30 Nov 2023 19:26:27 GMT
accept-ranges: bytes
content-length: 5353
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:27 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3

192.185.106.252

409 Conflict

83 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 409 Conflict
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3

192.185.106.252

409 Conflict

83 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 409 Conflict
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_reset.css

192.185.106.252

200 OK

1.2 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_reset.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
1.2 kB (1152 bytes)
Hash
b5ae6c0ccd961d29a2924b03b0cbdd6e
3293dc40aa870c1cf79180eb7bd5c2ff28f3bd0a
0838fff76cfa3bad87963e64a610ea8d60b2dc8d0781a7531a2385f65de1ab2f

HTTP Headers

GET /wp-content/themes/vugla/css/style_reset.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:34 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1152
content-type: text/css
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/elastislide.css

192.185.106.252

200 OK

674 B

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/elastislide.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
674 B (674 bytes)
Hash
fac0ce1d7bcbe2001f963e204b03b3a4
fe650403bcbc74567e384eb3762c874835f6cad1
d8dcd83dfb6275b55ae8e495f6924dcfc52024a52f5639446a00de846ec7c7b9

HTTP Headers

GET /wp-content/themes/vugla/css/elastislide.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:21 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 674
content-type: text/css
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/tabber.css

192.185.106.252

200 OK

1.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/tabber.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
1.7 kB (1710 bytes)
Hash
a3e36a4db7b488bd984dd17c6e17cf63
33e7b11f7e1f149f954b6d938db9e36599816e8a
3609900b90f9835e1525c38bb6b1bcbffea0a14894799e54a07c2a9df09cb03d

HTTP Headers

GET /wp-content/themes/vugla/css/tabber.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1710
content-type: text/css
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_1024.css

192.185.106.252

200 OK

2.3 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_1024.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
2.3 kB (2267 bytes)
Hash
7f4d3aa769cc8bb0e3c77745ff5c9d64
2da3458d48663a397a5a42c3bb52777bc5889dc0
7a6c4ca634ef663c6a3887df843fc04c40632ff46c53eb9f7d35bfcde21453b4

HTTP Headers

GET /wp-content/themes/vugla/css/style_1024.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:28 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 2267
content-type: text/css
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/wpp.css

192.185.106.252

200 OK

357 B

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/wpp.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
357 B (357 bytes)
Hash
6b44660f121f565e2aab91b7b321ff28
62628718b7edeaccc74d1943d36bc1e0c9d16512
467aa063b813fd2fc1b3ebabc45d6e840d807dad90c169f0ee12f93bcf667851

HTTP Headers

GET /wp-content/themes/vugla/css/wpp.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 357
content-type: text/css
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_400.css

192.185.106.252

200 OK

2.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_400.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2412 bytes)
Hash
1150741460f65df53d2a23c598e5807c
5520fd0a709fdfdc80089452403dbfa49b79f7d4
e0e19f2d1b42abb0a12a95da1488a3fb300ceeb34984bc9e321063184acb019b

HTTP Headers

GET /wp-content/themes/vugla/css/style_400.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:30 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 2412
content-type: text/css
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_768.css

192.185.106.252

200 OK

2.5 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_768.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (408), with CRLF line terminators
Size
2.5 kB (2538 bytes)
Hash
14b717ed0c77c605f84b5b9a6b9892e9
5723bca38e18b8155b26f923590a05657911a377
6f37f5624b7bc60317a9c37a473fdf7dc34474d5f52cf169a7d52b35ca1dc0dd

HTTP Headers

GET /wp-content/themes/vugla/css/style_768.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:32 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 2538
content-type: text/css
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1

192.185.106.252

200 OK

1.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text
Size
1.4 kB (1389 bytes)
Hash
6755415003869bd599c3fae8e9792027
57946a22c79654014eb00fb548f727d302221873
07f79fbda35a2bf03f2940978670a2a53cf21e490ecce887bf92fc2e3f359293

HTTP Headers

GET /wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:28 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1389
content-type: application/javascript
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/11/real-madrid-napoli-golovi-29-11-2023-150x150.jpg

192.185.106.252

200 OK

7.0 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/11/real-madrid-napoli-golovi-29-11-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
7.0 kB (7027 bytes)
Hash
4776d86e08cc2943fbe3b675ec2c3727
692544e5a085db465793d417ab2c5e74f3551d73
9635934bdad0b3ce053f55c3dc84166f64e4a3ca982589117b9b79a01989d46e

HTTP Headers

GET /wp-content/uploads/2023/11/real-madrid-napoli-golovi-29-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 30 Nov 2023 19:26:24 GMT
accept-ranges: bytes
content-length: 7027
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:27 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/flexslider.css

192.185.106.252

200 OK

1.5 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/flexslider.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
1.5 kB (1526 bytes)
Hash
aed0d9c2792c1ca777bfce04eb08ae7a
64e98271e4539dbf8819fa9d801017423c9bc30b
7f7b09426068a9bacddeefcf29f89063307fdc903ac45a569853b8c452d9b62d

HTTP Headers

GET /wp-content/themes/vugla/css/flexslider.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 08 May 2014 09:18:47 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1526
content-type: text/css
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_320.css

192.185.106.252

200 OK

2.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_320.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2413 bytes)
Hash
cc437b9ea4ed072bf7636ec9013f026d
df8db436e5193d474b97364dc0cd532a9b390fe5
4e92c5bc2c3f90209e1bec52f50461d8c04d82a539296918f0db0c61af63aab2

HTTP Headers

GET /wp-content/themes/vugla/css/style_320.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:29 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 2413
content-type: text/css
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1

192.185.106.252

200 OK

106 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
106 B (106 bytes)
Hash
64829824ee643f09fb3821dc49b3089a
446608ff9f4128b9503476135a8c28599f8d5c2e
0b967c52b8e899c4266110c97fa50018d61ccf1365144d16f09f901523d48c95

HTTP Headers

GET /wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:31 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 106
content-type: application/javascript
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Size
48 kB (48432 bytes)
Hash
e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:00:58 GMT
expires: Fri, 29 Nov 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 150210
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Size
48 kB (48432 bytes)
Hash
e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:00:58 GMT
expires: Fri, 29 Nov 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 150210
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

216.58.207.227

200 OK

50 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50368, version 1.0\012- data
Size
50 kB (50368 bytes)
Hash
4facfd6ff39e147b7e39c4b1abe4117d
0f7c0d978c209d21eb3f55950fc43e77c196ec3b
a246c4de8a0f1f1fdb6ee52565018dc341063aa9efe8481034bc3ef7d697e334

HTTP Headers

GET /s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:48:09 GMT
expires: Fri, 29 Nov 2024 04:48:09 GMT
cache-control: public, max-age=31536000
age: 150979
last-modified: Thu, 14 Sep 2023 01:04:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

vaugroar.com/pfe/current/tag.min.js?z=1548391

139.45.197.250

200 OK

6.3 kB

URL GET HTTP/2
vaugroar.com/pfe/current/tag.min.js?z=1548391
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectvaugroar.com
FingerprintF5:48:7D:7C:B6:28:8D:55:D3:7D:CF:03:2F:84:BE:B7:FD:20:F0:EE
ValiditySun, 12 Nov 2023 05:15:08 GMT - Sat, 10 Feb 2024 05:15:07 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
6.3 kB (6283 bytes)
Hash
9ba49c43fdf9ce2312d7f6e16dff154e
5e11af5746122f1b679da4b83d47bbcd0f7bc054
6adc5189a60839fdad3b1ad3d9bb29d8a81e9e04f89449e54d11eaeca9a35e71

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pfe/current/tag.min.js?z=1548391 HTTP/1.1
Host: vaugroar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:26 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 17:44:23 GMT
etag: W/"6564d577-33f4"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html

192.185.106.252

200 OK

0 B

URL User Request GET HTTP/2
www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
x-pingback: https://www.vugla.com/xmlrpc.php
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/", <https://www.vugla.com/wp-json/wp/v2/posts/571237>; rel="alternate"; type="application/json", <https://www.vugla.com/?p=571237>; rel=shortlink
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=10800
expires: Sat, 02 Dec 2023 01:44:28 GMT
vary: User-Agent
referrer-policy: 
content-type: text/html; charset=UTF-8
date: Fri, 01 Dec 2023 22:44:28 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1

192.185.106.252

200 OK

213 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
gzip compressed data, from Unix\012- data
Size
213 kB (212882 bytes)
Hash
1affb2ce78d646107e71a5745b17ce96
c0f41d52f96936e957f9e7a8cfc79ad6fe6e84eb
31d72e90e7f8a954bfee4ca6e0de778386be52e4d690c07db9b5020b0dcda7ec

HTTP Headers

GET /wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:30 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: application/javascript
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

my.rtmark.net/gid.js

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
49571dc0c0a7220a760411f2d4c8c622
4a3948fbe3c9103700bb35e67b1695d7b56685e7
5e8b78e40e205661cfacb1e2c3af9cca5672fb93e8cfc7479a17dd0e20d5064f

HTTP Headers

GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=b6d568e643b941ca8a347fc1a906f202; expires=Sat, 30 Nov 2024 22:44:29 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f

139.45.195.254

200 OK

12 B

URL POST HTTP/1.1
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
139.45.195.254:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerSectigo Limited
Subjectfleraprt.com
FingerprintA4:AF:A0:00:99:C9:85:E5:30:F6:F3:F2:B5:4F:AE:4F:D0:46:74:A9
ValidityMon, 09 Jan 2023 00:00:00 GMT - Sun, 14 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1749
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 01 Dec 2023 22:45:07 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

www.variouscreativeformats.com/c3b6bab9a3e6c622d733121998e0014d/invoke.js

173.233.137.44

200 OK

11 kB

URL GET HTTP/1.1
www.variouscreativeformats.com/c3b6bab9a3e6c622d733121998e0014d/invoke.js
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.variouscreativeformats.com
Fingerprint8B:21:A3:61:01:C7:2D:29:AF:11:C7:A7:A5:5E:E5:FD:AF:0E:05:43
ValidityMon, 27 Nov 2023 07:10:34 GMT - Sun, 25 Feb 2024 07:10:33 GMT

File type
exported SGML document, ASCII text, with very long lines (29643), with no line terminators
Size
11 kB (10916 bytes)
Hash
223406d9dbf6d31ee7d9236d1c95ea29
8a45024df7b5013212b1fd369c5670655bd55b66
8eb1cd23b38e67fb1ec812debb06ff9f68891aeecaf2edeba8c0a73081c27ed0

HTTP Headers

GET /c3b6bab9a3e6c622d733121998e0014d/invoke.js HTTP/1.1
Host: www.variouscreativeformats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 01 Dec 2023 22:44:29 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a3627a9284d8fc04923582c6537cb420
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

eehuzaih.com/400/5005565

139.45.197.237

200 OK

34 kB

URL GET HTTP/2
eehuzaih.com/400/5005565
IP
139.45.197.237:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
34 kB (34360 bytes)
Hash
bfcb1f9732e0bc6c6b8c693ad5bbb883
56eebfa8f812825cee8531911a7699ca5fcc4563
4eeb16bcdf598effbbe63094ecd08cee67f2bf795fb2a2dad9b8f5f463ef4888

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /400/5005565 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:28 GMT
content-type: application/javascript
x-trace-id: 1f591f4f4e916cacc215fc051cc0a4a4
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=8667eeaff14a45f0b3986426e7e07dd8; expires=Sat, 30 Nov 2024 22:44:28 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-7NCJ73THPT&gtm=45je3bt0v879882835&_p=1701470673047&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=826617689.1701470673&ul=en-us&sr=1280x1024&_s=1&sid=1701470673&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&dt=Srpski%20vatrogasci%20se%20bore%20sa%20stihijom%20Buknuo%20je%20na%20ulici%2C%20oni%20rade%20sve%20da%20ugase%20vatru!%20-%20Vugla&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=5976

216.239.32.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-7NCJ73THPT&gtm=45je3bt0v879882835&_p=1701470673047&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=826617689.1701470673&ul=en-us&sr=1280x1024&_s=1&sid=1701470673&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&dt=Srpski%20vatrogasci%20se%20bore%20sa%20stihijom%20Buknuo%20je%20na%20ulici%2C%20oni%20rade%20sve%20da%20ugase%20vatru!%20-%20Vugla&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=5976
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-7NCJ73THPT&gtm=45je3bt0v879882835&_p=1701470673047&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=826617689.1701470673&ul=en-us&sr=1280x1024&_s=1&sid=1701470673&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&dt=Srpski%20vatrogasci%20se%20bore%20sa%20stihijom%20Buknuo%20je%20na%20ulici%2C%20oni%20rade%20sve%20da%20ugase%20vatru!%20-%20Vugla&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=5976 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.vugla.com
date: Fri, 01 Dec 2023 22:44:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2

216.58.207.227

200 OK

35 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 35120, version 1.0\012- data
Size
35 kB (35120 bytes)
Hash
dd986ff1050050613be051863773d677
51a12487fd51cc02ca54a984f82d63318807ca2e
d9784dbf11886ea032ffbd00f499d333519babe001eacc19df7ab89de17bec47

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:36:49 GMT
expires: Thu, 28 Nov 2024 21:36:49 GMT
cache-control: public, max-age=31536000
age: 176860
last-modified: Thu, 14 Sep 2023 01:03:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2

216.58.207.227

200 OK

35 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 35120, version 1.0\012- data
Size
35 kB (35120 bytes)
Hash
dd986ff1050050613be051863773d677
51a12487fd51cc02ca54a984f82d63318807ca2e
d9784dbf11886ea032ffbd00f499d333519babe001eacc19df7ab89de17bec47

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:36:49 GMT
expires: Thu, 28 Nov 2024 21:36:49 GMT
cache-control: public, max-age=31536000
age: 176860
last-modified: Thu, 14 Sep 2023 01:03:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

216.58.207.227

200 OK

50 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50368, version 1.0\012- data
Size
50 kB (50368 bytes)
Hash
4facfd6ff39e147b7e39c4b1abe4117d
0f7c0d978c209d21eb3f55950fc43e77c196ec3b
a246c4de8a0f1f1fdb6ee52565018dc341063aa9efe8481034bc3ef7d697e334

HTTP Headers

GET /s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:48:09 GMT
expires: Fri, 29 Nov 2024 04:48:09 GMT
cache-control: public, max-age=31536000
age: 150980
last-modified: Thu, 14 Sep 2023 01:04:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

vaugroar.com/zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0&sw=3.1.471

139.45.197.250

200 OK

972 B

URL GET HTTP/2
vaugroar.com/zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0&sw=3.1.471
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectvaugroar.com
FingerprintF5:48:7D:7C:B6:28:8D:55:D3:7D:CF:03:2F:84:BE:B7:FD:20:F0:EE
ValiditySun, 12 Nov 2023 05:15:08 GMT - Sat, 10 Feb 2024 05:15:07 GMT

File type
JSON data\012- , ASCII text, with very long lines (971)
Size
972 B (972 bytes)
Hash
64f047fe127c40083700b04d3811ca27
8f6e71715f3ae8766c33ae08d590fdc202bd865d
0dd4bfd4e574ecf2df30bcd49a6afbc84ffe9a14227f17502561dfca63a51ac7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0&sw=3.1.471 HTTP/1.1
Host: vaugroar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: application/json; charset=utf-8
content-length: 972
x-trace-id: f91883ad58546c1e4a40459326be0c01
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5b7b378f2f2e1279be0c0f57ceb0cf93
f03e52739a3a7e746036c3b8b7c42015632a931a
a801964dabaa860b97b788b0dd71cc601c6b38279cf522be462c816352ce1265

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 01 Dec 2023 22:44:29 GMT
Last-Modified: Fri, 01 Dec 2023 22:25:22 GMT
Server: ECAcc (ska/F6AF)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kC3kaQDfRsr-2QMUeBli7xygEGgNGGlVyb0-92pXlOdHhbgc05Qi7w==
Age: 1147

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5b7b378f2f2e1279be0c0f57ceb0cf93
f03e52739a3a7e746036c3b8b7c42015632a931a
a801964dabaa860b97b788b0dd71cc601c6b38279cf522be462c816352ce1265

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 01 Dec 2023 22:44:29 GMT
Last-Modified: Fri, 01 Dec 2023 22:23:59 GMT
Server: ECAcc (ska/F7A7)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hNtXDIfx5Il9l_KbefzNeMEKptKwL8JZFkNdVp92OKUpjtF4CYfycA==
Age: 1230

proftrafficcounter.com/stats

18.157.203.0

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.157.203.0:443
ASN
#16509 AMAZON-02

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
157735dd335a88d033e1a992192f2f80
9df5576dec258e8b0de978fc2fb0c80780503b5d
6253566c081b1c4dfe00bb180b2623bf91e73d0fa9eeb5b6c14d1b1188fa87d2

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.vugla.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=18e01fa7-8824-4a6b-ab30-df6a7efe5452:1:1; expires=Mon, 28 Nov 2033 22:44:29 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

offerimage.com/www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg

172.67.22.216

200 OK

19 kB

URL GET HTTP/2
offerimage.com/www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg
IP
172.67.22.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Size
19 kB (19381 bytes)
Hash
71581bf2ce9a00138faf7dd80fe3e12e
56479135ed64bf23e1037067c0c87047eb8a414c
5d9f95c8c06343cc189b38268296615ed8816d8154b4b782ad0d62bedd23525e

HTTP Headers

GET /www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: image/jpeg
content-length: 19381
cache-control: max-age=86400
cf-bgj: h2pri
etag: "65674405-4bb5"
expires: Sat, 02 Dec 2023 14:07:34 GMT
last-modified: Wed, 29 Nov 2023 14:00:37 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 31015
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82eedae3fcfb5687-OSL
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

18.157.203.0

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.157.203.0:443
ASN
#16509 AMAZON-02

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
33e50898590f7f5673f1b07d6dfe96bb
6629743ea5787dfa326e4a1105c4aa464d402870
bdac39efdb65ff566b0f9ea8e3521e56c9ffc45ae6ce3d5e0112363134f71a82

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.vugla.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=dc9b743a-5379-4332-b3d1-91d80a130196:3:1; expires=Mon, 28 Nov 2033 22:44:29 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2013/11/bckg-vugla-dark.jpg

