Report - www.vugla.com/tag/feralpisalo-pisa-golovi

Report Overview

Visited public
2023-09-23 18:26:07
Tags
URL
www.vugla.com/tag/feralpisalo-pisa-golovi
Finishing URL
www.vugla.com/tag/feralpisalo-pisa-golovi
IP / ASN
192.185.106.252
#46606 UNIFIEDLAYER-AS-1
Title
(1) New Message!

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
faintsuperintend.com	unknown	2023-07-21	2023-07-21 03:59:19	2023-09-17 23:20:40	5.8 kB	16 kB	192.243.59.20
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12 17:15:41	2023-09-23 11:30:52	2.3 kB	491 kB	45.133.44.9
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-09-23 05:09:29	1.7 kB	3.5 kB	142.250.74.131
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-09-23 07:48:37	423 B	66 kB	142.250.74.168
eehuzaih.com	unknown	2022-02-21	2022-02-21 12:12:25	2023-09-22 06:57:44	3.4 kB	43 kB	139.45.197.237
www.kursnalista.co	unknown	2019-01-14	2015-04-30 23:56:04	2023-09-16 20:52:57	875 B	60 kB	192.185.106.47
offerimage.com	304078	2019-06-10	2019-06-10 13:11:53	2023-09-23 11:30:50	895 B	188 kB	104.22.33.172
aus5.mozilla.org	2548	1998-01-24	2015-10-27 08:06:24	2023-09-23 05:09:37	513 B	1.2 kB	35.244.181.201
fleraprt.com	unknown	2022-01-14	2022-01-14 23:55:14	2023-09-23 09:03:17	525 B	481 B	139.45.195.254
interstitial-08.com	unknown	2022-04-01	2022-04-01 12:45:21	2023-09-23 06:04:09	5.7 kB	316 kB	139.45.197.151
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-09-23 06:38:57	1.3 kB	114 kB	142.250.74.106
unseenreport.com	unknown	2022-03-30	2022-03-30 16:33:17	2023-09-23 13:26:27	737 B	423 B	192.243.61.225
www.vugla.com	unknown	2013-09-24	2015-02-06 16:22:31	2023-09-22 20:19:12	31 kB	959 kB	192.185.106.252
pl16411290.alternativecpmgate.com	unknown	2021-07-01	2023-05-22 08:21:17	2023-09-21 00:46:47	450 B	10 kB	173.233.137.36
glimtors.net	168336	2021-04-03	2021-04-05 09:54:50	2023-09-21 09:15:35	4.3 kB	163 kB	139.45.197.251
ocsp.sectigo.com	487	2018-08-16	2019-11-29 12:50:24	2023-09-23 06:15:01	330 B	963 B	104.18.14.101
s.w.org	748	1993-12-01	2017-01-30 05:56:16	2023-09-23 05:17:42	1.3 kB	5.0 kB	192.0.77.48
cdn.barscreative1.com	25648	2021-09-08	2021-09-16 13:14:42	2023-09-23 14:27:23	488 B	1.7 kB	45.133.44.4
tracking-protection.cdn.mozilla.net	9282	1998-01-31	2015-09-17 19:00:28	2023-09-23 05:15:19	5.3 kB	1.9 MB	34.120.158.37
pl15560907.passtechusa.com	unknown	2020-02-27	2022-10-27 15:33:11	2023-09-16 20:52:56	445 B	14 kB	173.233.137.44
professionalswebcheck.com	unknown	2022-04-01	2022-04-02 00:47:29	2023-09-23 05:11:37	432 B	420 B	52.58.179.111
amunfezanttor.com	unknown	2023-03-31	2023-03-31 14:42:42	2023-09-23 13:22:06	2.0 kB	2.0 kB	139.45.197.250
dubzenom.com	unknown	2023-09-05	2023-09-05 23:18:26	2023-09-23 09:38:11	1.5 kB	75 kB	139.45.197.245
my.rtmark.net	9054	2014-10-29	2015-02-04 10:54:57	2023-09-23 05:11:31	1.0 kB	1.5 kB	139.45.195.8
tharbadir.com	670354	2018-04-25	2018-05-21 22:07:02	2023-09-20 14:44:20	4.8 kB	449 kB	139.45.197.238
tzegilo.com	unknown	2022-01-14	2022-01-14 16:27:15	2023-09-23 11:37:20	396 B	42 kB	172.64.205.17
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15 17:46:22	2023-09-23 14:27:24	1.9 kB	234 kB	172.64.102.10
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-09-23 07:01:55	5.4 kB	285 kB	216.58.207.227
friendshipmale.com	unknown	2022-10-21	2022-10-21 14:15:25	2023-09-23 13:26:25	399 B	28 kB	172.64.134.5
visitorcardinal.com	unknown	2023-09-18	2023-09-18 18:40:00	2023-09-23 06:35:12	7.1 kB	7.7 kB	192.243.59.20

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-09-23	medium	fleraprt.com	Sinkholed
2023-09-23	medium	faintsuperintend.com	Sinkholed
2023-09-23	medium	faintsuperintend.com	Sinkholed
2023-09-23	medium	amunfezanttor.com	Sinkholed
2023-09-23	medium	amunfezanttor.com	Sinkholed
2023-09-23	medium	amunfezanttor.com	Sinkholed
2023-09-23	medium	amunfezanttor.com	Sinkholed
2023-09-23	medium	interstitial-08.com	Sinkholed
2023-09-23	medium	unseenreport.com	Sinkholed
2023-09-23	medium	interstitial-08.com	Sinkholed
2023-09-23	medium	dubzenom.com	Sinkholed
2023-09-23	medium	dubzenom.com	Sinkholed
2023-09-23	medium	faintsuperintend.com	Sinkholed
2023-09-23	medium	faintsuperintend.com	Sinkholed
2023-09-23	medium	interstitial-08.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (44)

	URL	From	Size	First Seen	Last Seen
	www.vugla.com/tag/feralpisalo-pisa-golovi	ScriptElement	2.0 kB	2023-05-22	2024-08-21
Pretty URL www.vugla.com/tag/feralpisalo-pisa-golovi IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen20 Hash b78378eceea92927670f96b3a44b952d 3130a3cd43538ef7b60b2842aea7963557fe61dc 8ccb1f535b139d4e3f1cda9c6ff1cb913e3ee68599bbdcbfc49280fd425f8dda Loading...

	www.kursnalista.co/banners/banners.js	ScriptElement	8.1 kB	2023-05-22	2024-08-21
Pretty URL www.kursnalista.co/banners/banners.js IP 192.185.106.47 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen221 Hash 0fa58c243ecc9c6ff829da27563c78c4 771e757dcaddc90a127b557e6a8a69b9dfe4767d 4631955f687225007a1227be7e662f1f45798c13a573f70670e748ff50aa194b Loading...

	www.vugla.com/wp-includes/js/wp-embed.min.js?ver=5.1.16	ScriptElement	1.4 kB	2023-05-16	2025-05-11
Pretty URL www.vugla.com/wp-includes/js/wp-embed.min.js?ver=5.1.16 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-16 22:20 Last Seen2025-05-11 13:06 Times Seen4615 Hash 43928880ff5ebadcd513755b011732cd d0fdb17db490123ed700c2caa5d2d764794cb6d5 37c5f58f12814dd0ecc28f15b7765c6bcd31a9479d330b4ef896e140bf89dc38 Loading...

	pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js	ScriptElement	37 kB	2023-09-23	2023-09-23
Pretty URL pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js IP 173.233.137.44 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-23 20:26 Last Seen2023-09-23 20:26 Times Seen1 Hash dda99022faa1396f03e252e6dc155270 66f64ab3eea964732cc2fecf044fb78065fd5543 a119188b643f7b88b5df5cbbc57aac92a5a534d68ef2dd02a2ab6c6794eff0f9 Loading...

	www.vugla.com/wp-includes/js/underscore.min.js?ver=1.8.3	ScriptElement	16 kB	2023-03-07	2025-05-07
Pretty URL www.vugla.com/wp-includes/js/underscore.min.js?ver=1.8.3 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17 Last Seen2025-05-07 23:48 Times Seen336 Hash 531c690707d18f60906bdf12d2ade193 0bddd39d059105bec8a13d3594b95e19146ee13d e5f5736867880dc34e00e9d915d49094d5aa572c73771e87a082bd721b5a4f7c Loading...

	dubzenom.com/5/1316441	ScriptElement	70 kB	2023-09-23	2023-09-23
Pretty URL dubzenom.com/5/1316441 IP 139.45.197.245 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-23 20:26 Last Seen2023-09-23 20:26 Times Seen1 Hash 22f60b970408c2229e53b66902db547f f15392c0d44ab18bf761914f02a6f9dbb1076a36 851550675df9a9f63f08adee9eb3f6d5969c2079de1f0bbc119f8b4cf0c547de Loading...

	friendshipmale.com/sfp.js	ScriptElement	86 kB	2023-08-25	2023-11-23
Pretty URL friendshipmale.com/sfp.js IP 172.64.134.5 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 12:30 Last Seen2023-11-23 01:47 Times Seen6642 Hash 2d0450888479d4ddda305bd96206b240 5b4595aab1cd3f854718e05db9be0c65a12ab2f6 44de073e74ff24c6b1c0fe1f3ac5b33d793560e85ef24fb6ce89e76c2cf90af6 Loading...

	interstitial-08.com/?l=Ks37wDcsh9ZUgKV&cd_meta_crid=55809&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D2628323539%26z%3D2892323%26b%3D18698481%26c%3D7298598%26var%3D%26varid%3D0%26d%3Dhttps%253A%252F%252Fexolix.com%252F%253Futm_source%253Dpropeller%2526utm_medium%253Dcpc%2526utm_campaign%253Daugust2023_banner%26cln%3D1%26btp%3D7%26rb%3DZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D12747fa5-104d-43b1-9533-6821d5858341%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Ftag%252Fferalpisalo-pisa-golovi%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D3%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL interstitial-08.com/?l=Ks37wDcsh9ZUgKV&cd_meta_crid=55809&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D2628323539%26z%3D2892323%26b%3D18698481%26c%3D7298598%26var%3D%26varid%3D0%26d%3Dhttps%253A%252F%252Fexolix.com%252F%253Futm_source%253Dpropeller%2526utm_medium%253Dcpc%2526utm_campaign%253Daugust2023_banner%26cln%3D1%26btp%3D7%26rb%3DZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D12747fa5-104d-43b1-9533-6821d5858341%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Ftag%252Fferalpisalo-pisa-golovi%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D3%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 IP 139.45.197.151 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 14:50 Times Seen4655239 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	ScriptElement	10 kB	2023-03-07	2025-05-11
Pretty URL www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:06 Times Seen15158 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=5.1.16	ScriptElement	15 kB	2023-05-22	2024-08-21
Pretty URL www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=5.1.16 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen228 Hash ad955f14cdcc21d58014f25ab7c8d46d 8915b95d672d54be6fb01a239088aba305d4798e d6304e162f8fe5054a4c5430d2f1d78ea2ad54c1ff61ea708d148bf385312407 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-11
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 14:49 Times Seen341141 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js	ScriptElement	25 kB	2023-09-16	2023-09-23
Pretty URL pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js IP 173.233.137.36 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-16 20:53 Last Seen2023-09-23 20:26 Times Seen2 Hash 49c70c57a6c2817c23a8ec144fa80229 478f03ff4a8a5fb273dbcb6b85e2c3be219925c3 0529d755794a4808e49e2b577befcc28d7a9d9d306530c0b05931f7cdbcb48c5 Loading...