192.185.106.252

200 OK

267 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2013/11/bckg-vugla-dark.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2000x1200, components 3\012- data
Size
267 kB (267247 bytes)
Hash
11e97d76a4b329319978b9da6f46b5b0
ae03d14a5b568ed59c1772ee2065e160e93428ae
9fbe33f0e52a532495bb5d56584e250e0d3cf1acc5a04acb7cbb2e39bb6c6a42

HTTP Headers

GET /wp-content/uploads/2013/11/bckg-vugla-dark.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 20 Nov 2013 16:40:33 GMT
accept-ranges: bytes
content-length: 267247
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:28 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:28 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html

192.185.106.252

200 OK

0 B

URL User Request GET HTTP/2
www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
x-pingback: https://www.vugla.com/xmlrpc.php
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/", <https://www.vugla.com/wp-json/wp/v2/posts/571237>; rel="alternate"; type="application/json", <https://www.vugla.com/?p=571237>; rel=shortlink
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=10800
expires: Sat, 02 Dec 2023 01:44:28 GMT
vary: User-Agent
referrer-policy: 
content-type: text/html; charset=UTF-8
date: Fri, 01 Dec 2023 22:44:28 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/preloader.gif

192.185.106.252

200 OK

1.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/preloader.gif
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
1.7 kB (1737 bytes)
Hash
dd6b7b0bf5c3af22499abc0a9ee1e1b2
e8c0018145d616fac4deb460d9c1d9c9dd4d3302
0eddaab3b8cb0b15d81d62e5ae5960329c3e576ea78dc321b20734ab20271847

HTTP Headers

GET /wp-content/themes/vugla/images/preloader.gif HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:08 GMT
accept-ranges: bytes
content-length: 1737
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:28 GMT
referrer-policy: 
pragma: public
content-type: image/gif
date: Fri, 01 Dec 2023 22:44:28 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/search-arrow.png

192.185.106.252

200 OK

3.1 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/search-arrow.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 75 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
3.1 kB (3075 bytes)
Hash
3f8933cdf4d27e317eb59959257f8c7a
b16e414fcb1561603cbf4ac404ec8b6fae1563ff
167925a8f225d7fc340317265409496b2d90e4313bd7d70bca4262bb1477eaf0

HTTP Headers

GET /wp-content/themes/vugla/images/search-arrow.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:13 GMT
accept-ranges: bytes
content-length: 3075
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:28 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:28 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3

192.185.106.252

409 Conflict

83 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701470673.1.0.1701470673.60.0.0; _ga=GA1.1.826617689.1701470673
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 409 Conflict
date: Fri, 01 Dec 2023 22:44:29 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/small-social-sprite.png

192.185.106.252

200 OK

3.8 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/small-social-sprite.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 272 x 95, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3812 bytes)
Hash
1aabf6dabc51ca6168aa98fbecbf79e2
0e4cb499aff16fedb2097658da7d2baa1bdafaa8
09ac67d0b81afe77f52b59ee9abc68ba2dd7cf0ebbc85703c75a76c2586e93aa

HTTP Headers

GET /wp-content/themes/vugla/images/small-social-sprite.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: _ga_7NCJ73THPT=GS1.1.1701470673.1.0.1701470673.60.0.0; _ga=GA1.1.826617689.1701470673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:16 GMT
accept-ranges: bytes
content-length: 3812
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:29 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:29 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/top-arrow.png

192.185.106.252

200 OK

305 B

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/top-arrow.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 50 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
305 B (305 bytes)
Hash
1fe20be2c98304e84623d10905435835
7ba0264f96984d92cfe0750c802f9af1ee7cb88b
1c3cbd61a972428028066c1e9abcfa7c0ef37d3b1de39d7b09455177a94eec52

HTTP Headers

GET /wp-content/themes/vugla/images/top-arrow.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: _ga_7NCJ73THPT=GS1.1.1701470673.1.0.1701470673.60.0.0; _ga=GA1.1.826617689.1701470673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:25 GMT
accept-ranges: bytes
content-length: 305
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:29 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:29 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/video-nadzor-u-kragujevcu-jedan-od-servisa-pametnog-grada-ili-investicija-bez-pravnog-pokrica-290x166.jpg

192.185.106.252

200 OK

12 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/video-nadzor-u-kragujevcu-jedan-od-servisa-pametnog-grada-ili-investicija-bez-pravnog-pokrica-290x166.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, baseline, precision 8, 290x166, components 3\012- data
Size
12 kB (11514 bytes)
Hash
835fade62bfd507d0231f8a51e399ec7
ee8ab97cdef3c6679288f1c71746a8ebff9597d1
8b912f4adc17226eec4a06ed6ef3a8f5bc7412927c0ad70ee775faea980b77ea

HTTP Headers

GET /wp-content/uploads/2023/12/video-nadzor-u-kragujevcu-jedan-od-servisa-pametnog-grada-ili-investicija-bez-pravnog-pokrica-290x166.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701470673.1.0.1701470673.60.0.0; _ga=GA1.1.826617689.1701470673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 01 Dec 2023 09:54:49 GMT
accept-ranges: bytes
content-length: 11514
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:29 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:29 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/nis-domacin-lutkarima-iz-cele-srbije-za-4-dana-9-predstava-za-decu-290x166.jpg

192.185.106.252

200 OK

13 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/nis-domacin-lutkarima-iz-cele-srbije-za-4-dana-9-predstava-za-decu-290x166.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 290x166, components 3\012- data
Size
13 kB (12772 bytes)
Hash
124270245961192997c78172a566982c
5cc56efeb68f75b1a875839198b65a36c189a052
4b3b621f456969639d8fd79744c7296bfbf213cde867d49d882fe55f598f07e6

HTTP Headers

GET /wp-content/uploads/2023/12/nis-domacin-lutkarima-iz-cele-srbije-za-4-dana-9-predstava-za-decu-290x166.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701470673.1.0.1701470673.60.0.0; _ga=GA1.1.826617689.1701470673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 01 Dec 2023 10:54:22 GMT
accept-ranges: bytes
content-length: 12772
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:29 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:29 GMT
server: Apache
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=2b99b51a485e4c45a217726aa5936719&zoneId=1548391&checkDuplicate=true&ymid=&var=

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?pub=0&userId=2b99b51a485e4c45a217726aa5936719&zoneId=1548391&checkDuplicate=true&ymid=&var=
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
49571dc0c0a7220a760411f2d4c8c622
4a3948fbe3c9103700bb35e67b1695d7b56685e7
5e8b78e40e205661cfacb1e2c3af9cca5672fb93e8cfc7479a17dd0e20d5064f

HTTP Headers

GET /gid.js?pub=0&userId=2b99b51a485e4c45a217726aa5936719&zoneId=1548391&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Cookie: ID=b6d568e643b941ca8a347fc1a906f202
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=b6d568e643b941ca8a347fc1a906f202; expires=Sat, 30 Nov 2024 22:44:29 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

vaugroar.com/custom

139.45.197.250

200 OK

0 B

URL OPTIONS HTTP/2
vaugroar.com/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectvaugroar.com
FingerprintF5:48:7D:7C:B6:28:8D:55:D3:7D:CF:03:2F:84:BE:B7:FD:20:F0:EE
ValiditySun, 12 Nov 2023 05:15:08 GMT - Sat, 10 Feb 2024 05:15:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: vaugroar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/sns-o-aerozagadjenju-i-benefitima-kotlova-na-gas-o-situaciji-u-fabrici-zastava-oruzje-nemaju-saznanja-video-290x166.jpg

192.185.106.252

200 OK

12 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/sns-o-aerozagadjenju-i-benefitima-kotlova-na-gas-o-situaciji-u-fabrici-zastava-oruzje-nemaju-saznanja-video-290x166.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 290x166, components 3\012- data
Size
12 kB (12377 bytes)
Hash
815accd13e39cde331ff005e9a21e77b
062758803041f1cdcc2110e3d20d8b21c6bb144d
77a66d5457ccf5ff927e027949d6222b9931c2f85e05b22db711569ce66fb48c

HTTP Headers

GET /wp-content/uploads/2023/12/sns-o-aerozagadjenju-i-benefitima-kotlova-na-gas-o-situaciji-u-fabrici-zastava-oruzje-nemaju-saznanja-video-290x166.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701470673.1.0.1701470673.60.0.0; _ga=GA1.1.826617689.1701470673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 01 Dec 2023 09:54:44 GMT
accept-ranges: bytes
content-length: 12377
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:29 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:29 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/komunalni-servis-gradjevinska-sezona-traje-do-prvog-snega-290x166.jpg

192.185.106.252

200 OK

14 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/komunalni-servis-gradjevinska-sezona-traje-do-prvog-snega-290x166.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=ACDSee Pro 8, datetime=2023:11:30 11:31:25], baseline, precision 8, 290x166, components 3\012- data
Size
14 kB (14118 bytes)
Hash
5508ac80d5144e38fa12feb43dfb5594
aae497700e0347f5fd5c55b225b74b6b2c269dae
10d37f9b80e1db3632968ada6990b46368daa979dffbf19ffadbc933698c349b

HTTP Headers

GET /wp-content/uploads/2023/12/komunalni-servis-gradjevinska-sezona-traje-do-prvog-snega-290x166.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701470673.1.0.1701470673.60.0.0; _ga=GA1.1.826617689.1701470673
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 01 Dec 2023 09:54:04 GMT
accept-ranges: bytes
content-length: 14118
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:29 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:29 GMT
server: Apache
X-Firefox-Spdy: h2

vaugroar.com/custom

139.45.197.250

200 OK

39 B

URL OPTIONS HTTP/2
vaugroar.com/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectvaugroar.com
FingerprintF5:48:7D:7C:B6:28:8D:55:D3:7D:CF:03:2F:84:BE:B7:FD:20:F0:EE
ValiditySun, 12 Nov 2023 05:15:08 GMT - Sat, 10 Feb 2024 05:15:07 GMT

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /custom HTTP/1.1
Host: vaugroar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 448
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: f0241193aa2d421da6c3cc1806cb099b
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

tharbadir.com/9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&oaid=b6d568e643b941ca8a347fc1a906f202

139.45.197.238

200 OK

0 B

URL POST HTTP/2
tharbadir.com/9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&oaid=b6d568e643b941ca8a347fc1a906f202
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&oaid=b6d568e643b941ca8a347fc1a906f202 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

eehuzaih.com/500/5005565?excludes=&oaid=b6d568e643b941ca8a347fc1a906f202&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0

139.45.197.237

200 OK

131 kB

URL GET HTTP/2
eehuzaih.com/500/5005565?excludes=&oaid=b6d568e643b941ca8a347fc1a906f202&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
139.45.197.237:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
131 kB (130645 bytes)
Hash
38ccbc0dc3bdce83085e9d76434b098a
b0228ae6bef6877e3e51094780f65b6bda507bb2
fe193603cc4903235e142b33072aea322cc58ec7256cf271455bacc38cd96736

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /500/5005565?excludes=&oaid=b6d568e643b941ca8a347fc1a906f202&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: OAID=330cc96fb4444d5aab1fa3007c99e19d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: application/javascript
x-trace-id: 374db17e75f4a26f232a603f31013879
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://www.vugla.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=b6d568e643b941ca8a347fc1a906f202; expires=Sat, 30 Nov 2024 22:44:29 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

tharbadir.com/11?rnd=1500770888&z=2892323&b=19427765&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ot=97

139.45.197.238

200 OK

0 B

URL GET HTTP/2
tharbadir.com/11?rnd=1500770888&z=2892323&b=19427765&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ot=97
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /11?rnd=1500770888&z=2892323&b=19427765&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ot=97 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=b6d568e643b941ca8a347fc1a906f202; oaidts=1701470666
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 8d74c35d388788a89a31cb77d76cfcb4
access-control-expose-headers: X-Sc
set-cookie: OAID=b6d568e643b941ca8a347fc1a906f202; expires=Sat, 30 Nov 2024 22:44:29 GMT; secure; SameSite=None
oaidts=1701470666; expires=Sat, 30 Nov 2024 22:44:29 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3

192.185.106.252

409 Conflict

83 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701470673.1.0.1701470673.60.0.0; _ga=GA1.1.826617689.1701470673; prefetchAd_1316441=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=dc9b743a-5379-4332-b3d1-91d80a130196%3A3%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 409 Conflict
date: Fri, 01 Dec 2023 22:44:29 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

0 B

URL OPTIONS HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

0 B

URL OPTIONS HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

94 B

URL OPTIONS HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT

File type
JSON data\012- , ASCII text
Size
94 B (94 bytes)
Hash
83977d7f6bcdda97cac10be992868877
b8b44169ac2afd310965e2364d378b80fd881007
c4298375f7ffe58660afacfa0e3d77697cf1a737be5e9b020f1f88fbcc0408ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 587
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

94 B

URL OPTIONS HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT

File type
JSON data\012- , ASCII text
Size
94 B (94 bytes)
Hash
cb001bb8985e9eabded5a10dd0388815
dd6b0f86e01eab78423acb6083e0fb7294c06641
34863549783d3e48cef4f1fcf7640c24b4dcd336c8445667ff3d3575801fb903

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 587
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__

142.250.74.78

226 B

URL
apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP
142.250.74.78:0
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint06:87:C0:63:02:21:98:02:BD:FC:A0:11:93:E9:3A:9F:51:21:06:D8
ValidityMon, 23 Oct 2023 11:25:10 GMT - Mon, 15 Jan 2024 11:25:09 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
226 B (226 bytes)
Hash
4df07581948280a6e769a24c5d99d775
843a2c95362347eb8894a6acb607f139be65ded4
3561b93a48d81fac116ccd6e60163bd382abb1d594c81240f5718feb1f197f73

HTTP Headers

GET /u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 301 Moved Permanently
location: http://developers.google.com/
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 01 Dec 2023 22:44:29 GMT
expires: Fri, 01 Dec 2023 23:14:29 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.profitabledisplaycontent.com/watch.656264732704.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22srpski%22%2C%22vatrogasci%22%2C%22se%22%2C%22bore%22%2C%22sa%22%2C%22stihijom%22%2C%22buknuo%22%2C%22je%22%2C%22na%22%2C%22ulici%22%2C%22oni%22%2C%22rade%22%2C%22sve%22%2C%22da%22%2C%22ugase%22%2C%22vatru%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&tz=0&dev=e&res=14.3095&uuid=18e01fa7-8824-4a6b-ab30-df6a7efe5452%3A1%3A1

173.233.137.36

307 Temporary Redirect

0 B

URL GET HTTP/1.1
www.profitabledisplaycontent.com/watch.656264732704.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22srpski%22%2C%22vatrogasci%22%2C%22se%22%2C%22bore%22%2C%22sa%22%2C%22stihijom%22%2C%22buknuo%22%2C%22je%22%2C%22na%22%2C%22ulici%22%2C%22oni%22%2C%22rade%22%2C%22sve%22%2C%22da%22%2C%22ugase%22%2C%22vatru%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&tz=0&dev=e&res=14.3095&uuid=18e01fa7-8824-4a6b-ab30-df6a7efe5452%3A1%3A1
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
Fingerprint5B:BD:54:33:2B:86:AB:1A:82:90:2C:D6:FE:04:C7:39:78:8E:80:0E
ValidityFri, 01 Dec 2023 06:55:29 GMT - Thu, 29 Feb 2024 06:55:28 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.656264732704.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22srpski%22%2C%22vatrogasci%22%2C%22se%22%2C%22bore%22%2C%22sa%22%2C%22stihijom%22%2C%22buknuo%22%2C%22je%22%2C%22na%22%2C%22ulici%22%2C%22oni%22%2C%22rade%22%2C%22sve%22%2C%22da%22%2C%22ugase%22%2C%22vatru%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&tz=0&dev=e&res=14.3095&uuid=18e01fa7-8824-4a6b-ab30-df6a7efe5452%3A1%3A1 HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 01 Dec 2023 22:44:29 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Location: https://www.profitabledisplaycontent.com/watch.656264732704.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22srpski%22%2C%22vatrogasci%22%2C%22se%22%2C%22bore%22%2C%22sa%22%2C%22stihijom%22%2C%22buknuo%22%2C%22je%22%2C%22na%22%2C%22ulici%22%2C%22oni%22%2C%22rade%22%2C%22sve%22%2C%22da%22%2C%22ugase%22%2C%22vatru%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&tz=0&dev=e&res=14.3095&uuid=18e01fa7-8824-4a6b-ab30-df6a7efe5452%3A1%3A1&shu=ac065ef5992da5be30803ae7ef035dbb99c9e8306c5ac3025c15fd0878adfc5c77e78c764a8b80383323564d5925c281c56a451b71cab327aac389710179d512d8d1a51177ad2fa2a6853e8fd2954aa6ba64f8ec38f3a64d32cbcf2df4b8c273a2&pst=1701470729&rmtc=t
Set-Cookie: u_pl=14611544; expires=Sat, 02 Dec 2023 22:44:29 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.onderK2T6alw8KE1ELgLv_Q8dgW_Vic_qDvVt7cUJeQ; expires=Fri, 01 Dec 2023 22:45:29 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a5c42ebee89f03dddf320bc44cac81e5
Strict-Transport-Security: max-age=0; includeSubdomains

interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D3214379760%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3D9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D5f996158-b87c-4954-a391-debbcfdd2267%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0

139.45.197.154

200 OK

12 kB

URL GET HTTP/2
interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D3214379760%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3D9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D5f996158-b87c-4954-a391-debbcfdd2267%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP
139.45.197.154:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectinterbuzznews.com
FingerprintB5:C4:C7:F0:3F:BC:50:A9:21:50:39:B8:F8:2E:7E:72:56:62:E7:33
ValidityFri, 22 Sep 2023 05:18:00 GMT - Thu, 21 Dec 2023 05:17:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1553)
Size
12 kB (11861 bytes)
Hash
36b472ac7863fb9cb3586f79037b0031
8544d7b070fa86df4ad269629c6f593de596278a
59deb27cbe65c3061797663672d7a67d89e3a7b15611420514f9871b3bd7cbae

HTTP Headers

GET /?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D3214379760%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3D9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D5f996158-b87c-4954-a391-debbcfdd2267%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interbuzznews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
set-cookie: reverse=PO-OgKPSebD5ejaOChBtbf7VBVJHXxaLMTQpOJyCuRc; expires=Fri, 01-Dec-2023 23:44:29 GMT; Max-Age=3600; path=/
OAID=0e2301b420889e380ce44e82925df422; expires=Tue, 01-Nov-2078 21:28:58 GMT; Max-Age=1733093069; path=/
oaidts=1701470669; expires=Tue, 01-Nov-2078 21:28:58 GMT; Max-Age=1733093069; path=/
syncedCookie=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: br
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/pattern-filter.png