	www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1	ScriptElement	571 kB	2023-03-07	2025-04-24
Pretty URL www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:33 Last Seen2025-04-24 02:06 Times Seen295 Hash 6d53ab10ac8d6c3be0ee1df6b4bdc00f a5b0990fbcaf8b5f73085d9c02236e68b02f113e 0e12b6aea62f8d1c2e29e27393e231a8a17472728b303b586e2d4fb3ff5b481f Loading...

	unknown	ScriptElement	601 B	2023-08-25	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 09:27 Last Seen2024-08-21 08:08 Times Seen69 Hash 3d2cb246d68b4ae7b41e67ff1d31f5ff a15bdf809d886d6f4280b072c3741660cacb81a2 3b22554bfa3bc2f6f75ea0cf4ca146d1e0e55cc96176ef57e8522287e9b0750d Loading...

	www.vugla.com/tag/feralpisalo-pisa-golovi	ScriptElement	130 B	2024-08-21	2024-08-21
Pretty URL www.vugla.com/tag/feralpisalo-pisa-golovi IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 05:55 Last Seen2024-08-21 05:55 Times Seen1 Hash 6b13a73ead8dca1c71205dc131e098cc 4c5c7fc378838640465cb32d6b2163da7e5c75a9 9ef7d133c678e073a10aac7f560e90c3a961f9974ac5854d8f1fb3fa30a58e79 Loading...

	www.vugla.com/tag/feralpisalo-pisa-golovi	ScriptElement	431 B	2024-08-21	2024-08-21
Pretty URL www.vugla.com/tag/feralpisalo-pisa-golovi IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 05:55 Last Seen2024-08-21 05:55 Times Seen1 Hash 7236db5b1a216cdc81c1a48155415a8a 113e764c87df8e02d51147d1d319bf257d7bf8b4 e18ae4c7e85813c3088fadec0002d9c74946fbbcbe1f00672475340800f6740d Loading...

	www.vugla.com/tag/feralpisalo-pisa-golovi	ScriptElement	130 B	2023-05-22	2024-08-21
Pretty URL www.vugla.com/tag/feralpisalo-pisa-golovi IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen180 Hash 071769b9151182dafbb83441dc6fd6e8 2d0debcc38211b79d10eb26c1f233ab0bb385666 cb6b201c1fe09a074a97d8a5f952a0b246e9d4cab3c890cdd66fc72267c8814b Loading...

	www.vugla.com/tag/feralpisalo-pisa-golovi	ScriptElement	154 B	2023-05-22	2024-08-21
Pretty URL www.vugla.com/tag/feralpisalo-pisa-golovi IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen66 Hash 39724dc8b97e080d3d75400de34e9877 9a6e529c81e21a9fb6bfe638d10641b4ad1c88a4 1cc1d040b677c035ecc758859c52e35a5e3512028929bb201d241d2060f93fec Loading...

	eehuzaih.com/400/5005565	ScriptElement	90 kB	2024-08-21	2024-08-21
Pretty URL eehuzaih.com/400/5005565 IP 139.45.197.237 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 05:55 Last Seen2024-08-21 05:55 Times Seen1 Hash 113f678cc1ebcaf94fef229112fd12e0 b557a5f2915cef67059da86e4ecd1f6a797f669c 7e91787d369e7e7a10f0ecb8fabae6acd45ab183d3119076ee42e99dc454f8bc Loading...

	www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=5.1.16	ScriptElement	23 kB	2023-03-07	2025-05-09
Pretty URL www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=5.1.16 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33 Last Seen2025-05-09 07:51 Times Seen694 Hash 3229aa93c44fa4628707e80959a97bc1 5a2d4dbc4d1df02e7a386489e7b5c5a9e22dd40f 095834cc86bd018fdb4a9e31c99f9f96904b819be2b9dc16b3390383288d4d90 Loading...

	www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.3.5	ScriptElement	26 kB	2023-05-11	2024-08-21
Pretty URL www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.3.5 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-11 04:48 Last Seen2024-08-21 08:18 Times Seen115 Hash 79562c4b2822f6e8d5e19bc88539a237 934cf09679d032deb1d3a590e9a1204218f6d6c7 bda5541932a1d82d9e620344465fa9d0cc0a02b43bbbf05cf924c428bdd02607 Loading...

	www.vugla.com/tag/feralpisalo-pisa-golovi	ScriptElement	63 kB	2023-05-22	2024-08-21
Pretty URL www.vugla.com/tag/feralpisalo-pisa-golovi IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen197 Hash be4906ea1de45e4a62febac1060e305a cac55e3d64f37ecd4c069a10277c888e27fedce4 6b95ca3aa5c2c38a6db46a8a40b9b30a248a35f815d619c7e86fb5e569b0d224 Loading...

	tzegilo.com/stattag.js	ScriptElement	19 kB	2023-09-07	2024-08-21
Pretty URL tzegilo.com/stattag.js IP 172.64.205.17 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-07 20:07 Last Seen2024-08-21 07:20 Times Seen2395 Hash 89e89aea544ea2785d49cc4cd9cf26f6 7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b 86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9 Loading...

	tharbadir.com/27/e70947491773b29465b66e664f6dd7f1	ScriptElement	413 kB	2023-09-14	2023-10-04
Pretty URL tharbadir.com/27/e70947491773b29465b66e664f6dd7f1 IP 139.45.197.238 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-14 17:41 Last Seen2023-10-04 13:38 Times Seen170 Hash 152d7faccc2e1133ff50f8d875e1778f 82c385ac3b6eb22b3cb5a9cb54f4fd6fc57c0f97 4a29d993864a9f91a4137d3fe1d3e1ddbffad9d130c4be30e191cc8a9095bb1b Loading...

	www.vugla.com/tag/feralpisalo-pisa-golovi	ScriptElement	231 B	2023-05-22	2024-08-21
Pretty URL www.vugla.com/tag/feralpisalo-pisa-golovi IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen197 Hash 8eb49f7b6efd94cdd86e86cb6fb64ab1 556d6d9c3502c6c9e0a4fafb3e6d35244fbef674 43544840429e505afe1d466f749f47712d8213c4c1d14772e7e879ccc9b09cbf Loading...

	www.googletagmanager.com/gtag/js?id=UA-21608229-8	ScriptElement	176 kB	2023-09-23	2023-09-23
Pretty URL www.googletagmanager.com/gtag/js?id=UA-21608229-8 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-23 20:26 Last Seen2023-09-23 20:26 Times Seen1 Hash 152d07a0b0a1624c448991bf594e5d24 bcb652932130ca03535e0d85f99a981bfe3978b8 14a295dbb9373b57a518a695b95adc09f34b202804253fcb53bd5991a2887dc1 Loading...

	www.vugla.com/tag/sandbox%20eval%20code		147 B	2023-04-11	2025-05-11
Pretty URL www.vugla.com/tag/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 14:49 Times Seen341941 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.vugla.com/tag/feralpisalo-pisa-golovi	ScriptElement	275 B	2023-03-14	2024-08-21
Pretty URL www.vugla.com/tag/feralpisalo-pisa-golovi IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 00:55 Last Seen2024-08-21 08:08 Times Seen202 Hash 75a198bff010258566f15c985871f637 c73be2b97536168613d453147e3dcff01999220c dd9b861b501b2e39307932dff8443bdf955fad5346b2d9c2854670c5d48752ee Loading...

	unknown	ScriptElement	26 kB	2023-03-07	2025-01-30
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18 Last Seen2025-01-30 15:49 Times Seen1752 Hash a912e7afe74b51fdd03b28bf67e7d409 85004dfe087af5a730261c85262661d89b3d2516 706b3882753d8f81cfcf35aa2623303b1b380c8106686a4ad12a1fae23cf4650 Loading...

	moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js		1.7 kB	2023-05-05	2025-05-11
Pretty URL moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 22:33 Last Seen2025-05-11 14:27 Times Seen54813 Hash 865f01cbb34eb505834e826380d7dc2e c239ccc37191f1be78dfaa6bb3f1da5d314fdf9e 30ed6392b8de4590bd974a4a797ee0b12b382f2141738115bfd2d692cfa6ec17 Loading...

	glimtors.net/pfe/current/tag.min.js?z=1548391	ScriptElement	13 kB	2023-09-14	2023-09-28
Pretty URL glimtors.net/pfe/current/tag.min.js?z=1548391 IP 139.45.197.251 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-14 17:41 Last Seen2023-09-28 15:36 Times Seen133 Hash 2ab81df34a2461b2a4885cf8b04ec7a9 7182892392c7320d1c11106f33a1789d08329ac3 e58b4c163cb14f66ced74ce6a9fe37321b148a519af57a516335fc09851b0dcd Loading...

	www.vugla.com/wp-includes/js/wp-emoji-release.min.js?ver=5.1.16	ScriptElement	12 kB	2023-03-07	2025-05-10
Pretty URL www.vugla.com/wp-includes/js/wp-emoji-release.min.js?ver=5.1.16 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16 Last Seen2025-05-10 12:50 Times Seen802 Hash 33479c6b333bb34fd771bf50df1fefc3 4869e92709eee1d1a42a697a80879e303aea7572 d9160bf5ee2c9435a62c8b1d991b7f419417cab5d5a37eefcee79767a292b4b7 Loading...

	www.vugla.com/wp-includes/js/jquery/jquery.js?ver=1.12.4	ScriptElement	97 kB	2023-03-07	2025-05-11
Pretty URL www.vugla.com/wp-includes/js/jquery/jquery.js?ver=1.12.4 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:11 Times Seen6507 Hash 49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df Loading...

	www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=5.1.16	ScriptElement	104 kB	2023-05-22	2024-08-21
Pretty URL www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=5.1.16 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen199 Hash ef9b7abbc5670902d89c6d20af50b7c3 2593f7764d07fecf938574d3d93693f1974759d2 17cadc0ae5ff07b667c2150bce71007b771bcc75ce070fd2a697ee2e60109535 Loading...

	www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.3.5	ScriptElement	13 kB	2023-03-07	2025-05-09
Pretty URL www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.3.5 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33 Last Seen2025-05-09 07:51 Times Seen475 Hash 416d2c5e5425c640a7d63f25e0376fd6 a95b218161d94bdb148d108aedf065b4a4762045 b875bead01dfa1b02a553e8efda0f3a65d39da24f19ad37af95f06795eee76dc Loading...

	www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1	ScriptElement	3.4 kB	2023-03-07	2025-05-08
Pretty URL www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32 Last Seen2025-05-08 00:34 Times Seen715 Hash 6755415003869bd599c3fae8e9792027 57946a22c79654014eb00fb548f727d302221873 07f79fbda35a2bf03f2940978670a2a53cf21e490ecce887bf92fc2e3f359293 Loading...

	unknown	ScriptElement	88 kB	2023-09-14	2023-09-28
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-14 17:41 Last Seen2023-09-28 15:36 Times Seen210 Hash 0f22080b3f88f2f09bbabbcb8e9550c4 191596e48cd208528643ab0530ce3b2cb3f68fae 5d1d95a226026f763d0d086ef23b7cdc09e9dd0c68df56d6d638b0474a64e1e0 Loading...

	www.vugla.com/tag/feralpisalo-pisa-golovi	ScriptElement	166 B	2023-05-22	2024-08-21
Pretty URL www.vugla.com/tag/feralpisalo-pisa-golovi IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen111 Hash cf9dfd6bdf903d89abf6914a17e81cdf b90e74da0742ba6521278a2cf43d3c2ccf7d766e cd7512e46896a16a7d75e6859da27dd8b3bd193c7127ccea586ea62e3ffe2d28 Loading...

	connect.facebook.net/en_US/all.js#xfbml=1	ScriptElement	17 kB	2023-05-05	2025-05-11
Pretty URL connect.facebook.net/en_US/all.js#xfbml=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 22:33 Last Seen2025-05-11 14:27 Times Seen54213 Hash b938e0b835c600209bdaae9d8ccda6d7 d5ee79d277057e05f002a18381722b5eb75d3883 d1b95aeb57c3285042e1e24c00cc56a8560d16daf7ee5cdfd5c75296b21ac91b Loading...

	eehuzaih.com/400/5005565	ScriptElement	90 kB	2024-08-21	2024-08-21
Pretty URL eehuzaih.com/400/5005565 IP 139.45.197.237 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 05:55 Last Seen2024-08-21 05:55 Times Seen1 Hash 32c3ff82b8c7329aef63bef616374cd6 42e17f2ee43faa0383962a14915b966e4d0bd05d b3a38504e1ec85dd378f3ceef69e9a540ddf2419c20dcb6c8d9cf9f555993771 Loading...

	tharbadir.com/2?z=1347951	ScriptElement	43 kB	2024-08-21	2024-08-21
Pretty URL tharbadir.com/2?z=1347951 IP 139.45.197.238 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 05:55 Last Seen2024-08-21 05:55 Times Seen1 Hash 741e9698e1c53f94d875e686c1c6a37a 6ab8983c9aef68c7352d24e53ef994fd64a81066 2f607dbb744c9b2da556bce22941694c02bbdc75c5968b9a95b8d43301625278 Loading...

	www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1	ScriptElement	95 B	2023-05-22	2024-08-21
Pretty URL www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen222 Hash 64829824ee643f09fb3821dc49b3089a 446608ff9f4128b9503476135a8c28599f8d5c2e 0b967c52b8e899c4266110c97fa50018d61ccf1365144d16f09f901523d48c95 Loading...

		Size	First Seen	Last Seen
	#1 Write - 4c24a43c1740655820f660964851d116	227 B	2023-08-31 02:01	2024-08-21 07:44
Pretty Observations First Seen2023-08-31 02:01 Last Seen2024-08-21 07:44 Times Seen26 Hash 4c24a43c1740655820f660964851d116 1067d54c668722fd6949d9e89b5c2e106a1663a0 7ab5a1136c9d8b4e237fe833152275b4e9062ee97e1379a802dc262f1d5708e5 Loading...

	#2 Write - 4caf252d8b5f67a4a15a37b9a44e0a8a	51 kB	2023-05-22 08:22	2024-08-21 08:08
Pretty Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen191 Hash 4caf252d8b5f67a4a15a37b9a44e0a8a 0336cd0390878dffa987b70d66cd9181f975034e 3c2f3f2a1ab8a2ddae090dfc52981d4b729beacc08487c95eb64a83af9217bd8 Loading...

HTTP Transactions (159)

URL IP Response Size

tracking-protection.cdn.mozilla.net/ads-track-digest256/111.0/1684443982

34.120.158.37

56 kB

URL
tracking-protection.cdn.mozilla.net/ads-track-digest256/111.0/1684443982
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
56 kB (56118 bytes)
Hash
eccf8436aa08de0d355cd2c068568453
e05e69cb2970888f00770ab772d77354df830f05
71a2d75150b4656ff17a9589a66e9e03661fa4ea1dfdf16c1d848efaae082439

HTTP Headers

GET /ads-track-digest256/111.0/1684443982 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: 1gNN1HkKpxkVDgSLKM4Pli15Vxawd/02O1fC3Ua6cpQe5CIFPS843VtPteXvaySK6fEhV/mpvNhk4uiCyZe5lE0ZIos+pCoo
x-amz-request-id: VV3CVBXWZZCXRPP3
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 56118
via: 1.1 google
date: Sat, 23 Sep 2023 11:19:43 GMT
age: 25563
last-modified: Thu, 18 May 2023 21:16:40 GMT
etag: "eccf8436aa08de0d355cd2c068568453"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/analytics-track-digest256/111.0/1683905755

34.120.158.37

10 kB

URL
tracking-protection.cdn.mozilla.net/analytics-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
10 kB (10262 bytes)
Hash
27ca7a562ad626165a25126b5975bc58
de8e9d89b673f3e1375e2a70f3c9d696726dfbe4
405d79f4b44125a2147ac70652ea7e7a544c1a5b34b376f683ea3e90445e7e42

HTTP Headers

GET /analytics-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: dzP7w+95kwFAWua0dwtZxP6e3GTfuHBCYmogo3RYSxzOrYQ+LQ71gLcdXH0tvxLTbfY7Xkod+zU=
x-amz-request-id: D1068N4HDAR4KZRD
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 10262
via: 1.1 google
date: Sat, 23 Sep 2023 18:13:31 GMT
age: 735
last-modified: Fri, 12 May 2023 15:46:41 GMT
etag: "27ca7a562ad626165a25126b5975bc58"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/base-cryptomining-track-digest256/111.0/1683905755

34.120.158.37

2.3 kB

URL
tracking-protection.cdn.mozilla.net/base-cryptomining-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
2.3 kB (2293 bytes)
Hash
7938ce04b9288ce2553c06df7544718e
0f6bcdb2770858cfc9018dd76d3ac16386afd3e0
efedbe30e6f1ac7617b022b31ccd2920f0d518e9a7f8818447e117fbc7cd30ee

HTTP Headers

GET /base-cryptomining-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: QuMFbb9f0luw8Pmkekvxue0C/0lRNS6G3pYzqya3+kR/uk+ZwhTum6cCRK45D6OmoXMoVB1fgUw=
x-amz-request-id: FYY8XMMY6RNDJCSD
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 2293
via: 1.1 google
date: Sat, 23 Sep 2023 15:54:50 GMT
age: 9056
last-modified: Fri, 12 May 2023 15:46:54 GMT
etag: "7938ce04b9288ce2553c06df7544718e"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/base-email-track-digest256/111.0/1683905755

34.120.158.37

7.0 kB

URL
tracking-protection.cdn.mozilla.net/base-email-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
7.0 kB (6965 bytes)
Hash
02560eef6a3e694713d21ba526dbf2d2
c300dbaeeb367bd302eaf2941a97cdd54c84bde9
6796e1d3ffc1d5316c498c022fd22be9e15842a3b3166f664d14042b614e491c

HTTP Headers

GET /base-email-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: 5CgCpFAXnb4b89wMcuK3GCDV93dJ/BT2rg+daLo78nCifGFVLWVG5DPwdWDw0vIY7P3mDSoSpM4=
x-amz-request-id: K9M5C71ZRWCE743C
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 6965
via: 1.1 google
date: Sat, 23 Sep 2023 11:46:04 GMT
age: 23982
last-modified: Fri, 12 May 2023 15:46:56 GMT
etag: "02560eef6a3e694713d21ba526dbf2d2"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/base-fingerprinting-track-digest256/111.0/1683905755

34.120.158.37

3.6 kB

URL
tracking-protection.cdn.mozilla.net/base-fingerprinting-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
3.6 kB (3637 bytes)
Hash
84a28e1e64a4aca618879e590fb29c47
ddea829bfd334fe48e25374f36119c6ce19bdfeb
e87ee13b3afbcefcfd7f87bdd26b12aa18b79437ebd4a3cf689f78aefa0a7d1e

HTTP Headers

GET /base-fingerprinting-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: Eo23+ya+YtOow6e7qk7vIbqP+m5rKUXz1i2SzrQn+FhHU1bTPdg74/5pa022JrEreTMfOmsti5I=
x-amz-request-id: QDP4SQFANPYBKZ78
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 3637
via: 1.1 google
date: Sat, 23 Sep 2023 16:19:40 GMT
age: 7566
last-modified: Fri, 12 May 2023 15:46:52 GMT
etag: "84a28e1e64a4aca618879e590fb29c47"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/content-email-track-digest256/111.0/1683905755

34.120.158.37

8.9 kB

URL
tracking-protection.cdn.mozilla.net/content-email-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
8.9 kB (8853 bytes)
Hash
b9c2809ffc057abb94df0750c8cb57dd
e8ab5e486a0b53147eb8d66ca4585a06c5bbd210
b9816319448d2ccb8ef6a6e2aaefe13a9fa96335bdc1fd57c281dfe7ff95ede9

HTTP Headers

GET /content-email-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: PwIFww6FiZ6uFk/uxvMTZYICnxRgLBDLS0xEMAYkWwab7yYOzCa4ocM9T5SSpZojsJXulWvesjc=
x-amz-request-id: BJH6BZ8BD4DMQ4K9
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 8853
via: 1.1 google
date: Sat, 23 Sep 2023 08:07:25 GMT
age: 37101
last-modified: Fri, 12 May 2023 15:46:57 GMT
etag: "b9c2809ffc057abb94df0750c8cb57dd"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/content-track-digest256/111.0/1683905755

34.120.158.37

15 kB

URL
tracking-protection.cdn.mozilla.net/content-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
15 kB (15382 bytes)
Hash
d78d9f71f82fcce3a0d9079ec988ed05
13f8a07b0437728b11cefeda36b6211262d3af16
7449b095579811871ecad49889db2ae188486b18ab96f903a20941e34cfef7ee

HTTP Headers

GET /content-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: K++ZA1+18u/1y7m8oPzYC80ZZKqzeUmFJsz736yt0hd6/fPv09RpElUNw1Cm7wxTLP/fmW8uZTg=
x-amz-request-id: SJ48F0P4WN8YR19S
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 15382
via: 1.1 google
date: Sat, 23 Sep 2023 16:18:27 GMT
age: 7639
last-modified: Fri, 12 May 2023 15:46:39 GMT
etag: "d78d9f71f82fcce3a0d9079ec988ed05"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/google-trackwhite-digest256/111.0/1683905755

34.120.158.37

1.5 MB

URL
tracking-protection.cdn.mozilla.net/google-trackwhite-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
1.5 MB (1470328 bytes)
Hash
2146c997750a1c7e55eb69a5a1a5e5b4
69ba29aca5c6a4bea1365e895b3c5b31df31220a
507d674f59748ff86ff629a2eb98b3cd343aec0a21e58089793341dc96361188

HTTP Headers

GET /google-trackwhite-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: plLyYEK70whH97cP6LrtKZU/AFB2nHwGAbRFpWeNAYAdC+o/aCyYpSCeNvpKti2rJDPgQkBr7ZY=
x-amz-request-id: Q211DAWSGVHYPJCE
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
via: 1.1 google
date: Sat, 23 Sep 2023 05:50:38 GMT
age: 45308
last-modified: Fri, 12 May 2023 15:46:50 GMT
etag: "2146c997750a1c7e55eb69a5a1a5e5b4"
content-type: application/octet-stream
content-length: 1470328
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/mozstd-trackwhite-digest256/111.0/1684443982

34.120.158.37

345 kB

URL
tracking-protection.cdn.mozilla.net/mozstd-trackwhite-digest256/111.0/1684443982
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
345 kB (344663 bytes)
Hash
aacf54fd5b2994c73b3e4e5e13f4b5a2
10494f54553c768432a556492e655aa774456927
bee12d3c1d013147f78ee8ce7d9fa5e83679cc650763c6f4f49a10ff2d4537e5

HTTP Headers

GET /mozstd-trackwhite-digest256/111.0/1684443982 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: d4iXVGT5JpyaCO7uVzALhFgTNr4hrPpSLCrANo5BG7ISUyZsyFxawdR6HMGqC9S38O4IHtkkM6M=
x-amz-request-id: 9ZQBVQJPPXS8ZBAN
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 344663
via: 1.1 google
date: Fri, 22 Sep 2023 21:41:49 GMT
age: 74637
last-modified: Thu, 18 May 2023 21:16:46 GMT
etag: "aacf54fd5b2994c73b3e4e5e13f4b5a2"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/social-track-digest256/111.0/1683905755