192.185.106.252

200 OK

2.8 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/pattern-filter.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2804 bytes)
Hash
6d6f2d483736ba6f70063740ddf2841b
3b9dee704da0bf19a56b46584a55226a137504a9
dca9f66f2ff2d735f415080def56d34e60cf13cc65668bf9b422103cd3bee2a5

HTTP Headers

GET /wp-content/themes/vugla/images/pattern-filter.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: _ga_7NCJ73THPT=GS1.1.1701470673.1.0.1701470673.60.0.0; _ga=GA1.1.826617689.1701470673; prefetchAd_1316441=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=dc9b743a-5379-4332-b3d1-91d80a130196%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:06 GMT
accept-ranges: bytes
content-length: 2804
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:30 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:30 GMT
server: Apache
X-Firefox-Spdy: h2

interbuzznews.com/contents/s/ce/c1/ce/fae62b87ac8ffd152fb67c62f3/01133900792764.jpeg

139.45.197.154

200 OK

76 kB

URL GET HTTP/2
interbuzznews.com/contents/s/ce/c1/ce/fae62b87ac8ffd152fb67c62f3/01133900792764.jpeg
IP
139.45.197.154:443
ASN
#9002 RETN Limited

Requested by
https://interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D3214379760%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3D9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D5f996158-b87c-4954-a391-debbcfdd2267%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Certificate
IssuerLet's Encrypt
Subjectinterbuzznews.com
FingerprintB5:C4:C7:F0:3F:BC:50:A9:21:50:39:B8:F8:2E:7E:72:56:62:E7:33
ValidityFri, 22 Sep 2023 05:18:00 GMT - Thu, 21 Dec 2023 05:17:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 492x328, components 3\012- data
Size
76 kB (75924 bytes)
Hash
cec1cefae62b87ac8ffd152fb67c62f3
5ad9ab10582d18882a0460169b8bc163297cfd9b
6b911a21ac38a27da56d277be7c268886f1adc52d6e68bd5169feaf2a76f863c

HTTP Headers

GET /contents/s/ce/c1/ce/fae62b87ac8ffd152fb67c62f3/01133900792764.jpeg HTTP/1.1
Host: interbuzznews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D3214379760%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3D9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D5f996158-b87c-4954-a391-debbcfdd2267%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:30 GMT
content-type: image/jpeg
content-length: 75924
last-modified: Thu, 23 Feb 2023 08:55:31 GMT
vary: Accept-Encoding
etag: "63f72a03-12894"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2

173.233.137.36

200 OK

2.1 kB

URL GET HTTP/1.1
www.profitabledisplaycontent.com/watch.656264732704.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22srpski%22%2C%22vatrogasci%22%2C%22se%22%2C%22bore%22%2C%22sa%22%2C%22stihijom%22%2C%22buknuo%22%2C%22je%22%2C%22na%22%2C%22ulici%22%2C%22oni%22%2C%22rade%22%2C%22sve%22%2C%22da%22%2C%22ugase%22%2C%22vatru%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&tz=0&dev=e&res=14.3095&uuid=18e01fa7-8824-4a6b-ab30-df6a7efe5452%3A1%3A1&shu=ac065ef5992da5be30803ae7ef035dbb99c9e8306c5ac3025c15fd0878adfc5c77e78c764a8b80383323564d5925c281c56a451b71cab327aac389710179d512d8d1a51177ad2fa2a6853e8fd2954aa6ba64f8ec38f3a64d32cbcf2df4b8c273a2&pst=1701470729&rmtc=t
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
Fingerprint5B:BD:54:33:2B:86:AB:1A:82:90:2C:D6:FE:04:C7:39:78:8E:80:0E
ValidityFri, 01 Dec 2023 06:55:29 GMT - Thu, 29 Feb 2024 06:55:28 GMT

File type
HTML document text\012- HTML document, ASCII text, with very long lines (2664)
Size
2.1 kB (2111 bytes)
Hash
888868b542897f7927eb23b01d8e4e91
77bb2ed403842eb6f942854d8f0a6ebba4632779
c1de97f36f76fc86bfe2834b31ca72a1b69056c03cf2a9b70db6d59dd469ea83

HTTP Headers

GET /watch.656264732704.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22srpski%22%2C%22vatrogasci%22%2C%22se%22%2C%22bore%22%2C%22sa%22%2C%22stihijom%22%2C%22buknuo%22%2C%22je%22%2C%22na%22%2C%22ulici%22%2C%22oni%22%2C%22rade%22%2C%22sve%22%2C%22da%22%2C%22ugase%22%2C%22vatru%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&tz=0&dev=e&res=14.3095&uuid=18e01fa7-8824-4a6b-ab30-df6a7efe5452%3A1%3A1&shu=ac065ef5992da5be30803ae7ef035dbb99c9e8306c5ac3025c15fd0878adfc5c77e78c764a8b80383323564d5925c281c56a451b71cab327aac389710179d512d8d1a51177ad2fa2a6853e8fd2954aa6ba64f8ec38f3a64d32cbcf2df4b8c273a2&pst=1701470729&rmtc=t HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
Referer: https://www.vugla.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=14611544; ain=eyJhbGciOiJIUzI1NiJ9.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.onderK2T6alw8KE1ELgLv_Q8dgW_Vic_qDvVt7cUJeQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 01 Dec 2023 22:44:30 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=18e01fa7-8824-4a6b-ab30-df6a7efe5452:1:1; expires=Fri, 08 Dec 2023 22:44:30 GMT; secure; SameSite=None
iprc1d52c46c4d4aa7f34a5699aadaceda39=3569807; expires=Sat, 02 Dec 2023 02:44:30 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 02 Dec 2023 22:44:30 GMT; secure; SameSite=None
uncs=1; expires=Sat, 02 Dec 2023 22:44:30 GMT; secure; SameSite=None
pdhtkv27=true; expires=Sat, 02 Dec 2023 22:44:30 GMT; secure; SameSite=None
uncs27=1; expires=Sat, 02 Dec 2023 22:44:30 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d297865f3fd0bcdd60ea16d9b284f4ab
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

persecutionmachinery.com/ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3

173.233.137.44

200 OK

13 kB

URL GET HTTP/1.1
persecutionmachinery.com/ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectpersecutionmachinery.com
Fingerprint7B:46:00:20:38:FB:57:02:01:FD:7A:AE:8D:B8:2B:73:C4:72:4C:22
ValidityTue, 28 Nov 2023 07:58:59 GMT - Mon, 26 Feb 2024 07:58:58 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (12619), with no line terminators
Size
13 kB (12620 bytes)
Hash
23c9fd227fe47b09f641db461850e5f4
5cb313000ad1d722cbe4396a014fd5eddb7aeb15
548ab3380abc42578eb3648d192e7e653e15a3d3ee6620ec7799500d7fe65726

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3 HTTP/1.1
Host: persecutionmachinery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 01 Dec 2023 22:44:30 GMT
Content-Type: application/json
Content-Length: 12620
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16310791; expires=Sat, 02 Dec 2023 22:44:30 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 02 Dec 2023 22:44:30 GMT; secure; SameSite=None
uncs=1; expires=Sat, 02 Dec 2023 22:44:30 GMT; secure; SameSite=None
pdhtkv49=true; expires=Sat, 02 Dec 2023 22:44:30 GMT; secure; SameSite=None
uncs49=1; expires=Sat, 02 Dec 2023 22:44:30 GMT; secure; SameSite=None
nlecc9123167a2366d360cd4d80dad2ac358=[2229212,3637745,2229215]; expires=Fri, 01 Dec 2023 22:44:35 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ce6a7f697ebb20eecb6ce2ad8cb0fa7d
Strict-Transport-Security: max-age=0; includeSubdomains

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_1?le=scs

142.250.74.78

200 OK

34 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_1?le=scs
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (1586)
Size
34 kB (34324 bytes)
Hash
e0fbc84518a1bab9c8bad9f76463d338
ecce9ef563bc5170ebcfcfd35e0dd5b17bc0b874
d99dd3891be0d37edbcc13fdaad780f164a758be5d0c8a71f66596e6cda04f70

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_1?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 34324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:23:52 GMT
expires: Fri, 29 Nov 2024 05:23:52 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 148838
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs

142.250.74.78

200 OK

56 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (1505)
Size
56 kB (55751 bytes)
Hash
4a256001cbbe7af37c71afbd89ba1656
4760f1dee9f6ff6db6f33eeee3dc7ec76155f7dd
5b683a525a2a814b27fc09152ee8030b6d542cd24a61de371bbe5e8815e9d0b1

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 55751
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:12:01 GMT
expires: Fri, 29 Nov 2024 04:12:01 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 153149
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

vaugroar.com/pfe/current/universal.min.js?v=3.1.471

139.45.197.250

200 OK

33 kB

URL GET HTTP/2
vaugroar.com/pfe/current/universal.min.js?v=3.1.471
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectvaugroar.com
FingerprintF5:48:7D:7C:B6:28:8D:55:D3:7D:CF:03:2F:84:BE:B7:FD:20:F0:EE
ValiditySun, 12 Nov 2023 05:15:08 GMT - Sat, 10 Feb 2024 05:15:07 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
33 kB (33393 bytes)
Hash
63ecdf18a07b09045dd2766500a14463
25dfce608217e2e81ecf22f4060175111b65e53a
1690ce4a02d9ba8644708c5957b39ef00882adbab61ee3cc64075cacb9877bd2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pfe/current/universal.min.js?v=3.1.471 HTTP/1.1
Host: vaugroar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 17:44:23 GMT
etag: W/"6564d577-1572c"
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/56/ef/55/56ef55f6ef3bc03e69b8d66da27f0cd1/1658920055.png

45.133.44.9

200 OK

67 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/56/ef/55/56ef55f6ef3bc03e69b8d66da27f0cd1/1658920055.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
PNG image data, 468 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
67 kB (67174 bytes)
Hash
a98b4585db1c6db06d6857c73bb75fcb
02a896b08a79e873b2dd26200ee1f0665dc1c80a
fc08e863ffafe25aa63fe8b60c2d5135fc5f52caf0abae4da3f1a90e0f8ed96c

HTTP Headers

GET /cti/56/ef/55/56ef55f6ef3bc03e69b8d66da27f0cd1/1658920055.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:30 GMT
content-type: image/png
content-length: 67174
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 11:07:43 GMT
etag: "62e11c7f-10666"
expires: Sun, 03 Dec 2023 22:44:30 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg

45.133.44.9

200 OK

30 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Size
30 kB (30127 bytes)
Hash
a87779ccaaa4021b0b4f33812742679a
87322480f885dc0b6463c182b7bdb3eb60ab2592
a8f8dbc930527f94496d5a9883b6034e27a673090a89b518596d6e2b656df96f

HTTP Headers

GET /cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:30 GMT
content-type: image/jpeg
content-length: 30127
server: nginx/1.21.6
last-modified: Tue, 10 Aug 2021 09:15:44 GMT
etag: "611243c0-75af"
expires: Sun, 03 Dec 2023 22:44:30 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg

45.133.44.9

200 OK

21 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Size
21 kB (20566 bytes)
Hash
8f4953c1b8baece7bb7d226247561ce2
da5d440970606602026d7900a55ae2fd27a3f170
8fd9df7d8e48ff2519631e82e01519d4f1c65abd41ec977c18abb58df9832919

HTTP Headers

GET /si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:30 GMT
content-type: image/jpeg
content-length: 20566
server: nginx/1.21.6
last-modified: Thu, 01 Sep 2022 12:51:28 GMT
etag: "6310aad0-5056"
expires: Sun, 03 Dec 2023 22:44:30 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/4e/61/98/4e619871efbab123abb0e0121e08e11d/1628586907.jpg

45.133.44.9

200 OK

23 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/4e/61/98/4e619871efbab123abb0e0121e08e11d/1628586907.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Size
23 kB (22883 bytes)
Hash
c6f19781c79ff746b99178f813cfbff2
5c307e43c63001535aa3a3683777dbb1a7f0775b
816b5a5d078f27271fa2d7c210d708f386a6f9fbd9242531b07f0b051382870d

HTTP Headers

GET /cti/4e/61/98/4e619871efbab123abb0e0121e08e11d/1628586907.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:30 GMT
content-type: image/jpeg
content-length: 22883
server: nginx/1.21.6
last-modified: Tue, 10 Aug 2021 09:15:16 GMT
etag: "611243a4-5963"
expires: Sun, 03 Dec 2023 22:44:30 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

persecutionmachinery.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzqwY9KLBi%2BBh8CAKMts9v8ccgjFGFje7axLZc3VV9Wxlq7uaqv4xu6eNEclxxIt66v1mN0viIuYPUGTWS1gM7FxkQVfwJngRIeQoPRkYfVD1vlffO3zfe%2FXZbnpGPKT0dO2a3pZK0cVWza2%2BuS4jrnNbXblZ9dyae7G6LqN282J1UF4me8dzWzX3reoHgm3qxbrrua7netWr0ohADxanLGR82PNqPbfWrNe8VhMD8%2F%2Fapg4sdcCzM3IBkk%2Be23j0EJKNEYXfXRF2M9Hx2%2B%2BHqaKJNsj4wcfRZqTzCOEcBsZBEB3MuqHthJAvz0FHBzMH0Nle6QC%2BnBDnFw9%2BdDCTCT%2Fbf6bUVxARfP4i8mwMocaQdAym70DyEwIwjpVVROG9FW1yuvWMpSU7IQtP%2FoHMJ2Tht1cQhd9eVnJQvaFVmkgdWQyCAnIwhuyPEadHSLYdyPwILPkEkj8mi0%2BWEYV7q1ZpSF5M3Us5hgzGUGIIah2k5ZEO0sBBGjsI%2BWmVtnqB63YCP2g0uk3GWKPBWKvb5i3eaHYDFykr5Q2RxEMwNQQzO4jNDjbl5yetCzDpj7AbBSx3YJMJcT7aQcYL5IIgtwQ5JcglQZ4Q5Fmxz5Wt2%2BIeVzb1vVmuz3KjGOmkv0v3ddIXEQE1w934jLw8Hc%2FTP57Hpjitsp5Xb3jtDq032m3eaLuMN3nX5ZTXKWu0urCygLTnpo63y13hPOIyX%2FsLPj2CVUdgsgKaeqD5qFN3QTdGza6L7eh%2BlvYVrTEdgusCcbKAZMvZVWfk1amI1yu%2FQrDjSw9eOzzvvfEnmCkQmwK35E8EfXV3dF3nZO%2B6zi15uBonMpTbtNzfjYQmovLgQ7GVa8OXrtjh%2FXdZSZTw8KawyTKNuIz6lnxzWXIuzFVtmCDfL9l14a%2BlduNyaqI0Xl577%2BpSGBthrdTRGFSerD4FkxOycPuH6c986edPIc0YJi0QpsdkFpD6CCzegY3n6q0mMGre48cO8rQYmbo%2Ff1SSQIl5Tf0C9j%2B1P8e79i76pgKa3EEUFshMgUwVoGoIm74wSmJzfOnRV2V8DV9VRr4ylT1fGfXFdLQT0rn9d4l%2Bh5WnVdEK3EC4deEHPT%2FoUJf3gmbPpz1PdPwW9ZDYibhFH%2F8LAAD%2F%2FwEAAP%2F%2FO8huBXsEAAA%3D