34.120.158.37

2.2 kB

URL
tracking-protection.cdn.mozilla.net/social-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
2.2 kB (2197 bytes)
Hash
f901679cf935d4b6067610a7287d0b99
fffa5389bec50a175f18deaf8933401edc4bd262
d553a4537f796d580ea8f696062c19540f1d332e2b478942f6ddea3952c6df4c

HTTP Headers

GET /social-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: H3sD2al6Ao40OMebcX4xAk6td/Awjf4UKmEalWyVee+nnIz4shIxF5WN38Irk76a1VLHucdng3M=
x-amz-request-id: 8J8X7WBBQX5BMP9S
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 2197
via: 1.1 google
date: Sat, 23 Sep 2023 05:55:57 GMT
age: 44989
last-modified: Fri, 12 May 2023 15:46:42 GMT
etag: "f901679cf935d4b6067610a7287d0b99"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/social-tracking-protection-facebook-digest256/111.0/1683905755

34.120.158.37

468 B

URL
tracking-protection.cdn.mozilla.net/social-tracking-protection-facebook-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
468 B (468 bytes)
Hash
092bf11bed810e853f65d296f1e8b9e3
fed3b3a85aaf2bf1790fb115201b0dfdefe3982c
8c89c977f2c3f91b1050c645843453edc3d5bfcbe5e4af4b945b385f1b60046f

HTTP Headers

GET /social-tracking-protection-facebook-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: HU6uDCetXeZMmRrYCFKDEMdqTSUTZ/mGPJsT95/26iw4NjcreZF8fJ/5VSFxA15OSN2HyRGYwEQ=
x-amz-request-id: 1Y3WPSF4GQME8JS4
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 468
via: 1.1 google
date: Sat, 23 Sep 2023 15:46:18 GMT
age: 9568
last-modified: Fri, 12 May 2023 15:46:44 GMT
etag: "092bf11bed810e853f65d296f1e8b9e3"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/style.css?ver=5.1.16

192.185.106.252

200 OK

398 B

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/style.css?ver=5.1.16
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text
Size
398 B (398 bytes)
Hash
4f140b946bdc4cb833896a992db68c6d
52d6c64f9c5478bb70604068a66f06283ecff968
f8f90d1cacc59cf90886948787ef5c723b8de9e41092285611f2f915b5996ef2

HTTP Headers

GET /wp-content/themes/vugla/style.css?ver=5.1.16 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 24 Mar 2020 17:57:12 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 398
content-type: text/css
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.3.5

192.185.106.252

200 OK

1.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.3.5
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with very long lines (4224), with CRLF line terminators
Size
1.4 kB (1382 bytes)
Hash
06cce20ce9dce06aacd65a83fd36430f
325e2bc1a82789110e11a7a56545db5aa50b15d0
b39b41ec691ccd339374d500a4e42ce463e0cbaa51a6bda7f13b2db65c1f13ca

HTTP Headers

GET /wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.3.5 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 22 Apr 2022 14:00:04 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1382
content-type: text/css
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-includes/css/dist/block-library/style.min.css?ver=5.1.16

192.185.106.252

200 OK

5.6 kB

URL GET HTTP/2
www.vugla.com/wp-includes/css/dist/block-library/style.min.css?ver=5.1.16
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with very long lines (25245), with no line terminators
Size
5.6 kB (5637 bytes)
Hash
d0b8525a9eff4173fd149a06f341e531
35013c4712d463aa5020f33d3234c4e90f700515
94f80c87390a84a3761860b1ce0764da77bb81d6f11cb3d059339148589aaf5c

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.1.16 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 15 Apr 2021 11:39:34 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 5637
content-type: text/css
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=5.1.16

192.185.106.252

200 OK

320 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=5.1.16
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with CRLF line terminators
Size
320 B (320 bytes)
Hash
199decab27dd471d35814631e71e6fea
42c2847529b6859230bc2f4e8e6432805a06148b
7279594a46188e3246db42ffd4c609fc254c6fa06bfca8b72dd82e63fa4e6385

HTTP Headers

GET /wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=5.1.16 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 26 May 2014 20:39:02 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 320
content-type: text/css
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/style/video-js.css?ver=5.1.16

192.185.106.252

200 OK

14 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/style/video-js.css?ver=5.1.16
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
Unicode text, UTF-8 text, with very long lines (5844)
Size
14 kB (13761 bytes)
Hash
514fccb15bdc95ea2c2b6fddaded8ecc
4c999194bb19b83cc85f40621fa1c74cd1a4cbf7
d86730f73982f170cb0943d0d47c3c2520743d6a3d6cf5330cde12667df675ca

HTTP Headers

GET /wp-content/plugins/vn-video-player/style/video-js.css?ver=5.1.16 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 13761
content-type: text/css
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/style/theme-city.css?ver=5.1.16

192.185.106.252

200 OK

733 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/style/theme-city.css?ver=5.1.16
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with very long lines (2553), with no line terminators
Size
733 B (733 bytes)
Hash
229bf132659b3607e05296743613ecca
2f498516b73ae5f087904669ccd6b3eb57054711
73214adfea5dc8d2ab7aae66baec56aab47e70224557c08f424b80909d1acd7c

HTTP Headers

GET /wp-content/plugins/vn-video-player/style/theme-city.css?ver=5.1.16 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 733
content-type: text/css
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=5.1.16

192.185.106.252

200 OK

89 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=5.1.16
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with CRLF line terminators
Size
89 B (89 bytes)
Hash
b20aaffdf9d8e1f413b536edb9d1b649
0f3afd6ef6940700eb7f245629d1b79c52f45b47
9534982bd24eaa3205ac2e5a4dbd6a16a3129b70df981f422562ef3a30ade7cd

HTTP Headers

GET /wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=5.1.16 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:50:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 89
content-type: text/css
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8fe5097b12ddbaa7731f5c6d445db349
b1d9718a7e3ead4ad6c08b3c888129ddf9ba52af
3133a3d91f11eeb170b6a3149b7cceb04228b72a222187bcc374f1fbbdbf4bd3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 18:25:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
94111c3420bb2c6a13c84437834119c2
a60b1aaa235c754b4f840e14e5c32f3bd1920d3b
9f0636387ba07be147b51285a1e30b77ad2e4e77126f1c1082775fd981b32d78

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 18:25:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-21608229-8

142.250.74.168

200 OK

65 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-21608229-8
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT

File type
ASCII text, with very long lines (2952)
Size
65 kB (64913 bytes)
Hash
152d07a0b0a1624c448991bf594e5d24
bcb652932130ca03535e0d85f99a981bfe3978b8
14a295dbb9373b57a518a695b95adc09f34b202804253fcb53bd5991a2887dc1

HTTP Headers

GET /gtag/js?id=UA-21608229-8 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 23 Sep 2023 18:25:47 GMT
expires: Sat, 23 Sep 2023 18:25:47 GMT
cache-control: private, max-age=900
last-modified: Sat, 23 Sep 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64913
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/social-tracking-protection-linkedin-digest256/111.0/1683905755

34.120.158.37

148 B

URL
tracking-protection.cdn.mozilla.net/social-tracking-protection-linkedin-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
148 B (148 bytes)
Hash
90a72e82e4192224c509d557fd1d0d0c
19fe3346057c74364b7a2a2c1de0011a19c153d8
1024a91771abf18dd0a4de9dcc166ba7f9d224c803b6a5854f3f2db8d9a3c4a2

HTTP Headers

GET /social-tracking-protection-linkedin-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: p+oAAlHEAS+COH7pjwERZ5sEtChhK34vGZvbD+TVcrhbYGPdYh24QprSI0rAcVljG8B+M1qbpvHZvnu2fBYt7PahPcpxs3AidyTQxxLBsEE=
x-amz-request-id: 3S4EHEWRPJWF1BRM
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 148
via: 1.1 google
date: Fri, 22 Sep 2023 21:37:29 GMT
age: 74898
last-modified: Fri, 12 May 2023 15:46:46 GMT
etag: "90a72e82e4192224c509d557fd1d0d0c"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

192.185.106.252

200 OK

4.4 kB

URL GET HTTP/2
www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with very long lines (9959)
Size
4.4 kB (4444 bytes)
Hash
7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 21 Jun 2016 17:40:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 4444
content-type: application/javascript
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.7

192.185.106.252

409 Conflict

83 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.7
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.7 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 409 Conflict
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/09/feralpisalo-pisa-golovi-23-09-2023-290x166.jpg

192.185.106.252

200 OK

17 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/09/feralpisalo-pisa-golovi-23-09-2023-290x166.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 290x166, components 3\012- data
Size
17 kB (16580 bytes)
Hash
487dab73d3fe5b671cd8acd2e6ae53e8
9ddbf60fb954d284a8400b23850ad5f52a2cdb9b
ad848775ddbf001f36d2cd6f460472ae608ab3dbfa124686f18edc4910c2906a

HTTP Headers

GET /wp-content/uploads/2023/09/feralpisalo-pisa-golovi-23-09-2023-290x166.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 23 Sep 2023 17:09:08 GMT
accept-ranges: bytes
content-length: 16580
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1

192.185.106.252

200 OK

1.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
HTML document, ASCII text
Size
1.4 kB (1389 bytes)
Hash
6755415003869bd599c3fae8e9792027
57946a22c79654014eb00fb548f727d302221873
07f79fbda35a2bf03f2940978670a2a53cf21e490ecce887bf92fc2e3f359293

HTTP Headers

GET /wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:28 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1389
content-type: application/javascript
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-includes/js/underscore.min.js?ver=1.8.3

192.185.106.252

200 OK

6.3 kB

URL GET HTTP/2
www.vugla.com/wp-includes/js/underscore.min.js?ver=1.8.3
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with very long lines (16010), with no line terminators
Size
6.3 kB (6347 bytes)
Hash
531c690707d18f60906bdf12d2ade193
0bddd39d059105bec8a13d3594b95e19146ee13d
e5f5736867880dc34e00e9d915d49094d5aa572c73771e87a082bd721b5a4f7c

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 15 Apr 2021 11:39:34 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 6347
content-type: application/javascript
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/logo.png

192.185.106.252

200 OK

7.9 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/logo.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
PNG image data, 254 x 96, 8-bit/color RGBA, non-interlaced\012- data
Size
7.9 kB (7870 bytes)
Hash
f8e78d7eed20f4d77ca41cbf9700c0fa
9c40c7c5ae212e070b2aceda05b7e34de143a670
cf314f8938fb5d378e49a7e09683a206e244024b7ca3a7ec1676f22804285ca7

HTTP Headers

GET /wp-content/themes/vugla/images/logo.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 18 Nov 2013 11:35:09 GMT
accept-ranges: bytes
content-length: 7870
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/kranjska-gora-gradski-trg-webcam-150x150.jpg

192.185.106.252

200 OK

8.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/kranjska-gora-gradski-trg-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
8.7 kB (8722 bytes)
Hash
bb30e47c317c19aff2dbbbedbd7297e7
48d8f4b1d8cf03a23c22a56ee3e4079ddef8815a
8f7ae93b026e6dd7552f2a2c3ecc2d50d245c3f39f7de920c87a3b018820e2f7

HTTP Headers

GET /wp-content/uploads/2021/11/kranjska-gora-gradski-trg-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sun, 28 Nov 2021 10:23:26 GMT
accept-ranges: bytes
content-length: 8722
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/las-vegas-treasure-island-webcam-150x150.jpg

192.185.106.252

200 OK

8.1 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/las-vegas-treasure-island-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
8.1 kB (8053 bytes)
Hash
f66f3bb3900915b883738cae9040d613
76772728b39c5dda3c2cacf844d4ebb7e634a9bd
982528ea360e4734e63d9c84512638e8948df3ae8237b01912b456abaf9a54bb

HTTP Headers

GET /wp-content/uploads/2021/11/las-vegas-treasure-island-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Nov 2021 18:20:33 GMT
accept-ranges: bytes
content-length: 8053
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/09/ternana-sudtirol-bolzano-golovi-23-09-2023-150x150.jpg

192.185.106.252

200 OK

7.9 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/09/ternana-sudtirol-bolzano-golovi-23-09-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
7.9 kB (7862 bytes)
Hash
697907b563e27401c5aaf9e61771dab6
b95c7a663ba7f9b5ce5ce7f00e2710fff1007a53
bf46b4a9a7102e6d24e40e1fa47632d6be037c24279a060d7ee28cf7f1064920

HTTP Headers

GET /wp-content/uploads/2023/09/ternana-sudtirol-bolzano-golovi-23-09-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 23 Sep 2023 17:09:12 GMT
accept-ranges: bytes
content-length: 7862
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/cinque-terre-manarola-webcam-150x150.jpg

192.185.106.252

200 OK

8.6 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/cinque-terre-manarola-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
8.6 kB (8642 bytes)
Hash
11e3744e35c5f4398770111a91cd24a8
f411894b1ec06ecf188fd102bdc56db3e279c5a6
bf6876e54e8b201d903850f129cd6c144aee8aa7c785fecd9a3cc764833ec61a

HTTP Headers

GET /wp-content/uploads/2021/11/cinque-terre-manarola-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 27 Nov 2021 11:36:14 GMT
accept-ranges: bytes
content-length: 8642
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/09/modena-lecco-golovi-23-09-2023-150x150.jpg

192.185.106.252

200 OK

7.6 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/09/modena-lecco-golovi-23-09-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
7.6 kB (7565 bytes)
Hash
accb12045e58010af7577dc9663e14bc
d8eb2f4eef9e58674762c6ca0d607127bb4cd3c5
43f6e9161c3b9f16011a49e7f50f953ec1fc6d2c1117e27e16a1a2b8f8cc6a83

HTTP Headers

GET /wp-content/uploads/2023/09/modena-lecco-golovi-23-09-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 23 Sep 2023 17:09:10 GMT
accept-ranges: bytes
content-length: 7565
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/newyork-times-square-150x150.jpg

192.185.106.252

200 OK

10 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/newyork-times-square-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
10 kB (10205 bytes)
Hash
315a29c9be933c63dbe552afbfbc7fc6
bed098446bd5d04e519b7dca6a6f2de18fa18bea
1710b767fc2eb5f3522775a7fbcc1005a16e51f3fa289898dceeb47ec64287a7

HTTP Headers

GET /wp-content/uploads/2021/11/newyork-times-square-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Nov 2021 17:53:31 GMT
accept-ranges: bytes
content-length: 10205
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.3.5

192.185.106.252

200 OK

8.2 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.3.5
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
Unicode text, UTF-8 text, with very long lines (641), with CRLF line terminators
Size
8.2 kB (8193 bytes)
Hash
79562c4b2822f6e8d5e19bc88539a237
934cf09679d032deb1d3a590e9a1204218f6d6c7
bda5541932a1d82d9e620344465fa9d0cc0a02b43bbbf05cf924c428bdd02607

HTTP Headers

GET /wp-content/plugins/responsive-lightbox/js/front.js?ver=2.3.5 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 22 Apr 2022 14:00:04 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 8193
content-type: application/javascript
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.3.5

192.185.106.252

200 OK

4.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.3.5
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with very long lines (12917), with CRLF line terminators
Size
4.7 kB (4708 bytes)
Hash
416d2c5e5425c640a7d63f25e0376fd6
a95b218161d94bdb148d108aedf065b4a4762045
b875bead01dfa1b02a553e8efda0f3a65d39da24f19ad37af95f06795eee76dc

HTTP Headers

GET /wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.3.5 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 22 Apr 2022 14:00:04 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 4708
content-type: application/javascript
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=5.1.16

192.185.106.252

200 OK

7.0 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=5.1.16
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
HTML document, ASCII text, with very long lines (14641), with CRLF line terminators
Size
7.0 kB (6964 bytes)
Hash
ad955f14cdcc21d58014f25ab7c8d46d
8915b95d672d54be6fb01a239088aba305d4798e
d6304e162f8fe5054a4c5430d2f1d78ea2ad54c1ff61ea708d148bf385312407

HTTP Headers

GET /wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=5.1.16 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 12:00:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 6964
content-type: application/javascript
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1

192.185.106.252

200 OK

106 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with CRLF line terminators
Size
106 B (106 bytes)
Hash
64829824ee643f09fb3821dc49b3089a
446608ff9f4128b9503476135a8c28599f8d5c2e
0b967c52b8e899c4266110c97fa50018d61ccf1365144d16f09f901523d48c95

HTTP Headers

GET /wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:31 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 106
content-type: application/javascript
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-includes/js/wp-embed.min.js?ver=5.1.16

192.185.106.252

200 OK

808 B

URL GET HTTP/2
www.vugla.com/wp-includes/js/wp-embed.min.js?ver=5.1.16
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with very long lines (1443), with no line terminators
Size
808 B (808 bytes)
Hash
43928880ff5ebadcd513755b011732cd
d0fdb17db490123ed700c2caa5d2d764794cb6d5
37c5f58f12814dd0ecc28f15b7765c6bcd31a9479d330b4ef896e140bf89dc38

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.1.16 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 16 May 2023 23:39:22 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 808
content-type: application/javascript
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/09/brescia-venezia-golovi-23-09-2023-150x150.jpg

192.185.106.252

200 OK

7.5 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/09/brescia-venezia-golovi-23-09-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
7.5 kB (7545 bytes)
Hash
5d4c836be2f3378fe7c963eb589735c7
c2fddebda124d29349abc62fe7494b2d75c01913
c1be330f7d082dc905826f78d8159ddd992693eabdbff0fd8e03f720281b5615

HTTP Headers

GET /wp-content/uploads/2023/09/brescia-venezia-golovi-23-09-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 23 Sep 2023 17:09:01 GMT
accept-ranges: bytes
content-length: 7545
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/09/ternana-sudtirol-bolzano-golovi-23-09-2023-50x50.jpg

192.185.106.252

200 OK

1.6 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/09/ternana-sudtirol-bolzano-golovi-23-09-2023-50x50.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size
1.6 kB (1594 bytes)
Hash
96f6c10023385b31f426f3fbd473c6a5
bdabbbc58c50330ec228da6bd9d8563052650b3c
684308367c47f3de64dd7d1a16da707cafb81f1b0b52081f55580225dd1a82c9

HTTP Headers

GET /wp-content/uploads/2023/09/ternana-sudtirol-bolzano-golovi-23-09-2023-50x50.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 23 Sep 2023 17:09:12 GMT
accept-ranges: bytes
content-length: 1594
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/09/feralpisalo-pisa-golovi-23-09-2023-150x150.jpg

192.185.106.252

200 OK

7.3 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/09/feralpisalo-pisa-golovi-23-09-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
7.3 kB (7257 bytes)
Hash
0b1ac7479f571955c8250d11f3e5aaeb
27199f06c5b253a99ae0816d98093800aaf15561
76b4359be03f76bd3e560d9b943a2ce383410beb9b257628d997eb5fb216efa2

HTTP Headers

GET /wp-content/uploads/2023/09/feralpisalo-pisa-golovi-23-09-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 23 Sep 2023 17:09:08 GMT
accept-ranges: bytes
content-length: 7257
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/09/cremonese-ascoli-golovi-23-09-2023-150x150.jpg

192.185.106.252

200 OK

7.9 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/09/cremonese-ascoli-golovi-23-09-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
7.9 kB (7899 bytes)
Hash
27085766a8b14323cff3eff44f33abec
eb455044e77141578ee485960c86f13e6502584f
a7881b0f28124375e19536d7bad013540d08142e9c1cbc01b6f5e9e77b733c7e

HTTP Headers

GET /wp-content/uploads/2023/09/cremonese-ascoli-golovi-23-09-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 23 Sep 2023 17:09:05 GMT
accept-ranges: bytes
content-length: 7899
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2015/06/recept-za-domace-kupinovo-vino-50x50.jpg

192.185.106.252

200 OK

2.1 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2015/06/recept-za-domace-kupinovo-vino-50x50.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size
2.1 kB (2052 bytes)
Hash
7ec95220db5ca7139563774556ec869a
4a8beb885569fc3ed03af0148621d9395b8f36fa
a74d7f5f67427f429e3d116bae59c7a8ebbfe3dd1d978dd1f796f83216db7dd4

HTTP Headers

GET /wp-content/uploads/2015/06/recept-za-domace-kupinovo-vino-50x50.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 30 Jun 2015 18:00:26 GMT
accept-ranges: bytes
content-length: 2052
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2014/05/marinirana-riba-na-meksikanski-nacin-50x50.jpg

192.185.106.252

200 OK

3.2 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2014/05/marinirana-riba-na-meksikanski-nacin-50x50.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 20x20, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=16, manufacturer=Canon, model=Canon EOS 5D Mark II, xresolution=234, yresolution=242, resolutionunit=2, software=Paint.NET v3.5.10, datetime=2012:07:19 16:43:45], baseline, precision 8, 50x50, components 3\012- data
Size
3.2 kB (3238 bytes)
Hash
fdc901e362496442955583bff5e7207f
6f5af5df9d5c730a04d40cf537da6d28313db476
bb6790e42f4ced95de63c25d62330f103dc2b40728443edac67abb6f50d554b3

HTTP Headers

GET /wp-content/uploads/2014/05/marinirana-riba-na-meksikanski-nacin-50x50.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 21 May 2014 21:23:24 GMT
accept-ranges: bytes
content-length: 3238
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/09/ac-milan-helas-verona-golovi-23-09-2023-50x50.jpg

192.185.106.252

200 OK

1.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/09/ac-milan-helas-verona-golovi-23-09-2023-50x50.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size
1.4 kB (1440 bytes)
Hash
1e9a71a8ce99d0962382794b42bc2755
3b76d8a788aeb93480093761f0260209621aa7da
003f3338c8c31818ea0318c8e931b837cd4c00bcc950307182f371824d862f04

HTTP Headers

GET /wp-content/uploads/2023/09/ac-milan-helas-verona-golovi-23-09-2023-50x50.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 23 Sep 2023 17:09:13 GMT
accept-ranges: bytes
content-length: 1440
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/amsterdam-centar-webcam-150x150.jpg

192.185.106.252

200 OK

6.6 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/amsterdam-centar-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
6.6 kB (6644 bytes)
Hash
8865b499bac0c82f4fa2c1b0200f64a1
74674206215c647865311187a577b48272853074
ba63bd66c1cae121c08eaa207f5a246e7903069e4ca2077c40f5698afe9f4558

HTTP Headers

GET /wp-content/uploads/2021/11/amsterdam-centar-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 25 Nov 2021 11:36:09 GMT
accept-ranges: bytes
content-length: 6644
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=5.1.16