173.233.137.44

200 OK

7 B

URL GET HTTP/1.1
persecutionmachinery.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzqwY9KLBi%2BBh8CAKMts9v8ccgjFGFje7axLZc3VV9Wxlq7uaqv4xu6eNEclxxIt66v1mN0viIuYPUGTWS1gM7FxkQVfwJngRIeQoPRkYfVD1vlffO3zfe%2FXZbnpGPKT0dO2a3pZK0cVWza2%2BuS4jrnNbXblZ9dyae7G6LqN282J1UF4me8dzWzX3reoHgm3qxbrrua7netWr0ohADxanLGR82PNqPbfWrNe8VhMD8%2F%2Fapg4sdcCzM3IBkk%2Be23j0EJKNEYXfXRF2M9Hx2%2B%2BHqaKJNsj4wcfRZqTzCOEcBsZBEB3MuqHthJAvz0FHBzMH0Nle6QC%2BnBDnFw9%2BdDCTCT%2Fbf6bUVxARfP4i8mwMocaQdAym70DyEwIwjpVVROG9FW1yuvWMpSU7IQtP%2FoHMJ2Tht1cQhd9eVnJQvaFVmkgdWQyCAnIwhuyPEadHSLYdyPwILPkEkj8mi0%2BWEYV7q1ZpSF5M3Us5hgzGUGIIah2k5ZEO0sBBGjsI%2BWmVtnqB63YCP2g0uk3GWKPBWKvb5i3eaHYDFykr5Q2RxEMwNQQzO4jNDjbl5yetCzDpj7AbBSx3YJMJcT7aQcYL5IIgtwQ5JcglQZ4Q5Fmxz5Wt2%2BIeVzb1vVmuz3KjGOmkv0v3ddIXEQE1w934jLw8Hc%2FTP57Hpjitsp5Xb3jtDq032m3eaLuMN3nX5ZTXKWu0urCygLTnpo63y13hPOIyX%2FsLPj2CVUdgsgKaeqD5qFN3QTdGza6L7eh%2BlvYVrTEdgusCcbKAZMvZVWfk1amI1yu%2FQrDjSw9eOzzvvfEnmCkQmwK35E8EfXV3dF3nZO%2B6zi15uBonMpTbtNzfjYQmovLgQ7GVa8OXrtjh%2FXdZSZTw8KawyTKNuIz6lnxzWXIuzFVtmCDfL9l14a%2BlduNyaqI0Xl577%2BpSGBthrdTRGFSerD4FkxOycPuH6c986edPIc0YJi0QpsdkFpD6CCzegY3n6q0mMGre48cO8rQYmbo%2Ff1SSQIl5Tf0C9j%2B1P8e79i76pgKa3EEUFshMgUwVoGoIm74wSmJzfOnRV2V8DV9VRr4ylT1fGfXFdLQT0rn9d4l%2Bh5WnVdEK3EC4deEHPT%2FoUJf3gmbPpz1PdPwW9ZDYibhFH%2F8LAAD%2F%2FwEAAP%2F%2FO8huBXsEAAA%3D
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectpersecutionmachinery.com
Fingerprint7B:46:00:20:38:FB:57:02:01:FD:7A:AE:8D:B8:2B:73:C4:72:4C:22
ValidityTue, 28 Nov 2023 07:58:59 GMT - Mon, 26 Feb 2024 07:58:58 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzqwY9KLBi%2BBh8CAKMts9v8ccgjFGFje7axLZc3VV9Wxlq7uaqv4xu6eNEclxxIt66v1mN0viIuYPUGTWS1gM7FxkQVfwJngRIeQoPRkYfVD1vlffO3zfe%2FXZbnpGPKT0dO2a3pZK0cVWza2%2BuS4jrnNbXblZ9dyae7G6LqN282J1UF4me8dzWzX3reoHgm3qxbrrua7netWr0ohADxanLGR82PNqPbfWrNe8VhMD8%2F%2Fapg4sdcCzM3IBkk%2Be23j0EJKNEYXfXRF2M9Hx2%2B%2BHqaKJNsj4wcfRZqTzCOEcBsZBEB3MuqHthJAvz0FHBzMH0Nle6QC%2BnBDnFw9%2BdDCTCT%2Fbf6bUVxARfP4i8mwMocaQdAym70DyEwIwjpVVROG9FW1yuvWMpSU7IQtP%2FoHMJ2Tht1cQhd9eVnJQvaFVmkgdWQyCAnIwhuyPEadHSLYdyPwILPkEkj8mi0%2BWEYV7q1ZpSF5M3Us5hgzGUGIIah2k5ZEO0sBBGjsI%2BWmVtnqB63YCP2g0uk3GWKPBWKvb5i3eaHYDFykr5Q2RxEMwNQQzO4jNDjbl5yetCzDpj7AbBSx3YJMJcT7aQcYL5IIgtwQ5JcglQZ4Q5Fmxz5Wt2%2BIeVzb1vVmuz3KjGOmkv0v3ddIXEQE1w934jLw8Hc%2FTP57Hpjitsp5Xb3jtDq032m3eaLuMN3nX5ZTXKWu0urCygLTnpo63y13hPOIyX%2FsLPj2CVUdgsgKaeqD5qFN3QTdGza6L7eh%2BlvYVrTEdgusCcbKAZMvZVWfk1amI1yu%2FQrDjSw9eOzzvvfEnmCkQmwK35E8EfXV3dF3nZO%2B6zi15uBonMpTbtNzfjYQmovLgQ7GVa8OXrtjh%2FXdZSZTw8KawyTKNuIz6lnxzWXIuzFVtmCDfL9l14a%2BlduNyaqI0Xl577%2BpSGBthrdTRGFSerD4FkxOycPuH6c986edPIc0YJi0QpsdkFpD6CCzegY3n6q0mMGre48cO8rQYmbo%2Ff1SSQIl5Tf0C9j%2B1P8e79i76pgKa3EEUFshMgUwVoGoIm74wSmJzfOnRV2V8DV9VRr4ylT1fGfXFdLQT0rn9d4l%2Bh5WnVdEK3EC4deEHPT%2FoUJf3gmbPpz1PdPwW9ZDYibhFH%2F8LAAD%2F%2FwEAAP%2F%2FO8huBXsEAAA%3D HTTP/1.1
Host: persecutionmachinery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 01 Dec 2023 22:44:30 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c2d0ead4b14949e68143b3cf2fecaaf8
Strict-Transport-Security: max-age=0; includeSubdomains

www.vugla.com/favicon.ico

192.185.106.252

302 Found

0 B

URL GET HTTP/2
www.vugla.com/favicon.ico
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701470673.1.0.1701470673.60.0.0; _ga=GA1.1.826617689.1701470673; prefetchAd_1316441=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=dc9b743a-5379-4332-b3d1-91d80a130196%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
content-security-policy: upgrade-insecure-requests;
location: https://www.vugla.com/wp-includes/images/w-logo-blue-white-bg.png
cache-control: max-age=10800
expires: Sat, 02 Dec 2023 01:44:30 GMT
vary: User-Agent
referrer-policy: 
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 01 Dec 2023 22:44:30 GMT
server: Apache
X-Firefox-Spdy: h2

persecutionmachinery.com/65/aa/28/65aa283021630dfd9030555c4c61a78c.js

173.233.137.44

200 OK

23 kB

URL GET HTTP/1.1
persecutionmachinery.com/65/aa/28/65aa283021630dfd9030555c4c61a78c.js
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectpersecutionmachinery.com
Fingerprint7B:46:00:20:38:FB:57:02:01:FD:7A:AE:8D:B8:2B:73:C4:72:4C:22
ValidityTue, 28 Nov 2023 07:58:59 GMT - Mon, 26 Feb 2024 07:58:58 GMT

File type
ASCII text, with very long lines (59647), with no line terminators
Size
23 kB (23359 bytes)
Hash
d8373a275a5a72d5da90f7db4558f057
50c1facea031fd7684f8e83542557a2c9d1f8e10
8730cd2ac274aafb27bd451c69dbac3bb3b33b266e94e030c65f5b2499e4820b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /65/aa/28/65aa283021630dfd9030555c4c61a78c.js HTTP/1.1
Host: persecutionmachinery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 01 Dec 2023 22:44:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2cb7267d17f430b8d32e8522ca101877
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

apis.google.com/js/rpc:shindig_random.js?onload=init

142.250.74.78

200 OK

7.1 kB

URL GET HTTP/3
apis.google.com/js/rpc:shindig_random.js?onload=init
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#rpctoken=801222709&forcesecure=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (2056)
Size
7.1 kB (7121 bytes)
Hash
84a5ff7df274c2aa0f5db3d0db8deb60
fe9d4e60961ea15195134fa043256585a3956984
0d3c50c1af81534edee9a430edb5d09c6068348173496657982a4546ff2ee231

HTTP Headers

GET /js/rpc:shindig_random.js?onload=init HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 7121
date: Fri, 01 Dec 2023 22:44:30 GMT
expires: Fri, 01 Dec 2023 22:44:30 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "14543ead6f363f55"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=fSt4UqozbIeeplVpZ0hUAGHnXS_YljOHneq42QjIL52fJFSHC11ba5wFPmCUboi2q00J2U5GW7fh4g37CG69MugDqTJW_szKNnHuFusThBM4CCQIU4RUICMPSXb5LBgCoH8n73oLyxBLmpg-KAkMnaoPzkT0Du0U2H1wnNfMXp8; expires=Sat, 01-Jun-2024 22:44:30 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

tharbadir.com/15?rnd=3256315840&z=2892323&var=&varid=0&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A1.121%2C%22location%22%3A%22https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A5%2C%22wdov%22%3A0%2C%22isIONS%22%3Atrue%7D

139.45.197.238

204 No Content

0 B

URL GET HTTP/2
tharbadir.com/15?rnd=3256315840&z=2892323&var=&varid=0&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A1.121%2C%22location%22%3A%22https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A5%2C%22wdov%22%3A0%2C%22isIONS%22%3Atrue%7D
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /15?rnd=3256315840&z=2892323&var=&varid=0&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A1.121%2C%22location%22%3A%22https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A5%2C%22wdov%22%3A0%2C%22isIONS%22%3Atrue%7D HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=b6d568e643b941ca8a347fc1a906f202; oaidts=1701470666
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Fri, 01 Dec 2023 22:44:30 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 05452fc715a3c97807d1bc8683953911
access-control-expose-headers: X-Sc
set-cookie: OAID=b6d568e643b941ca8a347fc1a906f202; expires=Sat, 30 Nov 2024 22:44:30 GMT; secure; SameSite=None
oaidts=1701470666; expires=Sat, 30 Nov 2024 22:44:30 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

ssl.gstatic.com/accounts/o/478691279-postmessagerelay.js

142.250.74.163

200 OK

5.2 kB

URL GET HTTP/2
ssl.gstatic.com/accounts/o/478691279-postmessagerelay.js
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#rpctoken=801222709&forcesecure=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (3496)
Size
5.2 kB (5186 bytes)
Hash
92169c8a0fbf6e404267d0705cdbdf42
a5cd88b74ca5ced239cdbfb458fe25540d671f46
dba668b49a111527aac8f616b9053ea57c944e01a84ebdcd02a13da921223384

HTTP Headers

GET /accounts/o/478691279-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 5186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 16:02:08 GMT
expires: Thu, 28 Nov 2024 16:02:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 17 Nov 2023 17:06:44 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 196942
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs

142.250.74.78

200 OK

23 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#rpctoken=801222709&forcesecure=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (1505)
Size
23 kB (23431 bytes)
Hash
009832d077d8fc42d725066c2b774fd6
0994f8575917c4eeb66f6bdb0a65609aa8902cac
b1e012aaab4e65462b456ff6a07a6512c7b11d1682d228531d66b132dcf3d364

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 23431
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 02:51:23 GMT
expires: Fri, 29 Nov 2024 02:51:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 157987
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

persecutionmachinery.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3llx%2FXFx8SIoDB5kF2TSPb%2FHPSyuMRLMJnF3JRcv1VXVk9pUdzVV3dOTnKILsjdHvKinzjfJhl2DuH%2BAIB0vS2Ahc5GARvAmeBFx8Sg9OxB9UPW%2BV987fN979elOeko8pPRk9brekkrRuVbNrV5akxHXma0u36p6bs29Ul2TUbt5pTosLzN4y3NbNfdy9T3BNvRc3fVc13O96oI0ItDDuSkLGR%2F0vFrPrTXrNa%2FVxND8v7apA0sd8MEpuQjJJ8%2BsP3oIyQpE4Xfzwm4kOn7z3TBVNNEGA77%2FYbQR6SxCeAYD4yCI9mfd0HZCyJfnoKP9mQPowW7pAL6cEOcnD360P5MJf7D3VKmvICL4%2FAVkgwJCFZC0ANN3IPkxARjH8gqi8N6yNhndfMrSkp2Q80%2F%2Bgswm5PwvLyMKv72m5LB6U6s0kTqyGAY55LCA7BeI00MkWw5kdgiWfALJH5O5J0uIwt0VqzQkz6fupSwggwJKjECtg7Q80kEaOEhjByE%2FqdJWL3DdTuAHjUa3yRhrNBhrddu8xRvNbuAiZaW8EZJ4BKZGYGYbsdnGhvz8uHURJv0Bdj2H5Q5sMiHOB9sY8ByZIMgsQUYJMkmQJQTZIN%2FjytZtfo8rm%2FreLNdnuZGPddLfoXs66YuIgJrRTnxKXpqO55%2FfnsWGOKmynldveO0OrTfabd5ou4w3edfllNcpa7S6sDKHtOemjrfKXeEC4jJf%2FwM%2BPYRVh2CyApp6oNm4U3dB18fNrout6P4g7StaYzoE1zni5DySTWdHnZJXpiI6H%2F8JwY6uHlz6u%2Fjso8tgJkdsctyWPxL01d3xDZ2R3Rs6s%2BThSpzIUG7Rcn83E5qIyoP3xWamDV%2Bct6P7b7OSKOHBLWGTJRpxGfUt%2Beaa5FyYBW2YIN8v2jXhr6Z2%2FVpqojReWn1nYTGMjbBW6qgAlccvFmByQp47mp%2F%2BzNcW1iFNAZPmCNMjMgtIfQgWb8PGR1cfvHpwwXvjd1hNYNRZjx%2BfQ5bmY1P3zx6VJFDirKZ%2BDvuf2j%2FDO%2FYu%2BqYCmtxBFOYYmBwDlYOqEWz6%2FDiJzdHVR1%2BV8TV8VRn7ylR2fWXUFxPyeuXn6XxL9CusPKmKVuAGwq0LP%2Bj5QYe6vBc0ez7teaLjt6iHxE7Ebfr4XwAAAP%2F%2FAQAA%2F%2F%2Bl1bv2ewQAAA%3D%3D

173.233.137.44

200 OK

7 B

URL GET HTTP/1.1
persecutionmachinery.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3llx%2FXFx8SIoDB5kF2TSPb%2FHPSyuMRLMJnF3JRcv1VXVk9pUdzVV3dOTnKILsjdHvKinzjfJhl2DuH%2BAIB0vS2Ahc5GARvAmeBFx8Sg9OxB9UPW%2BV987fN979elOeko8pPRk9brekkrRuVbNrV5akxHXma0u36p6bs29Ul2TUbt5pTosLzN4y3NbNfdy9T3BNvRc3fVc13O96oI0ItDDuSkLGR%2F0vFrPrTXrNa%2FVxND8v7apA0sd8MEpuQjJJ8%2BsP3oIyQpE4Xfzwm4kOn7z3TBVNNEGA77%2FYbQR6SxCeAYD4yCI9mfd0HZCyJfnoKP9mQPowW7pAL6cEOcnD360P5MJf7D3VKmvICL4%2FAVkgwJCFZC0ANN3IPkxARjH8gqi8N6yNhndfMrSkp2Q80%2F%2Bgswm5PwvLyMKv72m5LB6U6s0kTqyGAY55LCA7BeI00MkWw5kdgiWfALJH5O5J0uIwt0VqzQkz6fupSwggwJKjECtg7Q80kEaOEhjByE%2FqdJWL3DdTuAHjUa3yRhrNBhrddu8xRvNbuAiZaW8EZJ4BKZGYGYbsdnGhvz8uHURJv0Bdj2H5Q5sMiHOB9sY8ByZIMgsQUYJMkmQJQTZIN%2FjytZtfo8rm%2FreLNdnuZGPddLfoXs66YuIgJrRTnxKXpqO55%2FfnsWGOKmynldveO0OrTfabd5ou4w3edfllNcpa7S6sDKHtOemjrfKXeEC4jJf%2FwM%2BPYRVh2CyApp6oNm4U3dB18fNrout6P4g7StaYzoE1zni5DySTWdHnZJXpiI6H%2F8JwY6uHlz6u%2Fjso8tgJkdsctyWPxL01d3xDZ2R3Rs6s%2BThSpzIUG7Rcn83E5qIyoP3xWamDV%2Bct6P7b7OSKOHBLWGTJRpxGfUt%2Beaa5FyYBW2YIN8v2jXhr6Z2%2FVpqojReWn1nYTGMjbBW6qgAlccvFmByQp47mp%2F%2BzNcW1iFNAZPmCNMjMgtIfQgWb8PGR1cfvHpwwXvjd1hNYNRZjx%2BfQ5bmY1P3zx6VJFDirKZ%2BDvuf2j%2FDO%2FYu%2BqYCmtxBFOYYmBwDlYOqEWz6%2FDiJzdHVR1%2BV8TV8VRn7ylR2fWXUFxPyeuXn6XxL9CusPKmKVuAGwq0LP%2Bj5QYe6vBc0ez7teaLjt6iHxE7Ebfr4XwAAAP%2F%2FAQAA%2F%2F%2Bl1bv2ewQAAA%3D%3D
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectpersecutionmachinery.com
Fingerprint7B:46:00:20:38:FB:57:02:01:FD:7A:AE:8D:B8:2B:73:C4:72:4C:22
ValidityTue, 28 Nov 2023 07:58:59 GMT - Mon, 26 Feb 2024 07:58:58 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3llx%2FXFx8SIoDB5kF2TSPb%2FHPSyuMRLMJnF3JRcv1VXVk9pUdzVV3dOTnKILsjdHvKinzjfJhl2DuH%2BAIB0vS2Ahc5GARvAmeBFx8Sg9OxB9UPW%2BV987fN979elOeko8pPRk9brekkrRuVbNrV5akxHXma0u36p6bs29Ul2TUbt5pTosLzN4y3NbNfdy9T3BNvRc3fVc13O96oI0ItDDuSkLGR%2F0vFrPrTXrNa%2FVxND8v7apA0sd8MEpuQjJJ8%2BsP3oIyQpE4Xfzwm4kOn7z3TBVNNEGA77%2FYbQR6SxCeAYD4yCI9mfd0HZCyJfnoKP9mQPowW7pAL6cEOcnD360P5MJf7D3VKmvICL4%2FAVkgwJCFZC0ANN3IPkxARjH8gqi8N6yNhndfMrSkp2Q80%2F%2Bgswm5PwvLyMKv72m5LB6U6s0kTqyGAY55LCA7BeI00MkWw5kdgiWfALJH5O5J0uIwt0VqzQkz6fupSwggwJKjECtg7Q80kEaOEhjByE%2FqdJWL3DdTuAHjUa3yRhrNBhrddu8xRvNbuAiZaW8EZJ4BKZGYGYbsdnGhvz8uHURJv0Bdj2H5Q5sMiHOB9sY8ByZIMgsQUYJMkmQJQTZIN%2FjytZtfo8rm%2FreLNdnuZGPddLfoXs66YuIgJrRTnxKXpqO55%2FfnsWGOKmynldveO0OrTfabd5ou4w3edfllNcpa7S6sDKHtOemjrfKXeEC4jJf%2FwM%2BPYRVh2CyApp6oNm4U3dB18fNrout6P4g7StaYzoE1zni5DySTWdHnZJXpiI6H%2F8JwY6uHlz6u%2Fjso8tgJkdsctyWPxL01d3xDZ2R3Rs6s%2BThSpzIUG7Rcn83E5qIyoP3xWamDV%2Bct6P7b7OSKOHBLWGTJRpxGfUt%2Beaa5FyYBW2YIN8v2jXhr6Z2%2FVpqojReWn1nYTGMjbBW6qgAlccvFmByQp47mp%2F%2BzNcW1iFNAZPmCNMjMgtIfQgWb8PGR1cfvHpwwXvjd1hNYNRZjx%2BfQ5bmY1P3zx6VJFDirKZ%2BDvuf2j%2FDO%2FYu%2BqYCmtxBFOYYmBwDlYOqEWz6%2FDiJzdHVR1%2BV8TV8VRn7ylR2fWXUFxPyeuXn6XxL9CusPKmKVuAGwq0LP%2Bj5QYe6vBc0ez7teaLjt6iHxE7Ebfr4XwAAAP%2F%2FAQAA%2F%2F%2Bl1bv2ewQAAA%3D%3D HTTP/1.1
Host: persecutionmachinery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 01 Dec 2023 22:44:30 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2a832c251998382d75b918e1ecfc987d
Strict-Transport-Security: max-age=0; includeSubdomains