192.185.106.252

200 OK

8.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=5.1.16
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with very long lines (17739), with CRLF line terminators
Size
8.7 kB (8747 bytes)
Hash
3229aa93c44fa4628707e80959a97bc1
5a2d4dbc4d1df02e7a386489e7b5c5a9e22dd40f
095834cc86bd018fdb4a9e31c99f9f96904b819be2b9dc16b3390383288d4d90

HTTP Headers

GET /wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=5.1.16 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 22 Apr 2022 14:00:04 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 8747
content-type: application/javascript
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/split-trogir-katedrala-svetog-lorenca-webcam-150x150.jpg

192.185.106.252

200 OK

6.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/split-trogir-katedrala-svetog-lorenca-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
6.7 kB (6683 bytes)
Hash
728ab77212729fa32398d11c83324eeb
61d9572c3b12309d67ba45cc3928cc83576580a0
687cd6500754dc82b7d76b398fd1fe515f4f1d91dc1e2c2a34bf5b6a911a9b3e

HTTP Headers

GET /wp-content/uploads/2021/11/split-trogir-katedrala-svetog-lorenca-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 30 Nov 2021 13:49:24 GMT
accept-ranges: bytes
content-length: 6683
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2014/05/prepelice-sa-jabukama-i-grozdjem-50x50.jpg

192.185.106.252

200 OK

2.2 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2014/05/prepelice-sa-jabukama-i-grozdjem-50x50.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=Paint.NET v3.5.10], baseline, precision 8, 50x50, components 3\012- data
Size
2.2 kB (2179 bytes)
Hash
cdc05a46fd028bd2c0668208d7d94ccc
b9935596a4a93b0d59ba18e1d3d04af08f3069df
da2b4b5e034acc8531bc8df09696f34de77b1364b5ddf9a456b2b0f70bc12b8f

HTTP Headers

GET /wp-content/uploads/2014/05/prepelice-sa-jabukama-i-grozdjem-50x50.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 21 May 2014 18:53:28 GMT
accept-ranges: bytes
content-length: 2179
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/09/ac-milan-helas-verona-golovi-23-09-2023-150x150.jpg

192.185.106.252

200 OK

6.5 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/09/ac-milan-helas-verona-golovi-23-09-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
6.5 kB (6503 bytes)
Hash
4917177557a8cc1b554eedea27429aea
89150b965cf352376be57b70d33c739a9a1136c3
8d7eae7add482f3be9fbac8160e19c9a706e11a3be2c7cb1b818798d35ca8760

HTTP Headers

GET /wp-content/uploads/2023/09/ac-milan-helas-verona-golovi-23-09-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 23 Sep 2023 17:09:13 GMT
accept-ranges: bytes
content-length: 6503
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/09/modena-lecco-golovi-23-09-2023-50x50.jpg

192.185.106.252

200 OK

1.6 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/09/modena-lecco-golovi-23-09-2023-50x50.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size
1.6 kB (1564 bytes)
Hash
d4849c446cd4fa921f8ea6165b327b55
9a424e1ed945d846d2e4639460a4c5fd43bbbe7b
34b439be594c78452ff47e82cdd701465fa8cc7459585e94ff19fefac7285d4a

HTTP Headers

GET /wp-content/uploads/2023/09/modena-lecco-golovi-23-09-2023-50x50.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 23 Sep 2023 17:09:10 GMT
accept-ranges: bytes
content-length: 1564
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:46 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8fe5097b12ddbaa7731f5c6d445db349
b1d9718a7e3ead4ad6c08b3c888129ddf9ba52af
3133a3d91f11eeb170b6a3149b7cceb04228b72a222187bcc374f1fbbdbf4bd3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 18:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
94111c3420bb2c6a13c84437834119c2
a60b1aaa235c754b4f840e14e5c32f3bd1920d3b
9f0636387ba07be147b51285a1e30b77ad2e4e77126f1c1082775fd981b32d78

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 18:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tracking-protection.cdn.mozilla.net/social-tracking-protection-twitter-digest256/111.0/1683905755

34.120.158.37

244 B

URL
tracking-protection.cdn.mozilla.net/social-tracking-protection-twitter-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
244 B (244 bytes)
Hash
44186218fd668b3ffe6d95bc9c2acf06
e5b11bad035d82c42f2783024bb40fb2fa00d7e6
6d7715ed174a8438063ca39237b2e0c7e204dd68d0396866bc898a7e7aa70372

HTTP Headers

GET /social-tracking-protection-twitter-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: 0lf7FlyXh/LWqQB/sUAFUYpEwPtjKDSOggKyEpJ5wB3Q7GEakRC7g5GywWV1N/JC9/H/yi5wink=
x-amz-request-id: KKGEGP9PC479N805
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 244
via: 1.1 google
date: Sat, 23 Sep 2023 16:20:07 GMT
age: 7540
last-modified: Fri, 12 May 2023 15:46:45 GMT
etag: "44186218fd668b3ffe6d95bc9c2acf06"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

www.vugla.com/wp-includes/js/wp-emoji-release.min.js?ver=5.1.16

192.185.106.252

200 OK

4.6 kB

URL GET HTTP/2
www.vugla.com/wp-includes/js/wp-emoji-release.min.js?ver=5.1.16
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with very long lines (9071)
Size
4.6 kB (4634 bytes)
Hash
33479c6b333bb34fd771bf50df1fefc3
4869e92709eee1d1a42a697a80879e303aea7572
d9160bf5ee2c9435a62c8b1d991b7f419417cab5d5a37eefcee79767a292b4b7

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.1.16 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 15 Apr 2021 11:39:34 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 4634
content-type: application/javascript
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.7

192.185.106.252

409 Conflict

83 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.7
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.7 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 409 Conflict
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_400.css

192.185.106.252

200 OK

2.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_400.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2412 bytes)
Hash
1150741460f65df53d2a23c598e5807c
5520fd0a709fdfdc80089452403dbfa49b79f7d4
e0e19f2d1b42abb0a12a95da1488a3fb300ceeb34984bc9e321063184acb019b

HTTP Headers

GET /wp-content/themes/vugla/css/style_400.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=5.1.16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:30 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 2412
content-type: text/css
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/flexslider.css

192.185.106.252

200 OK

1.5 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/flexslider.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with CRLF line terminators
Size
1.5 kB (1526 bytes)
Hash
aed0d9c2792c1ca777bfce04eb08ae7a
64e98271e4539dbf8819fa9d801017423c9bc30b
7f7b09426068a9bacddeefcf29f89063307fdc903ac45a569853b8c452d9b62d

HTTP Headers

GET /wp-content/themes/vugla/css/flexslider.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=5.1.16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 08 May 2014 09:18:47 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1526
content-type: text/css
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_reset.css

192.185.106.252

200 OK

1.2 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_reset.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with CRLF line terminators
Size
1.2 kB (1152 bytes)
Hash
b5ae6c0ccd961d29a2924b03b0cbdd6e
3293dc40aa870c1cf79180eb7bd5c2ff28f3bd0a
0838fff76cfa3bad87963e64a610ea8d60b2dc8d0781a7531a2385f65de1ab2f

HTTP Headers

GET /wp-content/themes/vugla/css/style_reset.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=5.1.16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:34 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1152
content-type: text/css
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/elastislide.css

192.185.106.252

200 OK

674 B

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/elastislide.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with CRLF line terminators
Size
674 B (674 bytes)
Hash
fac0ce1d7bcbe2001f963e204b03b3a4
fe650403bcbc74567e384eb3762c874835f6cad1
d8dcd83dfb6275b55ae8e495f6924dcfc52024a52f5639446a00de846ec7c7b9

HTTP Headers

GET /wp-content/themes/vugla/css/elastislide.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=5.1.16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:21 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 674
content-type: text/css
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/wpp.css

192.185.106.252

200 OK

357 B

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/wpp.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with CRLF line terminators
Size
357 B (357 bytes)
Hash
6b44660f121f565e2aab91b7b321ff28
62628718b7edeaccc74d1943d36bc1e0c9d16512
467aa063b813fd2fc1b3ebabc45d6e840d807dad90c169f0ee12f93bcf667851

HTTP Headers

GET /wp-content/themes/vugla/css/wpp.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=5.1.16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 357
content-type: text/css
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_768.css

192.185.106.252

200 OK

2.5 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_768.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with very long lines (408), with CRLF line terminators
Size
2.5 kB (2538 bytes)
Hash
14b717ed0c77c605f84b5b9a6b9892e9
5723bca38e18b8155b26f923590a05657911a377
6f37f5624b7bc60317a9c37a473fdf7dc34474d5f52cf169a7d52b35ca1dc0dd

HTTP Headers

GET /wp-content/themes/vugla/css/style_768.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=5.1.16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:32 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 2538
content-type: text/css
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_320.css

192.185.106.252

200 OK

2.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_320.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2413 bytes)
Hash
cc437b9ea4ed072bf7636ec9013f026d
df8db436e5193d474b97364dc0cd532a9b390fe5
4e92c5bc2c3f90209e1bec52f50461d8c04d82a539296918f0db0c61af63aab2

HTTP Headers

GET /wp-content/themes/vugla/css/style_320.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=5.1.16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:29 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 2413
content-type: text/css
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_1024.css

192.185.106.252

200 OK

2.3 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_1024.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with CRLF line terminators
Size
2.3 kB (2267 bytes)
Hash
7f4d3aa769cc8bb0e3c77745ff5c9d64
2da3458d48663a397a5a42c3bb52777bc5889dc0
7a6c4ca634ef663c6a3887df843fc04c40632ff46c53eb9f7d35bfcde21453b4

HTTP Headers

GET /wp-content/themes/vugla/css/style_1024.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=5.1.16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:28 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 2267
content-type: text/css
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/tabber.css

192.185.106.252

200 OK

1.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/tabber.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with CRLF line terminators
Size
1.7 kB (1710 bytes)
Hash
a3e36a4db7b488bd984dd17c6e17cf63
33e7b11f7e1f149f954b6d938db9e36599816e8a
3609900b90f9835e1525c38bb6b1bcbffea0a14894799e54a07c2a9df09cb03d

HTTP Headers

GET /wp-content/themes/vugla/css/tabber.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=5.1.16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1710
content-type: text/css
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/tag/feralpisalo-pisa-golovi

192.185.106.252

200 OK

0 B

URL HEAD HTTP/2
www.vugla.com/tag/feralpisalo-pisa-golovi
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /tag/feralpisalo-pisa-golovi HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/"
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=10800
expires: Sat, 23 Sep 2023 21:25:47 GMT
vary: User-Agent
referrer-policy: 
content-type: text/html; charset=UTF-8
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/tag/feralpisalo-pisa-golovi

192.185.106.252

200 OK

0 B

URL HEAD HTTP/2
www.vugla.com/tag/feralpisalo-pisa-golovi
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /tag/feralpisalo-pisa-golovi HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/"
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=10800
expires: Sat, 23 Sep 2023 21:25:47 GMT
vary: User-Agent
referrer-policy: 
content-type: text/html; charset=UTF-8
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/preloader.gif

192.185.106.252

200 OK

1.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/preloader.gif
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
1.7 kB (1737 bytes)
Hash
dd6b7b0bf5c3af22499abc0a9ee1e1b2
e8c0018145d616fac4deb460d9c1d9c9dd4d3302
0eddaab3b8cb0b15d81d62e5ae5960329c3e576ea78dc321b20734ab20271847

HTTP Headers

GET /wp-content/themes/vugla/images/preloader.gif HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_1024.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:08 GMT
accept-ranges: bytes
content-length: 1737
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:47 GMT
referrer-policy: 
pragma: public
content-type: image/gif
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/search-arrow.png

192.185.106.252

200 OK

3.1 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/search-arrow.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
PNG image data, 75 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
3.1 kB (3075 bytes)
Hash
3f8933cdf4d27e317eb59959257f8c7a
b16e414fcb1561603cbf4ac404ec8b6fae1563ff
167925a8f225d7fc340317265409496b2d90e4313bd7d70bca4262bb1477eaf0

HTTP Headers

GET /wp-content/themes/vugla/images/search-arrow.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:13 GMT
accept-ranges: bytes
content-length: 3075
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:47 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
23ee71f34a80feec27e23d99ecada83e
62f4c8dcc03187e2bdcdfa76dc732d4eebde5cc1
429bd03ec19810ed389955d166c98e62d9850e52160fbec3dd27da2cc30200fe

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 18:25:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Size
48 kB (48432 bytes)
Hash
e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 09:00:39 GMT
expires: Wed, 18 Sep 2024 09:00:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
age: 379509
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Size
48 kB (48432 bytes)
Hash
e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 09:00:39 GMT
expires: Wed, 18 Sep 2024 09:00:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
age: 379509
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

216.58.207.227

200 OK

50 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50368, version 1.0\012- data
Size
50 kB (50368 bytes)
Hash
4facfd6ff39e147b7e39c4b1abe4117d
0f7c0d978c209d21eb3f55950fc43e77c196ec3b
a246c4de8a0f1f1fdb6ee52565018dc341063aa9efe8481034bc3ef7d697e334

HTTP Headers

GET /s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 21:03:55 GMT
expires: Sat, 21 Sep 2024 21:03:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 01:04:20 GMT
content-type: font/woff2
age: 76913
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2

216.58.207.227

200 OK

35 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 35120, version 1.0\012- data
Size
35 kB (35120 bytes)
Hash
dd986ff1050050613be051863773d677
51a12487fd51cc02ca54a984f82d63318807ca2e
d9784dbf11886ea032ffbd00f499d333519babe001eacc19df7ab89de17bec47

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 03:57:33 GMT
expires: Wed, 18 Sep 2024 03:57:33 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 01:03:47 GMT
content-type: font/woff2
age: 397695
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1

192.185.106.252

200 OK

213 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
gzip compressed data, from Unix\012- data
Size
213 kB (212850 bytes)
Hash
d6f3097b9b540d3d3c01ddada35aae0c
380ca833d936a7b3dc3f7d6a6ea560ddd8587ef7
80e79a9b3a348d4814e24d475d0f6a46bf05cc0596626c54705762450a43026e

HTTP Headers

GET /wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:30 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: application/javascript
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js

173.233.137.36

200 OK

9.3 kB

URL GET HTTP/1.1
pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectalternativecpmgate.com
Fingerprint28:3D:15:52:F4:E0:D0:57:36:5B:CA:5F:81:45:2D:55:51:EA:74:C4
ValidityMon, 21 Aug 2023 06:08:50 GMT - Sun, 19 Nov 2023 06:08:49 GMT

File type
Unicode text, UTF-8 text, with very long lines (25086), with no line terminators
Size
9.3 kB (9277 bytes)
Hash
49c70c57a6c2817c23a8ec144fa80229
478f03ff4a8a5fb273dbcb6b85e2c3be219925c3
0529d755794a4808e49e2b577befcc28d7a9d9d306530c0b05931f7cdbcb48c5

HTTP Headers

GET /c9123167a2366d360cd4d80dad2ac358/invoke.js HTTP/1.1
Host: pl16411290.alternativecpmgate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 23 Sep 2023 18:25:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 578dfa6d0e369dd36d01446d69ae0e29
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js

173.233.137.44

200 OK

13 kB

URL GET HTTP/1.1
pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectpasstechusa.com
FingerprintD3:4B:ED:4A:BE:91:53:FD:34:3B:EE:75:CE:72:0C:C6:95:24:3D:E7
ValidityMon, 14 Aug 2023 06:55:28 GMT - Sun, 12 Nov 2023 06:55:27 GMT

File type
ASCII text, with very long lines (37132), with no line terminators
Size
13 kB (13409 bytes)
Hash
dda99022faa1396f03e252e6dc155270
66f64ab3eea964732cc2fecf044fb78065fd5543
a119188b643f7b88b5df5cbbc57aac92a5a534d68ef2dd02a2ab6c6794eff0f9

HTTP Headers

GET /d1/37/02/d137022925bcc2a680f8a4476ff94144.js HTTP/1.1
Host: pl15560907.passtechusa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 23 Sep 2023 18:25:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8c83adb04c984dea7117f2651d96d93f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.vugla.com/wp-includes/js/jquery/jquery.js?ver=1.12.4

192.185.106.252

200 OK

43 kB

URL GET HTTP/2
www.vugla.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
gzip compressed data, from Unix\012- data
Size
43 kB (43237 bytes)
Hash
c49c51fa644a6f2efb8d9c5edd6fb62a
79746e99c0d3915e9ebc5d20b71618565ccdc531
c2a9c0b5c96ea99e463830946cf7a567626b02c413ff475eb60c24eddd6a1111

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 24 Mar 2020 16:11:46 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: application/javascript
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

professionalswebcheck.com/stats

52.58.179.111

200 OK

40 B

URL GET HTTP/2
professionalswebcheck.com/stats
IP
52.58.179.111:443
ASN
#16509 AMAZON-02

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerAmazon
Subjectprofessionalswebcheck.com
Fingerprint75:E9:08:FD:96:58:C7:98:43:E8:21:27:A8:E9:B9:A4:55:28:F2:0C
ValidityWed, 30 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
630b598e68d5a3dac979eee696675304
c60ae5a28ef37a8ddb9f1d8c5ab37c2d561b852f
24695e6656afcbe7414ea2ca1f9e130c3d9264fe01aa225af73e1768c2375cfd

HTTP Headers

GET /stats HTTP/1.1
Host: professionalswebcheck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:48 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.vugla.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=aed4d350-c661-4d54-a858-86f18a5998d7:1:1; expires=Tue, 20 Sep 2033 18:25:48 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

www.kursnalista.co/banners/banners.js

192.185.106.47

200 OK

1.3 kB

URL GET HTTP/2
www.kursnalista.co/banners/banners.js
IP
192.185.106.47:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectkursnalista.co
FingerprintF6:C4:9C:14:56:EC:F4:78:85:01:FE:91:55:A8:14:CE:D4:9B:1B:1E
ValidityWed, 20 Sep 2023 09:00:02 GMT - Tue, 19 Dec 2023 09:00:01 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (394), with CRLF line terminators
Size
1.3 kB (1261 bytes)
Hash
0fa58c243ecc9c6ff829da27563c78c4
771e757dcaddc90a127b557e6a8a69b9dfe4767d
4631955f687225007a1227be7e662f1f45798c13a573f70670e748ff50aa194b

HTTP Headers

GET /banners/banners.js HTTP/1.1
Host: www.kursnalista.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sun, 10 Jul 2022 10:44:43 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1261
content-type: application/javascript
date: Sat, 23 Sep 2023 18:25:49 GMT
server: Apache
X-Firefox-Spdy: h2

eehuzaih.com/400/5005565

139.45.197.237

200 OK

35 kB

URL GET HTTP/2
eehuzaih.com/400/5005565
IP
139.45.197.237:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjecteehuzaih.com
Fingerprint8D:ED:92:10:5B:67:C8:5F:CE:1E:52:5E:08:F3:95:06:27:8D:7D:FB
ValiditySun, 27 Aug 2023 04:27:50 GMT - Sat, 25 Nov 2023 04:27:49 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
35 kB (34718 bytes)
Hash
d9509d0c97fe4964c26ff781fe668745
2573a4849f16f2ed61d9bbadd4a33a4e05b479a4
3be8b411c7c9522b27c38522475da7c7218bbafaf409b5def6c6a37bece96dfc

HTTP Headers

GET /400/5005565 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:48 GMT
content-type: application/javascript
x-trace-id: 1a8004791d1b93c8b6e42d8b019ad126
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=7c40c3103c834ddaab779be145cd00af; expires=Sun, 22 Sep 2024 18:25:48 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

glimtors.net/zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0

139.45.197.251

200 OK

972 B

URL GET HTTP/2
glimtors.net/zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
Fingerprint16:2D:47:69:3C:36:FE:B1:A3:A3:A5:57:73:5B:D0:FD:74:26:13:8F
ValiditySat, 02 Sep 2023 05:36:03 GMT - Fri, 01 Dec 2023 05:36:02 GMT

File type
JSON data\012- , ASCII text, with very long lines (971)
Size
972 B (972 bytes)
Hash
64f047fe127c40083700b04d3811ca27
8f6e71715f3ae8766c33ae08d590fdc202bd865d
0dd4bfd4e574ecf2df30bcd49a6afbc84ffe9a14227f17502561dfca63a51ac7

HTTP Headers

GET /zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0 HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:49 GMT
content-type: application/json; charset=utf-8
content-length: 972
x-trace-id: 006a2e312c25cdd4cec4d4b379a9c988
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/top-arrow.png

192.185.106.252

200 OK

305 B

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/top-arrow.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
PNG image data, 50 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
305 B (305 bytes)
Hash
1fe20be2c98304e84623d10905435835
7ba0264f96984d92cfe0750c802f9af1ee7cb88b
1c3cbd61a972428028066c1e9abcfa7c0ef37d3b1de39d7b09455177a94eec52

HTTP Headers

GET /wp-content/themes/vugla/images/top-arrow.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=aed4d350-c661-4d54-a858-86f18a5998d7%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:25 GMT
accept-ranges: bytes
content-length: 305
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:49 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Sat, 23 Sep 2023 18:25:49 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/small-social-sprite.png

192.185.106.252

200 OK

3.8 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/small-social-sprite.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
PNG image data, 272 x 95, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3812 bytes)
Hash
1aabf6dabc51ca6168aa98fbecbf79e2
0e4cb499aff16fedb2097658da7d2baa1bdafaa8
09ac67d0b81afe77f52b59ee9abc68ba2dd7cf0ebbc85703c75a76c2586e93aa

HTTP Headers

GET /wp-content/themes/vugla/images/small-social-sprite.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=aed4d350-c661-4d54-a858-86f18a5998d7%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:16 GMT
accept-ranges: bytes
content-length: 3812
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:49 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Sat, 23 Sep 2023 18:25:49 GMT
server: Apache
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=3956c693bf8748e9b0d2cde7acd9d72c

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=3956c693bf8748e9b0d2cde7acd9d72c
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintB4:02:64:AF:5C:AB:27:5B:1B:80:CF:C8:FF:EB:BF:43:29:C3:C5:C1
ValidityTue, 25 Jul 2023 06:29:27 GMT - Mon, 23 Oct 2023 06:29:26 GMT

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
a520cf466a7cab6590c6cf525085aaff
ad330881e4280bc56e6d39f7128fe613ff26e042
e19ea269785e674ef1f4a6f22a9783f4f2e1d0e8b1ecb5476a11ec3ae4a0b18f

HTTP Headers

GET /gid.js?userId=3956c693bf8748e9b0d2cde7acd9d72c HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:49 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=3956c693bf8748e9b0d2cde7acd9d72c; expires=Sun, 22 Sep 2024 18:25:49 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

www.kursnalista.co/banners/indikativni_kurs_300x600.jpg

192.185.106.47

200 OK

59 kB

URL GET HTTP/2
www.kursnalista.co/banners/indikativni_kurs_300x600.jpg
IP
192.185.106.47:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectkursnalista.co
FingerprintF6:C4:9C:14:56:EC:F4:78:85:01:FE:91:55:A8:14:CE:D4:9B:1B:1E
ValidityWed, 20 Sep 2023 09:00:02 GMT - Tue, 19 Dec 2023 09:00:01 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 300x600, components 3\012- data
Size
59 kB (58603 bytes)
Hash
578b0a16db8ebf941ff499915d7e0c26
dc701f07dac10069407a0c39ad8c628ce1d62ff7
2a941e02a74a9d18560f445d324f11a9e8253a07c53dcfec7a729bd55348c3e4