persecutionmachinery.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzqwY9KLBi%2BBh8CAKMts9v8ccgjFGgpvdNYnsubqqeray1V1NVf%2BY3dPGgOY44kU99X6zmyVxEfMHKDLrJSwGdi6yoCt4E7yIEHKUnh0YfVD13qvvHb7ve%2FXpTnpKPKT0ZPW63pJK0cVWza2%2BuSYjrnNbXb5V9dyae7G6JqN282J1UF4me8dzWzX3reoHgm3oxbrrua7netWr0ohADxanKGR80PNqPbfWrNe8VhMD8%2F%2Fepg4sdcCzU3IBkk%2BeW3%2F8CJKNEYXfXRF2I9Hx2%2B%2BHqaKJNsj4%2FsfRRqTzCOG8DIyDINqfTUPbCSFfnoOO9mcKoLPdUgF8OSHOLx78aH9GE362d8bUVxARfP4i8mwMocaQdAym70LyYwIwjuUVROH9ZW1yunmG0hKdkIWn%2F0DmE7Lw2yuIwm8vKzmo3tQqTaSOLAZBATkYQ%2FbHiNNDJFsOZH4IlnwCyZ%2BQxadLiMLdFas0JC%2Bm6qUcQwZjKDEEtQ7S8kgHaeAgjR2E%2FKRKW73AdTuBHzQa3SZjrNFgrNVt8xZvNLuBi5SV9IZI4iGYGoKZbcRmGxvy8%2BPWBZj0R9j1ApY7sMmEOB9tI%2BMFckGQW4KcEuSSIE8I8qzY48rWbXGfK5v63izXZ7lRjHTS36F7OumLiICa4U58Sl6e2vPsj%2BexIU6qrOfVG167Q%2BuNdps32i7jTd51OeV1yhqtLqwsIO25qeKtclc4j7jM1%2F%2BCTw9h1SGYrICmHmg%2B6tRd0PVRs%2BtiK3qQpX1Fa0yH4LpAnCwg2XR21Cl5dUri9crvEOzo0sPXDs57b%2FwJZgrEpsBt%2BRNBX90b3dA52b2hc0sercSJDOUWLfd3M6GJqDz8UGzm2vBrV%2BzwwbusBMry4JawyRKNuIz6lnxzWXIuzFVtmCDfX7Nrwl9N7frl1ERpvLT63tVrYWyEtVJHY1B5vPIMTE7Iwp0fpj%2FzpZ8%2FgzRjmLRAmB6RWUDqQ7B4Gzaes7eawKj5jB9XkKfFyNT9%2BaOSBErMe%2BoXsP%2Fp%2FXm9Y%2B%2BhbyqgyV1EYYHMFMhUAaqGsOkLoyQ2R5cef1XG1%2FBVZeQrU9n1lVFflNb%2BOiGdO3%2BfmWzlSVW0AjcQbl34Qc8POtTlvaDZ82nPEx2%2FRT0kdiJu0yf%2FAgAA%2F%2F8BAAD%2F%2F6I8kgR7BAAA

173.233.137.44

200 OK

7 B

URL GET HTTP/1.1
persecutionmachinery.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzqwY9KLBi%2BBh8CAKMts9v8ccgjFGgpvdNYnsubqqeray1V1NVf%2BY3dPGgOY44kU99X6zmyVxEfMHKDLrJSwGdi6yoCt4E7yIEHKUnh0YfVD13qvvHb7ve%2FXpTnpKPKT0ZPW63pJK0cVWza2%2BuSYjrnNbXb5V9dyae7G6JqN282J1UF4me8dzWzX3reoHgm3oxbrrua7netWr0ohADxanKGR80PNqPbfWrNe8VhMD8%2F%2Fepg4sdcCzU3IBkk%2BeW3%2F8CJKNEYXfXRF2I9Hx2%2B%2BHqaKJNsj4%2FsfRRqTzCOG8DIyDINqfTUPbCSFfnoOO9mcKoLPdUgF8OSHOLx78aH9GE362d8bUVxARfP4i8mwMocaQdAym70LyYwIwjuUVROH9ZW1yunmG0hKdkIWn%2F0DmE7Lw2yuIwm8vKzmo3tQqTaSOLAZBATkYQ%2FbHiNNDJFsOZH4IlnwCyZ%2BQxadLiMLdFas0JC%2Bm6qUcQwZjKDEEtQ7S8kgHaeAgjR2E%2FKRKW73AdTuBHzQa3SZjrNFgrNVt8xZvNLuBi5SV9IZI4iGYGoKZbcRmGxvy8%2BPWBZj0R9j1ApY7sMmEOB9tI%2BMFckGQW4KcEuSSIE8I8qzY48rWbXGfK5v63izXZ7lRjHTS36F7OumLiICa4U58Sl6e2vPsj%2BexIU6qrOfVG167Q%2BuNdps32i7jTd51OeV1yhqtLqwsIO25qeKtclc4j7jM1%2F%2BCTw9h1SGYrICmHmg%2B6tRd0PVRs%2BtiK3qQpX1Fa0yH4LpAnCwg2XR21Cl5dUri9crvEOzo0sPXDs57b%2FwJZgrEpsBt%2BRNBX90b3dA52b2hc0sercSJDOUWLfd3M6GJqDz8UGzm2vBrV%2BzwwbusBMry4JawyRKNuIz6lnxzWXIuzFVtmCDfX7Nrwl9N7frl1ERpvLT63tVrYWyEtVJHY1B5vPIMTE7Iwp0fpj%2FzpZ8%2FgzRjmLRAmB6RWUDqQ7B4Gzaes7eawKj5jB9XkKfFyNT9%2BaOSBErMe%2BoXsP%2Fp%2FXm9Y%2B%2BhbyqgyV1EYYHMFMhUAaqGsOkLoyQ2R5cef1XG1%2FBVZeQrU9n1lVFflNb%2BOiGdO3%2BfmWzlSVW0AjcQbl34Qc8POtTlvaDZ82nPEx2%2FRT0kdiJu0yf%2FAgAA%2F%2F8BAAD%2F%2F6I8kgR7BAAA
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectpersecutionmachinery.com
Fingerprint7B:46:00:20:38:FB:57:02:01:FD:7A:AE:8D:B8:2B:73:C4:72:4C:22
ValidityTue, 28 Nov 2023 07:58:59 GMT - Mon, 26 Feb 2024 07:58:58 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzqwY9KLBi%2BBh8CAKMts9v8ccgjFGgpvdNYnsubqqeray1V1NVf%2BY3dPGgOY44kU99X6zmyVxEfMHKDLrJSwGdi6yoCt4E7yIEHKUnh0YfVD13qvvHb7ve%2FXpTnpKPKT0ZPW63pJK0cVWza2%2BuSYjrnNbXb5V9dyae7G6JqN282J1UF4me8dzWzX3reoHgm3oxbrrua7netWr0ohADxanKGR80PNqPbfWrNe8VhMD8%2F%2Fepg4sdcCzU3IBkk%2BeW3%2F8CJKNEYXfXRF2I9Hx2%2B%2BHqaKJNsj4%2FsfRRqTzCOG8DIyDINqfTUPbCSFfnoOO9mcKoLPdUgF8OSHOLx78aH9GE362d8bUVxARfP4i8mwMocaQdAym70LyYwIwjuUVROH9ZW1yunmG0hKdkIWn%2F0DmE7Lw2yuIwm8vKzmo3tQqTaSOLAZBATkYQ%2FbHiNNDJFsOZH4IlnwCyZ%2BQxadLiMLdFas0JC%2Bm6qUcQwZjKDEEtQ7S8kgHaeAgjR2E%2FKRKW73AdTuBHzQa3SZjrNFgrNVt8xZvNLuBi5SV9IZI4iGYGoKZbcRmGxvy8%2BPWBZj0R9j1ApY7sMmEOB9tI%2BMFckGQW4KcEuSSIE8I8qzY48rWbXGfK5v63izXZ7lRjHTS36F7OumLiICa4U58Sl6e2vPsj%2BexIU6qrOfVG167Q%2BuNdps32i7jTd51OeV1yhqtLqwsIO25qeKtclc4j7jM1%2F%2BCTw9h1SGYrICmHmg%2B6tRd0PVRs%2BtiK3qQpX1Fa0yH4LpAnCwg2XR21Cl5dUri9crvEOzo0sPXDs57b%2FwJZgrEpsBt%2BRNBX90b3dA52b2hc0sercSJDOUWLfd3M6GJqDz8UGzm2vBrV%2BzwwbusBMry4JawyRKNuIz6lnxzWXIuzFVtmCDfX7Nrwl9N7frl1ERpvLT63tVrYWyEtVJHY1B5vPIMTE7Iwp0fpj%2FzpZ8%2FgzRjmLRAmB6RWUDqQ7B4Gzaes7eawKj5jB9XkKfFyNT9%2BaOSBErMe%2BoXsP%2Fp%2FXm9Y%2B%2BhbyqgyV1EYYHMFMhUAaqGsOkLoyQ2R5cef1XG1%2FBVZeQrU9n1lVFflNb%2BOiGdO3%2BfmWzlSVW0AjcQbl34Qc8POtTlvaDZ82nPEx2%2FRT0kdiJu0yf%2FAgAA%2F%2F8BAAD%2F%2F6I8kgR7BAAA HTTP/1.1
Host: persecutionmachinery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 01 Dec 2023 22:44:30 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: bf085e96031bd0cda5fbbfd202d45d34
Strict-Transport-Security: max-age=0; includeSubdomains

vintageperk.com/sbar.json?key=d137022925bcc2a680f8a4476ff94144&uuid=dc9b743a-5379-4332-b3d1-91d80a130196%3A3%3A1

173.233.137.60

200 OK

4.3 kB

URL GET HTTP/1.1
vintageperk.com/sbar.json?key=d137022925bcc2a680f8a4476ff94144&uuid=dc9b743a-5379-4332-b3d1-91d80a130196%3A3%3A1
IP
173.233.137.60:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectvintageperk.com
FingerprintB5:A1:A6:63:12:26:F5:61:29:1F:59:C4:11:C1:FE:AC:D3:A9:0F:75
ValidityTue, 28 Nov 2023 10:47:12 GMT - Mon, 26 Feb 2024 10:47:11 GMT

File type
JSON data\012- , ASCII text, with very long lines (6092), with no line terminators
Size
4.3 kB (4280 bytes)
Hash
e01c2957c0883db86d4406da0f25eeb3
d8fe300766f2ed04abdca31086c43ce0ec954ed2
c9cfa156eff5c3fb565cd64578bdb48d7c7a7bce9b8b8973e457de73f90c5684

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=d137022925bcc2a680f8a4476ff94144&uuid=dc9b743a-5379-4332-b3d1-91d80a130196%3A3%3A1 HTTP/1.1
Host: vintageperk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 01 Dec 2023 22:44:30 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15460408; expires=Sat, 02 Dec 2023 22:44:30 GMT; secure; SameSite=None
uid_id2=dc9b743a-5379-4332-b3d1-91d80a130196:3:1; expires=Fri, 08 Dec 2023 22:44:30 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 02 Dec 2023 22:44:30 GMT; secure; SameSite=None
uncs=1; expires=Sat, 02 Dec 2023 22:44:30 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 02 Dec 2023 22:44:30 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 02 Dec 2023 22:44:30 GMT; secure; SameSite=None
slecd137022925bcc2a680f8a4476ff94144=[4691073]; expires=Fri, 01 Dec 2023 22:44:35 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 05718ff095217df0939c9f50e50bef10
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

skiofficerdemote.com/pixel/purst?dl=0&th=0&sc=0&rs=8181&rd=8181&fd=225&bv=23.11.v.8&tmpl=136

173.233.137.52

200 OK

0 B

URL GET HTTP/1.1
skiofficerdemote.com/pixel/purst?dl=0&th=0&sc=0&rs=8181&rd=8181&fd=225&bv=23.11.v.8&tmpl=136
IP
173.233.137.52:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectskiofficerdemote.com
FingerprintB4:6F:3A:BD:FF:FE:15:51:53:8C:D2:EB:9B:13:BE:14:D1:BC:BD:EE
ValidityTue, 28 Nov 2023 11:02:22 GMT - Mon, 26 Feb 2024 11:02:21 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=8181&rd=8181&fd=225&bv=23.11.v.8&tmpl=136 HTTP/1.1
Host: skiofficerdemote.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 01 Dec 2023 22:44:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

vaugroar.com/custom

139.45.197.250

200 OK

39 B

URL OPTIONS HTTP/2
vaugroar.com/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectvaugroar.com
FingerprintF5:48:7D:7C:B6:28:8D:55:D3:7D:CF:03:2F:84:BE:B7:FD:20:F0:EE
ValiditySun, 12 Nov 2023 05:15:08 GMT - Sat, 10 Feb 2024 05:15:07 GMT

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /custom HTTP/1.1
Host: vaugroar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 797
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:31 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 61d0a86342b3fc529bc863190a949d10
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.vugla.com/wp-includes/images/w-logo-blue-white-bg.png

192.185.106.252

200 OK

4.1 kB

URL GET HTTP/2
www.vugla.com/wp-includes/images/w-logo-blue-white-bg.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4119 bytes)
Hash
000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0

HTTP Headers

GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
DNT: 1
Connection: keep-alive
Cookie: _ga_7NCJ73THPT=GS1.1.1701470673.1.0.1701470673.60.0.0; _ga=GA1.1.826617689.1701470673; prefetchAd_1316441=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=dc9b743a-5379-4332-b3d1-91d80a130196%3A3%3A1; sb_main_d137022925bcc2a680f8a4476ff94144=1; sb_count_d137022925bcc2a680f8a4476ff94144=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=persecutionmachinery.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
content-length: 4119
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:31 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:31 GMT
server: Apache
X-Firefox-Spdy: h2

vintageperk.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3QxAPBsE%2FIMwhoII72%2F9mZ9ocFmNMCOYfSSRXq6uqZytb3dVUdU9v9mJiQHKcoAePvW92s0aDmKsokVk9yEAg40HmkEXwoKAHIRCvMrMDi9%2Bhvq%2FqvcN776uPN8s94qGkkwtn9YZUii61mm7j9Ssy47qyjXOXG57bdI81rshsOTzWWJ8epveW57aa7huNU4Kt6SXf9VzXc73GSWlEoteXZihkfi%2FympHbDP2m1wqxbv57t6UDSx3w3h45AsnH%2F1v96T4kGyJLvz4h7Fqh8zffTUtFC23Q4zvvZ2uZrjKkB2NiHCTZzpwNbceEfHYIOtuZO4DubU0dIJZj4vziIc525jIR97b3lcYKIkPMn0XVG0KoISQdgumbkPwRARjHufPI0jvntKnotX2UTtExWXj6BLIak4XHLyBLvzqu5HrjklZlIXVmsZ7UkOtDyO4QebmLYsOBrHbBio8g%2BUOy9PQMsnTrvFUakk%2BOchbF7TCgi62gHS2GQeAvxgH3FiOPd1zqBa4XLc8iknIImQyhRB%2FUHkZpHZTSQZk4KHMHKZ80aCtKXLedxEkQdELGWBAw1uos8xYPwk7iomRTD30UeR9M9cHMdeTmOtbk7UetIzDl97CrNSx3YAuCHq9RCYLKElSUoJIEVUFQ9eptrqxv6ztc2TL25t2f96Ae6KK7Sbd10RUZATX9zXyPPD%2FL788%2FOlgTkwb3grbr%2B5Hfihnz6XLHTTo0DNvLSRKFXhjCyhrSHgK1Djamy8QzyKf97F%2BI6S6s2gWTh0HLV0GrQdt3QVcHYcfFRna3V3YVbTKdgusaebGA4pqzqfbIyzMRpz69AcFGK79v%2F3bpn4cTMFMjNzWuyh8IuurW4KKuyNZFXVly%2F3xeyFRu0OmCLxW0EAtfvCeuVdrw0yds%2F%2B7bbApMx3uXhS3O0IzLrGvJl8cl58Kc1IYJ8t1pe0XEF0q7erw0WZmfufDOydNpboS1UmdDUPnogwdgckyeu7My%2B7qvff4NpBnClDXSckTmBal3wfLrsPlo5deXPim%2BvfohrCYw6oAT5w6qsh4YPz54VHJM%2FCcvQonRyo83%2Fn%2F08dIroHENKw5iiMXowd%2F7%2FE17C13jgBY3kaU1eqZGT9Wgqg9bHh4UuRmt%2FBzMCrFyBrEyzlasjLq9H6%2BVk4ZoJW4iXF%2FESRQnberyKAmjmEaeaMct6qGwY3GVPvwXAAD%2F%2FwEAAP%2F%2FYNdBbZYEAAA%3D

173.233.137.60

200 OK

7 B

URL GET HTTP/1.1
vintageperk.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3QxAPBsE%2FIMwhoII72%2F9mZ9ocFmNMCOYfSSRXq6uqZytb3dVUdU9v9mJiQHKcoAePvW92s0aDmKsokVk9yEAg40HmkEXwoKAHIRCvMrMDi9%2Bhvq%2FqvcN776uPN8s94qGkkwtn9YZUii61mm7j9Ssy47qyjXOXG57bdI81rshsOTzWWJ8epveW57aa7huNU4Kt6SXf9VzXc73GSWlEoteXZihkfi%2FympHbDP2m1wqxbv57t6UDSx3w3h45AsnH%2F1v96T4kGyJLvz4h7Fqh8zffTUtFC23Q4zvvZ2uZrjKkB2NiHCTZzpwNbceEfHYIOtuZO4DubU0dIJZj4vziIc525jIR97b3lcYKIkPMn0XVG0KoISQdgumbkPwRARjHufPI0jvntKnotX2UTtExWXj6BLIak4XHLyBLvzqu5HrjklZlIXVmsZ7UkOtDyO4QebmLYsOBrHbBio8g%2BUOy9PQMsnTrvFUakk%2BOchbF7TCgi62gHS2GQeAvxgH3FiOPd1zqBa4XLc8iknIImQyhRB%2FUHkZpHZTSQZk4KHMHKZ80aCtKXLedxEkQdELGWBAw1uos8xYPwk7iomRTD30UeR9M9cHMdeTmOtbk7UetIzDl97CrNSx3YAuCHq9RCYLKElSUoJIEVUFQ9eptrqxv6ztc2TL25t2f96Ae6KK7Sbd10RUZATX9zXyPPD%2FL788%2FOlgTkwb3grbr%2B5Hfihnz6XLHTTo0DNvLSRKFXhjCyhrSHgK1Djamy8QzyKf97F%2BI6S6s2gWTh0HLV0GrQdt3QVcHYcfFRna3V3YVbTKdgusaebGA4pqzqfbIyzMRpz69AcFGK79v%2F3bpn4cTMFMjNzWuyh8IuurW4KKuyNZFXVly%2F3xeyFRu0OmCLxW0EAtfvCeuVdrw0yds%2F%2B7bbApMx3uXhS3O0IzLrGvJl8cl58Kc1IYJ8t1pe0XEF0q7erw0WZmfufDOydNpboS1UmdDUPnogwdgckyeu7My%2B7qvff4NpBnClDXSckTmBal3wfLrsPlo5deXPim%2BvfohrCYw6oAT5w6qsh4YPz54VHJM%2FCcvQonRyo83%2Fn%2F08dIroHENKw5iiMXowd%2F7%2FE17C13jgBY3kaU1eqZGT9Wgqg9bHh4UuRmt%2FBzMCrFyBrEyzlasjLq9H6%2BVk4ZoJW4iXF%2FESRQnberyKAmjmEaeaMct6qGwY3GVPvwXAAD%2F%2FwEAAP%2F%2FYNdBbZYEAAA%3D
IP
173.233.137.60:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectvintageperk.com
FingerprintB5:A1:A6:63:12:26:F5:61:29:1F:59:C4:11:C1:FE:AC:D3:A9:0F:75
ValidityTue, 28 Nov 2023 10:47:12 GMT - Mon, 26 Feb 2024 10:47:11 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3QxAPBsE%2FIMwhoII72%2F9mZ9ocFmNMCOYfSSRXq6uqZytb3dVUdU9v9mJiQHKcoAePvW92s0aDmKsokVk9yEAg40HmkEXwoKAHIRCvMrMDi9%2Bhvq%2FqvcN776uPN8s94qGkkwtn9YZUii61mm7j9Ssy47qyjXOXG57bdI81rshsOTzWWJ8epveW57aa7huNU4Kt6SXf9VzXc73GSWlEoteXZihkfi%2FympHbDP2m1wqxbv57t6UDSx3w3h45AsnH%2F1v96T4kGyJLvz4h7Fqh8zffTUtFC23Q4zvvZ2uZrjKkB2NiHCTZzpwNbceEfHYIOtuZO4DubU0dIJZj4vziIc525jIR97b3lcYKIkPMn0XVG0KoISQdgumbkPwRARjHufPI0jvntKnotX2UTtExWXj6BLIak4XHLyBLvzqu5HrjklZlIXVmsZ7UkOtDyO4QebmLYsOBrHbBio8g%2BUOy9PQMsnTrvFUakk%2BOchbF7TCgi62gHS2GQeAvxgH3FiOPd1zqBa4XLc8iknIImQyhRB%2FUHkZpHZTSQZk4KHMHKZ80aCtKXLedxEkQdELGWBAw1uos8xYPwk7iomRTD30UeR9M9cHMdeTmOtbk7UetIzDl97CrNSx3YAuCHq9RCYLKElSUoJIEVUFQ9eptrqxv6ztc2TL25t2f96Ae6KK7Sbd10RUZATX9zXyPPD%2FL788%2FOlgTkwb3grbr%2B5Hfihnz6XLHTTo0DNvLSRKFXhjCyhrSHgK1Djamy8QzyKf97F%2BI6S6s2gWTh0HLV0GrQdt3QVcHYcfFRna3V3YVbTKdgusaebGA4pqzqfbIyzMRpz69AcFGK79v%2F3bpn4cTMFMjNzWuyh8IuurW4KKuyNZFXVly%2F3xeyFRu0OmCLxW0EAtfvCeuVdrw0yds%2F%2B7bbApMx3uXhS3O0IzLrGvJl8cl58Kc1IYJ8t1pe0XEF0q7erw0WZmfufDOydNpboS1UmdDUPnogwdgckyeu7My%2B7qvff4NpBnClDXSckTmBal3wfLrsPlo5deXPim%2BvfohrCYw6oAT5w6qsh4YPz54VHJM%2FCcvQonRyo83%2Fn%2F08dIroHENKw5iiMXowd%2F7%2FE17C13jgBY3kaU1eqZGT9Wgqg9bHh4UuRmt%2FBzMCrFyBrEyzlasjLq9H6%2BVk4ZoJW4iXF%2FESRQnberyKAmjmEaeaMct6qGwY3GVPvwXAAD%2F%2FwEAAP%2F%2FYNdBbZYEAAA%3D HTTP/1.1
Host: vintageperk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=dc9b743a-5379-4332-b3d1-91d80a130196:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 01 Dec 2023 22:44:31 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0e06bcfd7bf1913c284c38aca746641c
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/close.png

172.64.108.10

200 OK

9.0 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/close.png
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
PNG image data, 497 x 496, 8-bit/color RGBA, non-interlaced\012- data
Size
9.0 kB (8952 bytes)
Hash
b080cbdd5cc827b5a659a45676c079d4
3502ad6743a3a42dd92ee3cea142616356f47359
c89d28b4be45a7af77493e8f6c76894a7ba86469e5b6733e6ca3cb33eaabcd8f

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:31 GMT
content-type: image/png
content-length: 8952
last-modified: Thu, 19 Oct 2023 15:25:30 GMT
etag: "65314a6a-22f8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1858521
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9mT%2FP%2FuARdYMlEgAGra1WJTLdftLOEN4g54f8wSMMRoaV8E%2FwQWfOa0WNn%2FagFenAUuu5JVLrRCOOWVuOCcnxQyQN62ufXJOI8oJPUY3DKJCgW%2B79KQ78RV8%2F95fQsADD8ZyrO%2B8TfDj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82eedaf27ff7d168-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/bg.jpg

172.64.108.10

200 OK

197 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/bg.jpg
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size
197 kB (196572 bytes)
Hash
0f268ac97ce309645d705ae25e03383b
4c1462adfe8488d6f43f5a56a36b6302a29ac054
9d809e2358a07890e0a8683526070118f7c1056f25e30aee0fdfd020d6377bad

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/img/bg.jpg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:31 GMT
content-type: image/jpeg
content-length: 196572
last-modified: Thu, 19 Oct 2023 15:25:32 GMT
etag: "65314a6c-2ffdc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 51923
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i8EYt9jDxLAYvvMWVuEStUDytfNHYMDc9WnyrhovD%2BHHd6HYDEpeZcpUwDeefYHW3s0L1j7em%2BvtdQnU%2B2vca%2FmYmvxI6Q3ekLIPAztnMAwE86XLiXeYXXrZvLSj%2Bl%2BXrLgoZOnwTdh3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82eedaf2880cd168-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:34 GMT
expires: Fri, 29 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 150418
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:13:56 GMT
expires: Thu, 28 Nov 2024 21:13:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 178236
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/fonts/gP1RrxsjcxVyin9l9nj2hTd52.woff2

172.64.108.10

200 OK

17 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/fonts/gP1RrxsjcxVyin9l9nj2hTd52.woff2
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17360, version 1.0\012- data
Size
17 kB (17360 bytes)
Hash
70322c317b1f4e2e17dbc6b672f95f5f
f3dff7c50e1aea33814c6aeeca177ae3ff900bfc
3877b522181765adf66ba89bd68d288ecb9f2483b441baab3424646b0c7aaa0a

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/fonts/gP1RrxsjcxVyin9l9nj2hTd52.woff2 HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:32 GMT
content-type: application/octet-stream
content-length: 17360
last-modified: Thu, 19 Oct 2023 15:25:28 GMT
etag: "65314a68-43d0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 134642
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FV%2BdOLCGQOopH%2BqqoBvHmU8lc2rIXgWwtl6XZVpuFJcU8clfNWS96FnRhkFDuGpiAR3KB4wD6vV5QS6CmE3KzBs6J3dJjBDsFBSoMHCTXlkjbiCH6Ey3v6HZnv9IoCeVLh5YYEHypHpc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82eedaf4aa85d168-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

vintageperk.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3QxAPBsE%2FIMwhoII72%2F9mZ8YcFmNMCOYfSSRXq6uqZytb3dVUdU9P9mJiQHKcoAePvW92s0aDmKsokVk9yMDCjgeZQxbBg4IehEC8yswOLH6H%2Br6q9w7vva8%2B3ij2iYeCTi6d1%2BtSKbrUqLu116%2FJlOvS1i5crXlu3T1RuybT5fBErTc9TPctz23U3TdqZwRb00u%2B67mu53q109KIWPeWZihk9qDt1dtuPfTrXiNEz%2Fz3bgsHljrg3X1yDJKP%2F7f600NINkSafH1K2LVcZ2%2B%2BmxSK5tqgy7ffT9dSXaZIDsfYOIjT7Tkb2o4J%2BewIdLo9dwDd3Zw6QCTHxPnFQ5Ruz2Ui6m4dKI0URIqIP4uyO4RQQ0g6BNO3IfkeARjHhYtIk3sXtCnpjQOUTtExWXj6BLIck4XHLyBNvjqpZK92Rasilzq16MUVZG8I2RkiK3aQrzuQ5Q5Y%2FhEk3yVLT88hTTYvWqUh%2BeQ4Z%2B2oGQZ0sRE024thEPiLUcC9xbbHWy71AtdrL88iknIIGQ%2BhRB%2FUHkVhHRTSQRE7KDIHCZ%2FUaKMdu24zjuIgaIWMsSBgrNFa5g0ehK3YRcGmHvrIsz6Y6oOZm8jMTazJu3uNYzDF97CrFSx3YHOCLq9QCoLSEpSUoJQEZU5Qdqstrqxvq3tc2SLy5t2f96Aa6LyzQbd03hEpATX9jWyfPD%2FL788%2FWlgTkxr3gqbr%2B22%2FETHm0%2BWWG7doGDaX47gdemEIKytIewTUOlifLhPPIJv2838hojuwagdMHgUtXgUtB03fBV0dhC0X6%2Bn9btFRtM50Aq4rZPkC8hvOhtonL89EnPn0FgQbrfy%2B9duVf3YnYKZCZipclz8QdNSdwWVdks3LurTk4cUsl4lcp9MFX8lpLha%2BeE%2FcKLXhZ0%2FZ%2Fv232RSYjg%2BuCpufoymXaceSL09KzoU5rQ0T5Luz9pqILhV29WRh0iI7d%2Bmd02eTzAhrpU6HoHLvg0dgckyeu7cy%2B7qvff4NpBnCFBWSYkTmBal3wLKbsNlo5deXPsm%2Fvf4hrCYw6pATZQ7KohoYPzp8VHJM%2FCcvQonRyo%2B3%2Fn%2F88dIroFEFKw5jiMTo0d8H%2FA17Bx3jgOa3kSYVuqZCV1Wgqg9bHB3kmRmt%2FBzMCpFyBpEyzmakjLp7EK%2BVk1rDC0UrajUZ55Fg3Gv6QStwXZ%2FzsNkWXhu5HYvrdPdfAAAA%2F%2F8BAAD%2F%2F3Tfz4uWBAAA

173.233.137.60

200 OK

7 B

URL GET HTTP/1.1
vintageperk.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3QxAPBsE%2FIMwhoII72%2F9mZ8YcFmNMCOYfSSRXq6uqZytb3dVUdU9P9mJiQHKcoAePvW92s0aDmKsokVk9yMDCjgeZQxbBg4IehEC8yswOLH6H%2Br6q9w7vva8%2B3ij2iYeCTi6d1%2BtSKbrUqLu116%2FJlOvS1i5crXlu3T1RuybT5fBErTc9TPctz23U3TdqZwRb00u%2B67mu53q109KIWPeWZihk9qDt1dtuPfTrXiNEz%2Fz3bgsHljrg3X1yDJKP%2F7f600NINkSafH1K2LVcZ2%2B%2BmxSK5tqgy7ffT9dSXaZIDsfYOIjT7Tkb2o4J%2BewIdLo9dwDd3Zw6QCTHxPnFQ5Ruz2Ui6m4dKI0URIqIP4uyO4RQQ0g6BNO3IfkeARjHhYtIk3sXtCnpjQOUTtExWXj6BLIck4XHLyBNvjqpZK92Rasilzq16MUVZG8I2RkiK3aQrzuQ5Q5Y%2FhEk3yVLT88hTTYvWqUh%2BeQ4Z%2B2oGQZ0sRE024thEPiLUcC9xbbHWy71AtdrL88iknIIGQ%2BhRB%2FUHkVhHRTSQRE7KDIHCZ%2FUaKMdu24zjuIgaIWMsSBgrNFa5g0ehK3YRcGmHvrIsz6Y6oOZm8jMTazJu3uNYzDF97CrFSx3YHOCLq9QCoLSEpSUoJQEZU5Qdqstrqxvq3tc2SLy5t2f96Aa6LyzQbd03hEpATX9jWyfPD%2FL788%2FWlgTkxr3gqbr%2B22%2FETHm0%2BWWG7doGDaX47gdemEIKytIewTUOlifLhPPIJv2838hojuwagdMHgUtXgUtB03fBV0dhC0X6%2Bn9btFRtM50Aq4rZPkC8hvOhtonL89EnPn0FgQbrfy%2B9duVf3YnYKZCZipclz8QdNSdwWVdks3LurTk4cUsl4lcp9MFX8lpLha%2BeE%2FcKLXhZ0%2FZ%2Fv232RSYjg%2BuCpufoymXaceSL09KzoU5rQ0T5Luz9pqILhV29WRh0iI7d%2Bmd02eTzAhrpU6HoHLvg0dgckyeu7cy%2B7qvff4NpBnCFBWSYkTmBal3wLKbsNlo5deXPsm%2Fvf4hrCYw6pATZQ7KohoYPzp8VHJM%2FCcvQonRyo%2B3%2Fn%2F88dIroFEFKw5jiMTo0d8H%2FA17Bx3jgOa3kSYVuqZCV1Wgqg9bHB3kmRmt%2FBzMCpFyBpEyzmakjLp7EK%2BVk1rDC0UrajUZ55Fg3Gv6QStwXZ%2FzsNkWXhu5HYvrdPdfAAAA%2F%2F8BAAD%2F%2F3Tfz4uWBAAA
IP
173.233.137.60:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectvintageperk.com
FingerprintB5:A1:A6:63:12:26:F5:61:29:1F:59:C4:11:C1:FE:AC:D3:A9:0F:75
ValidityTue, 28 Nov 2023 10:47:12 GMT - Mon, 26 Feb 2024 10:47:11 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3QxAPBsE%2FIMwhoII72%2F9mZ8YcFmNMCOYfSSRXq6uqZytb3dVUdU9P9mJiQHKcoAePvW92s0aDmKsokVk9yMDCjgeZQxbBg4IehEC8yswOLH6H%2Br6q9w7vva8%2B3ij2iYeCTi6d1%2BtSKbrUqLu116%2FJlOvS1i5crXlu3T1RuybT5fBErTc9TPctz23U3TdqZwRb00u%2B67mu53q109KIWPeWZihk9qDt1dtuPfTrXiNEz%2Fz3bgsHljrg3X1yDJKP%2F7f600NINkSafH1K2LVcZ2%2B%2BmxSK5tqgy7ffT9dSXaZIDsfYOIjT7Tkb2o4J%2BewIdLo9dwDd3Zw6QCTHxPnFQ5Ruz2Ui6m4dKI0URIqIP4uyO4RQQ0g6BNO3IfkeARjHhYtIk3sXtCnpjQOUTtExWXj6BLIck4XHLyBNvjqpZK92Rasilzq16MUVZG8I2RkiK3aQrzuQ5Q5Y%2FhEk3yVLT88hTTYvWqUh%2BeQ4Z%2B2oGQZ0sRE024thEPiLUcC9xbbHWy71AtdrL88iknIIGQ%2BhRB%2FUHkVhHRTSQRE7KDIHCZ%2FUaKMdu24zjuIgaIWMsSBgrNFa5g0ehK3YRcGmHvrIsz6Y6oOZm8jMTazJu3uNYzDF97CrFSx3YHOCLq9QCoLSEpSUoJQEZU5Qdqstrqxvq3tc2SLy5t2f96Aa6LyzQbd03hEpATX9jWyfPD%2FL788%2FWlgTkxr3gqbr%2B22%2FETHm0%2BWWG7doGDaX47gdemEIKytIewTUOlifLhPPIJv2838hojuwagdMHgUtXgUtB03fBV0dhC0X6%2Bn9btFRtM50Aq4rZPkC8hvOhtonL89EnPn0FgQbrfy%2B9duVf3YnYKZCZipclz8QdNSdwWVdks3LurTk4cUsl4lcp9MFX8lpLha%2BeE%2FcKLXhZ0%2FZ%2Fv232RSYjg%2BuCpufoymXaceSL09KzoU5rQ0T5Luz9pqILhV29WRh0iI7d%2Bmd02eTzAhrpU6HoHLvg0dgckyeu7cy%2B7qvff4NpBnCFBWSYkTmBal3wLKbsNlo5deXPsm%2Fvf4hrCYw6pATZQ7KohoYPzp8VHJM%2FCcvQonRyo%2B3%2Fn%2F88dIroFEFKw5jiMTo0d8H%2FA17Bx3jgOa3kSYVuqZCV1Wgqg9bHB3kmRmt%2FBzMCpFyBpEyzmakjLp7EK%2BVk1rDC0UrajUZ55Fg3Gv6QStwXZ%2FzsNkWXhu5HYvrdPdfAAAA%2F%2F8BAAD%2F%2F3Tfz4uWBAAA HTTP/1.1
Host: vintageperk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=dc9b743a-5379-4332-b3d1-91d80a130196:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 01 Dec 2023 22:44:32 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4691e49f7437804ad23f4b97d724dff7
Strict-Transport-Security: max-age=0; includeSubdomains

vintageperk.com/pixel/sbs?c=1

173.233.137.60

200 OK

0 B

URL GET HTTP/1.1
vintageperk.com/pixel/sbs?c=1
IP
173.233.137.60:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectvintageperk.com
FingerprintB5:A1:A6:63:12:26:F5:61:29:1F:59:C4:11:C1:FE:AC:D3:A9:0F:75
ValidityTue, 28 Nov 2023 10:47:12 GMT - Mon, 26 Feb 2024 10:47:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: vintageperk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=dc9b743a-5379-4332-b3d1-91d80a130196:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 01 Dec 2023 22:44:32 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/js/script.js

172.64.108.10

200 OK

2.2 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/js/script.js
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
Unicode text, UTF-8 text
Size
2.2 kB (2228 bytes)
Hash
b64985705b68c11b9b30d7ca43e1f095
8b5d6dc7edce43d08791bbf7aec72e15dabe528d
29ad23b2ed8670b41c45429c724b7939b4b0643db9d555b79868337aaa8afca0

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:31 GMT
content-type: application/javascript
last-modified: Thu, 19 Oct 2023 15:25:32 GMT
etag: W/"65314a6c-f3c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 134642
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tL9gJo9MGSU1VrCdCS3hc1FgDB%2BZpozzSTqnMK5zBKJNt%2Brcimo2UmTml4FHrjUA8It5QMN4vOUoYIVX9h5y0iGF6tjKLl4xRIzBajkFxrW5tQD8yPQiNmWxUuP5VPxtAyWPrLXpbFjc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82eedaf1ef2bd168-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

unseenreport.com/pxf.gif?uuid=dc9b743a-5379-4332-b3d1-91d80a130196&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22

192.243.59.20

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=dc9b743a-5379-4332-b3d1-91d80a130196&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=dc9b743a-5379-4332-b3d1-91d80a130196&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 01 Dec 2023 22:44:32 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a996ebaf9694bdf9645828fb94e78109
Strict-Transport-Security: max-age=0; includeSubdomains

tharbadir.com/15?rnd=3256315840&z=2892323&var=&varid=0&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A3.127%2C%22location%22%3A%22https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A5%2C%22wdov%22%3A0%2C%22isIONS%22%3Atrue%7D

139.45.197.238

204 No Content

0 B

URL GET HTTP/2
tharbadir.com/15?rnd=3256315840&z=2892323&var=&varid=0&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A3.127%2C%22location%22%3A%22https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A5%2C%22wdov%22%3A0%2C%22isIONS%22%3Atrue%7D
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /15?rnd=3256315840&z=2892323&var=&varid=0&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A3.127%2C%22location%22%3A%22https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A5%2C%22wdov%22%3A0%2C%22isIONS%22%3Atrue%7D HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=b6d568e643b941ca8a347fc1a906f202; oaidts=1701470666
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Fri, 01 Dec 2023 22:44:32 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: ca7e37d6fab3c20d801e4de08dadda8a
access-control-expose-headers: X-Sc
set-cookie: OAID=b6d568e643b941ca8a347fc1a906f202; expires=Sat, 30 Nov 2024 22:44:32 GMT; secure; SameSite=None
oaidts=1701470666; expires=Sat, 30 Nov 2024 22:44:32 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

eehuzaih.com/impression/rWT8HlG5j3QUviCy2eSxDnNwICHb43ej-C5VMsw3I5ngd_e7n8Ms2n6XvT7EijyvchhKaO4vKQdnfIoMLn_ur0k3vD85VhW-NjLxDlabqoVKM0uW-v0kSYG03eEqoRkKwSTcE-qBhdV7WtQOaJZ2adOFPjtLdzp_qgXWGsV5tJ4MFjFx93hWRdR7crQbde9VMBmIe2d4GLYKaJCBrQWXE225QtJCd4x7j-DydYx5q2_xiHzPav3ifP8rcesT5ADeF3zYnm-u-Ze1o_iiEFnBbMXqbdjEg8RISL37R1cDBZN3f_JgvOVP1vb_lk7cBPMyIxgFy0rCLKV28C9HD-FXgaaEt66oemD2-sTWdSkzBEZiJ3LdnijSsIxow_ligJckn6iqzU_hRurwRiYWjleyKy48fU6J_3_X9e7Z6ZeXsZqj3CbEo8kMIPO7LyIx_2tVD9xrR8RNnlPCiRhXiLxTR324qSeeAILYkDq1pzNEyZspFEqpHS4YEyTYXLQjfpTMCZ4V_jmFHnDvjXiGv4iXORwduIGdlQYynvenDwx1W98maRzhnkPG9svCvQhpV_NXfB8xei05filkZm13S8-qLGPkkGgikKWDYBXcultrfmnmoyTXypNLZ_LO0R-g1Gqp5Oyz6HmPPPf9OKwkIkXX4Bfvb37Fs6e1sA0aQsGL24KNVhNt1r0XNajDhlCkdtJZ5fMyA-3rcaSGEbz4WlGV-lUp7IuweUAu4mx2fsWD_poLE009b1B0WUOn8MhWrLx-T3gu_g==?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=9&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0

139.45.197.237

200 OK

43 B

URL GET HTTP/2
eehuzaih.com/impression/rWT8HlG5j3QUviCy2eSxDnNwICHb43ej-C5VMsw3I5ngd_e7n8Ms2n6XvT7EijyvchhKaO4vKQdnfIoMLn_ur0k3vD85VhW-NjLxDlabqoVKM0uW-v0kSYG03eEqoRkKwSTcE-qBhdV7WtQOaJZ2adOFPjtLdzp_qgXWGsV5tJ4MFjFx93hWRdR7crQbde9VMBmIe2d4GLYKaJCBrQWXE225QtJCd4x7j-DydYx5q2_xiHzPav3ifP8rcesT5ADeF3zYnm-u-Ze1o_iiEFnBbMXqbdjEg8RISL37R1cDBZN3f_JgvOVP1vb_lk7cBPMyIxgFy0rCLKV28C9HD-FXgaaEt66oemD2-sTWdSkzBEZiJ3LdnijSsIxow_ligJckn6iqzU_hRurwRiYWjleyKy48fU6J_3_X9e7Z6ZeXsZqj3CbEo8kMIPO7LyIx_2tVD9xrR8RNnlPCiRhXiLxTR324qSeeAILYkDq1pzNEyZspFEqpHS4YEyTYXLQjfpTMCZ4V_jmFHnDvjXiGv4iXORwduIGdlQYynvenDwx1W98maRzhnkPG9svCvQhpV_NXfB8xei05filkZm13S8-qLGPkkGgikKWDYBXcultrfmnmoyTXypNLZ_LO0R-g1Gqp5Oyz6HmPPPf9OKwkIkXX4Bfvb37Fs6e1sA0aQsGL24KNVhNt1r0XNajDhlCkdtJZ5fMyA-3rcaSGEbz4WlGV-lUp7IuweUAu4mx2fsWD_poLE009b1B0WUOn8MhWrLx-T3gu_g==?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=9&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
139.45.197.237:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impression/rWT8HlG5j3QUviCy2eSxDnNwICHb43ej-C5VMsw3I5ngd_e7n8Ms2n6XvT7EijyvchhKaO4vKQdnfIoMLn_ur0k3vD85VhW-NjLxDlabqoVKM0uW-v0kSYG03eEqoRkKwSTcE-qBhdV7WtQOaJZ2adOFPjtLdzp_qgXWGsV5tJ4MFjFx93hWRdR7crQbde9VMBmIe2d4GLYKaJCBrQWXE225QtJCd4x7j-DydYx5q2_xiHzPav3ifP8rcesT5ADeF3zYnm-u-Ze1o_iiEFnBbMXqbdjEg8RISL37R1cDBZN3f_JgvOVP1vb_lk7cBPMyIxgFy0rCLKV28C9HD-FXgaaEt66oemD2-sTWdSkzBEZiJ3LdnijSsIxow_ligJckn6iqzU_hRurwRiYWjleyKy48fU6J_3_X9e7Z6ZeXsZqj3CbEo8kMIPO7LyIx_2tVD9xrR8RNnlPCiRhXiLxTR324qSeeAILYkDq1pzNEyZspFEqpHS4YEyTYXLQjfpTMCZ4V_jmFHnDvjXiGv4iXORwduIGdlQYynvenDwx1W98maRzhnkPG9svCvQhpV_NXfB8xei05filkZm13S8-qLGPkkGgikKWDYBXcultrfmnmoyTXypNLZ_LO0R-g1Gqp5Oyz6HmPPPf9OKwkIkXX4Bfvb37Fs6e1sA0aQsGL24KNVhNt1r0XNajDhlCkdtJZ5fMyA-3rcaSGEbz4WlGV-lUp7IuweUAu4mx2fsWD_poLE009b1B0WUOn8MhWrLx-T3gu_g==?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=9&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: OAID=b6d568e643b941ca8a347fc1a906f202
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:33 GMT
content-type: image/gif
content-length: 43
x-trace-id: 06abd7167bd70a992ae876ec2b77a177
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-7NCJ73THPT&gtm=45je3bt0v879882835&_p=1701470673047&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=826617689.1701470673&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701470673&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&dt=Srpski%20vatrogasci%20se%20bore%20sa%20stihijom%20Buknuo%20je%20na%20ulici%2C%20oni%20rade%20sve%20da%20ugase%20vatru!%20-%20Vugla&en=scroll&epn.percent_scrolled=90&tfd=10998

216.239.32.36

204 No Content

0 B

URL POST HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-7NCJ73THPT&gtm=45je3bt0v879882835&_p=1701470673047&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=826617689.1701470673&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701470673&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&dt=Srpski%20vatrogasci%20se%20bore%20sa%20stihijom%20Buknuo%20je%20na%20ulici%2C%20oni%20rade%20sve%20da%20ugase%20vatru!%20-%20Vugla&en=scroll&epn.percent_scrolled=90&tfd=10998
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-7NCJ73THPT&gtm=45je3bt0v879882835&_p=1701470673047&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=826617689.1701470673&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701470673&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&dt=Srpski%20vatrogasci%20se%20bore%20sa%20stihijom%20Buknuo%20je%20na%20ulici%2C%20oni%20rade%20sve%20da%20ugase%20vatru!%20-%20Vugla&en=scroll&epn.percent_scrolled=90&tfd=10998 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://www.vugla.com
date: Fri, 01 Dec 2023 22:44:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

offerimage.com/www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg

172.67.22.216

200 OK

19 kB

URL GET HTTP/2
offerimage.com/www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg
IP
172.67.22.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Size
19 kB (19381 bytes)
Hash
71581bf2ce9a00138faf7dd80fe3e12e
56479135ed64bf23e1037067c0c87047eb8a414c
5d9f95c8c06343cc189b38268296615ed8816d8154b4b782ad0d62bedd23525e

HTTP Headers

GET /www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:34 GMT
content-type: image/jpeg
content-length: 19381
cache-control: max-age=86400
cf-bgj: h2pri
etag: "65674405-4bb5"
expires: Sat, 02 Dec 2023 14:07:34 GMT
last-modified: Wed, 29 Nov 2023 14:00:37 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 31020
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82eedb01ebec5687-OSL
X-Firefox-Spdy: h2

offerimage.com/www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg

172.67.22.216

200 OK

19 kB

URL GET HTTP/2
offerimage.com/www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg
IP
172.67.22.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Size
19 kB (19381 bytes)
Hash
71581bf2ce9a00138faf7dd80fe3e12e
56479135ed64bf23e1037067c0c87047eb8a414c
5d9f95c8c06343cc189b38268296615ed8816d8154b4b782ad0d62bedd23525e

HTTP Headers

GET /www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:34 GMT
content-type: image/jpeg
content-length: 19381
cache-control: max-age=86400
cf-bgj: h2pri
etag: "65674405-4bb5"
expires: Sat, 02 Dec 2023 14:07:34 GMT
last-modified: Wed, 29 Nov 2023 14:00:37 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 31020
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82eedb024c275687-OSL
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:13:56 GMT
expires: Thu, 28 Nov 2024 21:13:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 178238
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:34 GMT
expires: Fri, 29 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 150420
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:13:56 GMT
expires: Thu, 28 Nov 2024 21:13:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 178238
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:34 GMT
expires: Fri, 29 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 150420
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

tharbadir.com/11?rnd=1500770888&z=2892323&b=19427765&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1

139.45.197.238

200 OK

0 B

URL GET HTTP/2
tharbadir.com/11?rnd=1500770888&z=2892323&b=19427765&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /11?rnd=1500770888&z=2892323&b=19427765&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=b6d568e643b941ca8a347fc1a906f202; oaidts=1701470666
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:34 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 33105d66b3b92053fdd9fda706aeace4
access-control-expose-headers: X-Sc
set-cookie: OAID=b6d568e643b941ca8a347fc1a906f202; expires=Sat, 30 Nov 2024 22:44:34 GMT; secure; SameSite=None
oaidts=1701470666; expires=Sat, 30 Nov 2024 22:44:34 GMT; secure; SameSite=None
oaidvc=1; expires=Sat, 30 Nov 2024 22:44:34 GMT; secure; SameSite=None
CNT=1_v1_tXEoAQEAAADsTAAA; expires=Fri, 01 Dec 2023 23:44:34 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

vaugroar.com/pfe/current/defaultSkin.min.js

139.45.197.250

200 OK

19 kB

URL GET HTTP/2
vaugroar.com/pfe/current/defaultSkin.min.js
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectvaugroar.com
FingerprintF5:48:7D:7C:B6:28:8D:55:D3:7D:CF:03:2F:84:BE:B7:FD:20:F0:EE
ValiditySun, 12 Nov 2023 05:15:08 GMT - Sat, 10 Feb 2024 05:15:07 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
19 kB (19417 bytes)
Hash
18d7f9cdf8cececa9acb9366eb878a4f
08cdcc747f5d191783dd258d060baf8e05cb6c3e
fef084b87169d9b60465bc7bf8028af6b67a2b2c8e1bd6c3cd3d3f98a378f9c9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: vaugroar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:34 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 17:44:23 GMT
etag: W/"6564d577-df63"
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

tharbadir.com/15?rnd=3256315840&z=2892323&var=&varid=0&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A7.137%2C%22location%22%3A%22https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A5%2C%22wdov%22%3A0%2C%22wvr%22%3A1%2C%22wiv%22%3Atrue%2C%22isIONS%22%3Atrue%7D

139.45.197.238

204 No Content

0 B

URL GET HTTP/2
tharbadir.com/15?rnd=3256315840&z=2892323&var=&varid=0&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A7.137%2C%22location%22%3A%22https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A5%2C%22wdov%22%3A0%2C%22wvr%22%3A1%2C%22wiv%22%3Atrue%2C%22isIONS%22%3Atrue%7D
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /15?rnd=3256315840&z=2892323&var=&varid=0&rb=9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw=&ruid=5f996158-b87c-4954-a391-debbcfdd2267&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A7.137%2C%22location%22%3A%22https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A5%2C%22wdov%22%3A0%2C%22wvr%22%3A1%2C%22wiv%22%3Atrue%2C%22isIONS%22%3Atrue%7D HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=b6d568e643b941ca8a347fc1a906f202; oaidts=1701470666; oaidvc=1; CNT=1_v1_tXEoAQEAAADsTAAA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Fri, 01 Dec 2023 22:44:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 62166cab120b9c0a138930c035c37d77
access-control-expose-headers: X-Sc
set-cookie: OAID=b6d568e643b941ca8a347fc1a906f202; expires=Sat, 30 Nov 2024 22:44:36 GMT; secure; SameSite=None
oaidts=1701470666; expires=Sat, 30 Nov 2024 22:44:36 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7NCJ73THPT&cid=826617689.1701470673&gtm=45je3bt0v879882835&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1732648707

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7NCJ73THPT&cid=826617689.1701470673&gtm=45je3bt0v879882835&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1732648707
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32
ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7NCJ73THPT&cid=826617689.1701470673&gtm=45je3bt0v879882835&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1732648707 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 01 Dec 2023 22:44:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.yourwebbars.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/index.html

104.26.6.19

200 OK

1.4 kB

URL GET HTTP/2
cdn.yourwebbars.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/index.html
IP
104.26.6.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49
ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
HTML document text\012- HTML document, ASCII text, with very long lines (1513), with no line terminators
Size
1.4 kB (1433 bytes)
Hash
81d8118d3537074ab40120b4e3f313d1
9e5bab2b235aadee5ef3ea18d5d73586e92e11f2
2f234b9a6693d5555fdaff9bf301a59a5912fb833f3e168fdbb717a08c6b4e51

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:31 GMT
content-type: text/html
last-modified: Thu, 19 Oct 2023 15:25:25 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 437822
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kmsNd2XB7m4wGSUOpqk%2FALC2uwXlovcDWNYRyyievQ1W4vZT4bZbz9cLWHWQu2gUawOruxj4KDNzKu4kk4TIdOwUKWP%2Fxs%2FC7F4YOkZ3gl72Q0YH33DT6UF3Zvkv74wnsyiWsf0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82eedaf04b72b515-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/tumblr.png

192.185.106.252

200 OK

861 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/tumblr.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Size
861 B (861 bytes)
Hash
1d8dab6f1066b94b74f5611a8c918681
4e0edc7ba1ada49418772d8d581cd3d38518d490
bac6d2c8418e543d967d6e57710eda1ca4318ddd917c19a28fd63b4240e8d150

HTTP Headers

GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/tumblr.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 861
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

142.250.74.78

301 Moved Permanently

0 B

URL GET HTTP/3
apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 301 Moved Permanently
location: http://developers.google.com/
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 01 Dec 2023 22:44:29 GMT
expires: Fri, 01 Dec 2023 23:14:29 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/style.css

172.64.108.10

200 OK

3.4 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/style.css
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text, with very long lines (3588), with no line terminators
Size
3.4 kB (3413 bytes)
Hash
9f41060a94dfdae2b9e3e7af3fbafd0d
e08ee5f1feddbd7f0e0b68e945509a0029cc7f60
f28e8574ddbdb7d40301ecd44c1eec3324a40024536bca957e3d09ebd288721a

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:31 GMT
content-type: text/css
last-modified: Thu, 19 Oct 2023 15:30:48 GMT
etag: W/"65314ba8-d55"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sZVK1Qjbjw6o1F7i%2FzEiDSgExL%2Bau68nKyw%2F9peYO%2BhoGRlAe344MP%2BrYmsssgL%2FhoZAkvbyvYg7drMxjflTJin242PdLlYpgr%2BohPbV7MVFtdWfDWYoQTrU0aZ3nVo8iCFZLysGHh7r"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82eedaf1ff2ed168-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

tzegilo.com/stattag.js

172.67.193.52

200 OK

19 kB

URL GET HTTP/2
tzegilo.com/stattag.js
IP
172.67.193.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint52:B8:ED:73:BB:55:6F:9C:F8:97:7C:04:34:2B:AD:DB:55:0A:C9:6A
ValidityThu, 05 Oct 2023 17:59:18 GMT - Wed, 03 Jan 2024 17:59:17 GMT

File type
ASCII text, with very long lines (18369)
Size
19 kB (19019 bytes)
Hash
89e89aea544ea2785d49cc4cd9cf26f6
7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b
86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:28 GMT
content-type: application/javascript
last-modified: Thu, 07 Sep 2023 08:19:52 GMT
etag: W/"64f987a8-4a4b"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 964
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BZx6rGbaoT5mJcSGd3sUP4MmIkBJS4REREeuTZD6NwI%2Fs7c2w%2BGFlteEu3sZnSHg0htJIalk7cZ2VLPE73mx2j%2FfK2qylF%2FQTq4RuylBVpsZ7mn8KUdmdIXzEka7fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82eedadfa908569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.kursnalista.co/banners/kurs_dolara_300x600.jpg

192.185.106.47

200 OK

129 kB

URL GET HTTP/2
www.kursnalista.co/banners/kurs_dolara_300x600.jpg
IP
192.185.106.47:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.kursnalista.co
Fingerprint1C:D4:9B:DE:4F:51:D3:F0:32:B2:6C:A1:1C:03:E2:3E:18:FC:D4:2A
ValidityMon, 20 Nov 2023 10:01:16 GMT - Sun, 18 Feb 2024 10:01:15 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x600, components 3\012- data
Size
129 kB (129445 bytes)
Hash
6bdd195f978ceb26b93cca3b9ebec0b1
d54517352a0ffd586fe7ef7c4db30c016bafdce5
aca5dee06b20357632b47eca7e8b246fbd6e8796f25d3c7818c1760ba6fc2862

HTTP Headers

GET /banners/kurs_dolara_300x600.jpg HTTP/1.1
Host: www.kursnalista.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sat, 06 Jun 2015 11:16:18 GMT
accept-ranges: bytes
content-length: 129445
content-type: image/jpeg
date: Fri, 01 Dec 2023 22:44:29 GMT
server: Apache
X-Firefox-Spdy: h2

friendshipmale.com/sfp.js

172.64.173.31

200 OK

86 kB

URL GET HTTP/3
friendshipmale.com/sfp.js
IP
172.64.173.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type

Size
86 kB (85468 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 01 Dec 2023 22:44:30 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 20d6371c5646debd20ada2a5a0a4e834
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 01 Dec 2023 22:44:30 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QiWCgsJEUHTybr0lvUr7YET5g5tiwRdXenOu25AHTVSc%2FEQQUROAvw5niYwpUHXywB1ejJf8QpAcSFMBzhBs6aiVN5B2p2cvzWcMwhZv4J%2B2o4eG5yenjYnCg2jl09CFlcOwKlE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82eedaec5b4952c6-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

psuftoum.com/5/1316441

139.45.197.244

200 OK

72 kB

URL GET HTTP/2
psuftoum.com/5/1316441
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectpsuftoum.com
Fingerprint2C:F3:EA:66:F3:74:01:A6:A1:04:29:7A:60:60:06:A7:A5:C0:93:CC
ValidityTue, 19 Sep 2023 05:22:30 GMT - Mon, 18 Dec 2023 05:22:29 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
72 kB (71571 bytes)
Hash
7f3dd61a0967a7875c6029fe0384265c
b041d052124a80c47bbf94072d5b8896b0644800
5c93084da9d65abfb9a78fc8ba709bfa2372ca82263007ff8f4bef33ca3284aa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/1316441 HTTP/1.1
Host: psuftoum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:26 GMT
content-type: application/javascript
x-trace-id: 1a2d022461b785ad5fb0b49398ab2f59
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=6d86f6cf15654535ae44c78831532184; expires=Sat, 30 Nov 2024 22:44:26 GMT; path=/; secure; SameSite=None
oaidts=1701470666; expires=Sat, 30 Nov 2024 22:44:26 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

tharbadir.com/2?z=1347951

139.45.197.238

200 OK

43 kB

URL GET HTTP/2
tharbadir.com/2?z=1347951
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type
ASCII text, with very long lines (41880)
Size
43 kB (42899 bytes)
Hash
abfd1a6492ea3d7b30b295334259aead
40d5027eec9cef8f2474f1612ee8b454456d772e
232fdb27e4d76f8150db20a584a56ceb34416789928ff2f4a622fc6f5523e565

HTTP Headers

GET /2?z=1347951 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:26 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: a2fbc0dd5edab9a44894ce0ac78077a9
access-control-expose-headers: X-Sc
x-sc: WOJTgcmyGK3FIFgakFdXieqcbLz1I0tZlwzY_w6X6cpNIIQW-uq9o1sTrrIP5fO27SFLK9C9zVRc-a1bNL0qwrQK2Dc=
set-cookie: scm=1; expires=Sat, 30 Nov 2024 22:44:26 GMT; secure; SameSite=None
OAID=73a9fc68921846b2b939f7e43a895961; expires=Sat, 30 Nov 2024 22:44:26 GMT; secure; SameSite=None
oaidts=1701470666; expires=Sat, 30 Nov 2024 22:44:26 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=6.4.1

192.185.106.252

200 OK

104 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text, with very long lines (1754), with CRLF line terminators
Size
104 kB (103652 bytes)
Hash
ef9b7abbc5670902d89c6d20af50b7c3
2593f7764d07fecf938574d3d93693f1974759d2
17cadc0ae5ff07b667c2150bce71007b771bcc75ce070fd2a697ee2e60109535

HTTP Headers

GET /wp-content/themes/vugla/js/scripts.js?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 12:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: application/javascript
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_main.css

192.185.106.252

200 OK

85 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_main.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (6104), with CRLF line terminators
Size
85 kB (84670 bytes)
Hash
1d85fc3a503a0f77b0f029ad44e4ddd4
5b1212871267b4eba6f2d0628ce678890cefbd8e
df3db153ea5d4b5fdd494569edaa7513e12c7520282d6926628bee4e93c18187

HTTP Headers

GET /wp-content/themes/vugla/css/style_main.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 23 May 2014 15:19:09 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: text/css
date: Fri, 01 Dec 2023 22:44:27 GMT
server: Apache
X-Firefox-Spdy: h2

psuftoum.com/?rb=Gz6MTOHf4jPWCrF8fqMJukxFZoXxKPNXOrpXjbTWH8DRNK0iiPw8YXwH0fi-8ARDExcAUpzY4q4DEjvX1hQXNNivD-GapR_MPXxr6QHxDAA-8GLGsH7iFtTI99_PkXuYzB1_DWeOYcNaj_1DgYEKYOZtA6KIQaNMklAYb0ShWJQy6_J2bFOu6qvJBhNcWaGDz5VoPCd7EDcNnAi9rPArybVaBqTfX6WKzdlN9vrv5H4%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.635.3-auto&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=4&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.635.3-auto&bs=347b42c6-18a3-4df0-8454-b4552d32a371&userId=b6d568e643b941ca8a347fc1a906f202&m=link

139.45.197.244

200 OK

2.3 kB

URL GET HTTP/2
psuftoum.com/?rb=Gz6MTOHf4jPWCrF8fqMJukxFZoXxKPNXOrpXjbTWH8DRNK0iiPw8YXwH0fi-8ARDExcAUpzY4q4DEjvX1hQXNNivD-GapR_MPXxr6QHxDAA-8GLGsH7iFtTI99_PkXuYzB1_DWeOYcNaj_1DgYEKYOZtA6KIQaNMklAYb0ShWJQy6_J2bFOu6qvJBhNcWaGDz5VoPCd7EDcNnAi9rPArybVaBqTfX6WKzdlN9vrv5H4%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.635.3-auto&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=4&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.635.3-auto&bs=347b42c6-18a3-4df0-8454-b4552d32a371&userId=b6d568e643b941ca8a347fc1a906f202&m=link
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjectpsuftoum.com
Fingerprint2C:F3:EA:66:F3:74:01:A6:A1:04:29:7A:60:60:06:A7:A5:C0:93:CC
ValidityTue, 19 Sep 2023 05:22:30 GMT - Mon, 18 Dec 2023 05:22:29 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2368), with no line terminators
Size
2.3 kB (2339 bytes)
Hash
4bc5613db127bb5a91d3db18fa4b1e9b
2987da96bfe84f3c886844affbb08ce0b77f2cd9
bf67b7623ad1719b12b8a255b0e402f757b6cbee41803e8ef72583fd100bfb5a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=Gz6MTOHf4jPWCrF8fqMJukxFZoXxKPNXOrpXjbTWH8DRNK0iiPw8YXwH0fi-8ARDExcAUpzY4q4DEjvX1hQXNNivD-GapR_MPXxr6QHxDAA-8GLGsH7iFtTI99_PkXuYzB1_DWeOYcNaj_1DgYEKYOZtA6KIQaNMklAYb0ShWJQy6_J2bFOu6qvJBhNcWaGDz5VoPCd7EDcNnAi9rPArybVaBqTfX6WKzdlN9vrv5H4%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.635.3-auto&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=4&pl=https%3A%2F%2Fwww.vugla.com%2Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.635.3-auto&bs=347b42c6-18a3-4df0-8454-b4552d32a371&userId=b6d568e643b941ca8a347fc1a906f202&m=link HTTP/1.1
Host: psuftoum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Cookie: OAID=6d86f6cf15654535ae44c78831532184; oaidts=1701470666
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: application/json
x-trace-id: 98c7062fec5305cb534fc5d56b5ded3f
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=b6d568e643b941ca8a347fc1a906f202; expires=Sat, 30 Nov 2024 22:44:29 GMT; path=/; secure; SameSite=None
oaidts=1701470669; expires=Sat, 30 Nov 2024 22:44:29 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 08 Dec 2023 22:44:29 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

friendshipmale.com/sfp.js

172.64.173.31

200 OK

86 kB

URL GET HTTP/2
friendshipmale.com/sfp.js
IP
172.64.173.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type

Size
86 kB (85468 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:30 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 63770b612cb011e293997b571bf79745
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 01 Dec 2023 22:44:29 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uQ53RKqhl31yCoY1YkZWYYB0AwY9tUoMhWaXHcLCX2M1EbxW2Eb4D3XVPSwtNYiCpee3xdIEjOa90k%2BcNxjyS8Z3MfEI4HGX6AdIj50mjVm6zKxcPQ8hXuF3xdzPT%2F3HSvLxV4A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82eedae7081f4190-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/animate.css

172.64.108.10

200 OK

79 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/animate.css
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text
Size
79 kB (79249 bytes)
Hash
e1d8acd5ee9d1a90ea09313cbd8f2b02
8a8327b115d1356715e63270d1ce6d46124c7b1a
3028c87fc798ac3741f02079034e6c23462afc0c5e6c8d321188ce3716c8472a

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 22:44:31 GMT
content-type: text/css
last-modified: Thu, 19 Oct 2023 15:30:49 GMT
etag: W/"65314ba9-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GuWIMDq%2Bvcdj1fqiux%2FsK4SSG1MReT2dA66JCreimLkjUCbyCr3zMjas22R7ii3wJrz5KcMnN6yUpiF3pkmi%2Bm7d2bjMi2crs0vvwTBIyKPFlMcD%2BAc7BiUd62glFdiuXH2HRW0bD%2Fe6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82eedaf1ef23d168-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.106

200 OK

6.8 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (7013), with no line terminators
Size
6.8 kB (6824 bytes)
Hash
49475c425d6c00477bb339179326c49b
bd97deeb753f44f43a21feafa92d98239fa511bd
598841a98ad357d2896d2f093ea3e4e1d44e24b3351268ffd45e61ff8c1d0e09

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Dec 2023 22:44:31 GMT
date: Fri, 01 Dec 2023 22:44:31 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

interbuzznews.com/contents/s/1c/09/63/75a534c6a2bf3b7f1ca702d1c7/0114732544225.jpeg

139.45.197.154

200 OK

9.3 kB

URL GET HTTP/2
interbuzznews.com/contents/s/1c/09/63/75a534c6a2bf3b7f1ca702d1c7/0114732544225.jpeg
IP
139.45.197.154:443
ASN
#9002 RETN Limited

Requested by
https://interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D3214379760%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3D9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D5f996158-b87c-4954-a391-debbcfdd2267%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Certificate
IssuerLet's Encrypt
Subjectinterbuzznews.com
FingerprintB5:C4:C7:F0:3F:BC:50:A9:21:50:39:B8:F8:2E:7E:72:56:62:E7:33
ValidityFri, 22 Sep 2023 05:18:00 GMT - Thu, 21 Dec 2023 05:17:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Size
9.3 kB (9303 bytes)
Hash
1c096375a534c6a2bf3b7f1ca702d1c7
99b923326a9c71c15a252c43e47d586a8936bfb1
e9f457f6e6a31b5e1a741d024c107d10a58df50a62707c7883da864ce7191cc2

HTTP Headers

GET /contents/s/1c/09/63/75a534c6a2bf3b7f1ca702d1c7/0114732544225.jpeg HTTP/1.1
Host: interbuzznews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D3214379760%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3D9j0e2ZgowwpWeuLKgXo6Q46sauBuGa6azfU9AhCyDNcVBpe22dfAA2YB7m_C9JQi0ZFq0vf34hD5KsMSZwTk2x-YvW0sIdmrXny1CYR8gyuh6T2W_pPlrvYVbJlFDNDfAe-T_TBDc8Q9e4lWTRbOMp9bG4GBHj0KpawSa7FjavPmxmoFprVJvOxzuj1MPK2VeGaPVMqzMBVI2lqi-Jsk7cXrRwwL0um3e5B-jSVdPWakoD387D_IVIgAdsGWiQHmKuIHyAFs6x6jziY_xcgTugr6NYSjWFBQUYxgxxFpU_VjvRhgJ-qRxGn7y7qsTWodawURprOB0dXjCjxfytprLrahH4sWJ2qOHfLkhfjmaAsx0dnVCCCTAAWgevG6tjukUbEhGVyVmBMAhunj7yAhc50YpU5lawvRa0alXsRLMJ3UYNbRmIcUtuvbarT03zJaqB3H71S3DUvwss9Dsh87Xej-Ywy1l-DsF-xAZE_umqItAh1h7itsHderk01IoLXvf3xvGrkUrauSbrnAEUvqomsTG68uMJK00_gW0WJSF2MfTJfJv03gy-Fbd3HVHbOqr_u_Nx5vVfmUWQuqEHcmmx4JzGkJd6Xn4gde_YKD2RBCPgHQUKY1QXsA-LdLJEN3kDh4d5Pt-Wi2HnzaMDMNpl2BbMWEWbhxV3ATfc_MeJw%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D5f996158-b87c-4954-a391-debbcfdd2267%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fsrpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:30 GMT
content-type: image/jpeg
content-length: 9303
last-modified: Tue, 31 Oct 2023 04:03:52 GMT
vary: Accept-Encoding
etag: "65407ca8-2457"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2

unseenreport.com/pxf.gif?uuid=dc9b743a-5379-4332-b3d1-91d80a130196&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=dc9b743a-5379-4332-b3d1-91d80a130196&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=dc9b743a-5379-4332-b3d1-91d80a130196&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 01 Dec 2023 22:44:32 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ff090c0ad7b6e9de650a6c363ef50dd6
Strict-Transport-Security: max-age=0; includeSubdomains

accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__

142.250.150.84

200 OK

565 B

URL GET HTTP/2
accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP
142.250.150.84:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (585), with no line terminators
Size
565 B (565 bytes)
Hash
42802e397fee35fc6e434bb891715076
161c8f1e82dc3ffb860ad1dbf1a0841a2295a4c2
27f7f1e29b8cac0e53d43d3e6592ff3cd59d301b4d35bb1d9ebdebc834387971

HTTP Headers

GET /o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 22:44:30 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-L4oNOneGfUo4nr_V449Sww' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport
cross-origin-resource-policy: same-site
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

tharbadir.com/27/b7af9eee900df9a8aa2af9ad8ee46174

139.45.197.238

200 OK

413 kB

URL GET HTTP/2
tharbadir.com/27/b7af9eee900df9a8aa2af9ad8ee46174
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type
ASCII text, with very long lines (65523)
Size
413 kB (412914 bytes)
Hash
1dc3ebe1459db3cde0597b21156f2665
0e5a8c7b79a34f4fffaeab7c7eb4f3a19b0d75f6
1a3f7f2cfe5fba958e9df1a38c0980aab5bb21225601ea849f9e6df4afe09f2e

HTTP Headers

GET /27/b7af9eee900df9a8aa2af9ad8ee46174 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=73a9fc68921846b2b939f7e43a895961; oaidts=1701470666
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 22:44:29 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: c32e633f146fab372c154ede33d2ebb6
cache-control: max-age:290304000, public
last-modified: Fri, 24 Nov 2023 06:46:08 GMT
expires: Fri, 24 Dec 2083 06:46:08 GMT
access-control-expose-headers: X-Sc
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/mobile-share/fb-messenger-64x64.png

192.185.106.252

200 OK

2.6 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/mobile-share/fb-messenger-64x64.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2562 bytes)
Hash
56735b8135d0a3b1db1b1e1a34945e85
dc604b4e7030d9fe583393b94f1811fe69628107
7ef39fd53ffb21c300f78615faa8eab8eb1163ad1b70843efa4550a0bda364bc

HTTP Headers

GET /wp-content/themes/vugla/images/mobile-share/fb-messenger-64x64.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 26 Jul 2017 12:44:40 GMT
accept-ranges: bytes
content-length: 2562
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sat, 30 Nov 2024 22:44:25 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

192.185.106.252

200 OK

88 kB

URL GET HTTP/2
www.vugla.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: application/javascript
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1

192.185.106.252

200 OK

110 kB

URL GET HTTP/2
www.vugla.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type

Size
110 kB (110035 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/srpski-vatrogasci-se-bore-sa-stihijom-buknuo-je-na-ulici-oni-rade-sve-da-ugase-vatru.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: text/css
date: Fri, 01 Dec 2023 22:44:25 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (55)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by