HTTP Headers

GET /banners/indikativni_kurs_300x600.jpg HTTP/1.1
Host: www.kursnalista.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 23 May 2015 12:36:36 GMT
accept-ranges: bytes
content-length: 58603
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:49 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2013/11/bckg-vugla-dark.jpg

192.185.106.252

200 OK

267 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2013/11/bckg-vugla-dark.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2000x1200, components 3\012- data
Size
267 kB (267247 bytes)
Hash
11e97d76a4b329319978b9da6f46b5b0
ae03d14a5b568ed59c1772ee2065e160e93428ae
9fbe33f0e52a532495bb5d56584e250e0d3cf1acc5a04acb7cbb2e39bb6c6a42

HTTP Headers

GET /wp-content/uploads/2013/11/bckg-vugla-dark.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=aed4d350-c661-4d54-a858-86f18a5998d7%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 20 Nov 2013 16:40:33 GMT
accept-ranges: bytes
content-length: 267247
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:49 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Sat, 23 Sep 2023 18:25:49 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/pattern-filter.png

192.185.106.252

200 OK

2.8 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/pattern-filter.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2804 bytes)
Hash
6d6f2d483736ba6f70063740ddf2841b
3b9dee704da0bf19a56b46584a55226a137504a9
dca9f66f2ff2d735f415080def56d34e60cf13cc65668bf9b422103cd3bee2a5

HTTP Headers

GET /wp-content/themes/vugla/images/pattern-filter.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=aed4d350-c661-4d54-a858-86f18a5998d7%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:06 GMT
accept-ranges: bytes
content-length: 2804
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Sun, 22 Sep 2024 18:25:49 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Sat, 23 Sep 2023 18:25:49 GMT
server: Apache
X-Firefox-Spdy: h2

tharbadir.com/2?z=1347951

139.45.197.238

200 OK

29 kB

URL GET HTTP/2
tharbadir.com/2?z=1347951
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
29 kB (29054 bytes)
Hash
57c501f9a11265405fccefc66c941dd2
cbb85e90e9b69a7681f0c95fb78fda8fe84b7acb
5e2f2a2f94bdf7f0a2b059578f7d4abc215a75e178a50d951cd945c2ead502bb

HTTP Headers

GET /2?z=1347951 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:48 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 7c4e782e6046b941674a80b1a1df3f01
access-control-expose-headers: X-Sc
x-sc: oXy-_n-skiKxLlMaF8kI0rPQUC_bhKsGoS4ilZmSE4yzthh7FI8PwNL4QnWJ1GCf9ggMvgff-GjMaKWKCiEkePbFHs4=
set-cookie: scm=1; expires=Sun, 22 Sep 2024 18:25:48 GMT; secure; SameSite=None
OAID=d2448eb807f84aafbefae0527ceba4c7; expires=Sun, 22 Sep 2024 18:25:48 GMT; secure; SameSite=None
oaidts=1695493548; expires=Sun, 22 Sep 2024 18:25:48 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.14.101

471 B

URL
ocsp.sectigo.com/
IP
104.18.14.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
cbf5b0228e6fb4a0147cec87a9f3d621
c2cfb64303a7ae0e92a90a2e110fe2c995bd234c
29c4f86517e8e64bde152fcf9f689b7a76195ef1614a21548ab1c69ea83353c2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 23 Sep 2023 18:25:49 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 21 Sep 2023 02:44:33 GMT
Expires: Thu, 28 Sep 2023 02:44:32 GMT
Etag: "c2cfb64303a7ae0e92a90a2e110fe2c995bd234c"
Cache-Control: max-age=376183,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80b4d51ddede5697-OSL

eehuzaih.com/500/5005565?excludes=&oaid=3956c693bf8748e9b0d2cde7acd9d72c&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0

139.45.197.237

200 OK

0 B

URL GET HTTP/2
eehuzaih.com/500/5005565?excludes=&oaid=3956c693bf8748e9b0d2cde7acd9d72c&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
139.45.197.237:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjecteehuzaih.com
Fingerprint8D:ED:92:10:5B:67:C8:5F:CE:1E:52:5E:08:F3:95:06:27:8D:7D:FB
ValiditySun, 27 Aug 2023 04:27:50 GMT - Sat, 25 Nov 2023 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /500/5005565?excludes=&oaid=3956c693bf8748e9b0d2cde7acd9d72c&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:49 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f

139.45.195.254

200 OK

12 B

URL POST HTTP/1.1
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
139.45.195.254:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerSectigo Limited
Subjectfleraprt.com
FingerprintA4:AF:A0:00:99:C9:85:E5:30:F6:F3:F2:B5:4F:AE:4F:D0:46:74:A9
ValidityMon, 09 Jan 2023 00:00:00 GMT - Sun, 14 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1677
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sat, 23 Sep 2023 18:27:19 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

tzegilo.com/stattag.js

172.64.205.17

200 OK

41 kB

URL GET HTTP/2
tzegilo.com/stattag.js
IP
172.64.205.17:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint42:15:A6:1F:C2:2C:D5:FF:32:2C:B9:6C:84:A6:86:63:B0:45:C5:20
ValidityMon, 07 Aug 2023 17:09:01 GMT - Sun, 05 Nov 2023 17:09:00 GMT

File type
ASCII text, with very long lines (18369)
Size
41 kB (40649 bytes)
Hash
89e89aea544ea2785d49cc4cd9cf26f6
7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b
86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:49 GMT
content-type: application/javascript
last-modified: Thu, 07 Sep 2023 08:19:52 GMT
etag: W/"64f987a8-4a4b"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 6387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Atur84YReS0bLXKW1gvwPNgEYbv3n01GR2LikJHfCSV1NKN64KHk2Gox9amvU7Q1KHrL4BOsZcFaEEun59GY2LoCBeVCQXl6b1e%2FwOo3Cqf9%2F%2B6%2BTw%2Fi%2B9jQzcXLvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4d51a3d5f771d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

friendshipmale.com/sfp.js

172.64.134.5

200 OK

27 kB

URL GET HTTP/2
friendshipmale.com/sfp.js
IP
172.64.134.5:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
27 kB (27093 bytes)
Hash
2d0450888479d4ddda305bd96206b240
5b4595aab1cd3f854718e05db9be0c65a12ab2f6
44de073e74ff24c6b1c0fe1f3ac5b33d793560e85ef24fb6ce89e76c2cf90af6

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:49 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: f144e62a96ab255dbafdcd9fbca51c11
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 23 Sep 2023 18:25:49 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O3%2BVyugshvRGcBpzuJ%2BpZ5F4NUpMhJf9Teyo33nBTRHmd%2BQmjuaTxBae%2BUPsAVutzf04MousQfMXCpl%2Fby%2Fj7XZxR71lLUmCt7kGhwvPtovdGkewk208POE66luwO9AaFcUQtBY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4d51c5a007708-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

s.w.org/images/core/emoji/11.2.0/svg/1f618.svg

192.0.77.48

200 OK

2.2 kB

URL GET HTTP/2
s.w.org/images/core/emoji/11.2.0/svg/1f618.svg
IP
192.0.77.48:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerSectigo Limited
Subject*.w.org
FingerprintB2:4C:20:97:37:FE:82:F3:56:5E:3B:F9:5C:EA:7F:81:14:89:D7:0E
ValidityTue, 06 Dec 2022 00:00:00 GMT - Sat, 06 Jan 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2224), with no line terminators
Size
2.2 kB (2224 bytes)
Hash
81a553e7c02c5dd144e40888c4b2faad
babb293bf69fb9dc86fed937dd0bd5b14c879c81
52741c0837915c2af0469345fda5a6e62b31f56c22efda6005cbcd52deb24285

HTTP Headers

GET /images/core/emoji/11.2.0/svg/1f618.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: image/svg+xml
content-length: 2224
last-modified: Fri, 18 Jan 2019 01:27:58 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2

s.w.org/images/core/emoji/11.2.0/svg/2764.svg

192.0.77.48

200 OK

368 B

URL GET HTTP/2
s.w.org/images/core/emoji/11.2.0/svg/2764.svg
IP
192.0.77.48:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerSectigo Limited
Subject*.w.org
FingerprintB2:4C:20:97:37:FE:82:F3:56:5E:3B:F9:5C:EA:7F:81:14:89:D7:0E
ValidityTue, 06 Dec 2022 00:00:00 GMT - Sat, 06 Jan 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (368), with no line terminators
Size
368 B (368 bytes)
Hash
0483f2b648dcc986d01385062052ae1c
61bd815f1497863265a76d92623042835e5e7fe2
09a743ee0c32ca57c9be64b13b29c396310d1dd309cb4d7d3be722e47db95f27

HTTP Headers

GET /images/core/emoji/11.2.0/svg/2764.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: image/svg+xml
content-length: 368
last-modified: Fri, 18 Jan 2019 01:27:58 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2

faintsuperintend.com/ren.gif?sid=H4sIAAAAAAAC%2F1SSPWwcRRTH53KWQEmBiGho0Ek0IMF5d2%2FvixQBE4wsnDgfIOjQ7MzcefDszjKze3t2ZRGBUh6igmr9PztWwFikowGhdRpkCcnXucBFJCpSERFRIbRni4Mnzbz35r3i9%2F5vPttKT4iDlB4vXtUbUik636w7tZc%2BcN1LtWUZpcPasNP6sOVfqpnBa67TrTsv194WbE3Pe47rOK7j1halET09nHddt%2B5Axntdt9516r5Xd5s%2Bhub%2FuU0rsLQCPjghFyH55Pzevg%2FJCkThd1eEXUt0%2FMpbYapoog0GfPe9aC3SWYRwFvZMBb1o96wb2h4t%2Fggd7UyBoQf%2FNgZyQiq%2FPUQQ7Z5RIhjsnIIGCiJCwC8gGxQQqoCkBZi%2BDcmPCMA4rq0gCu9e0yaj66dVWlYnZO7JY8hsQuZ%2BfQ5RuL%2Bg5LB2S6s0kTqyGPZyyGEB2S8QpwdINs5BZgdgySeQ%2FBcy%2F2QZUbi9YpWG5Pl0eCkLyF4BJUagtoK0PLKCtFdBGlcQ8uNam%2FmdDu80ORWMeUHP7fT8nt%2BlzOkxp9H1kLISb4QkHoGpEZjZRGw2sSY%2FP2pehEl%2Fgl3NYXkFNpmQyo1NDHiOTBBkliCjBJkkyBKCbJDvcGU9m9%2FlyqaBe%2Ba9M9%2FIxzrpb9EdnfRFRLbiE%2FLsVJq%2FHj6FNXFcY13Xa7itNvUarRZvtBzGfd5xOOUeZY1mB1bmkPbcdNqNck94GnHprz5CQA9g1QGYrIKmLmg2bnsO6OrY7zjYiO4N0r6idaZDcJ0jTuaQrFe21Al5fgrx%2BoPHEOzw8v3fP33h%2BxuPwEyO2OT4SD4g6Ks745s6I9s3dWbJ%2FZU4kaHcoOXubiU0EdWv3xHrmTZ86Yod3XuDlYUy3HtX2GSZRlxGfUu%2BWZCcC7OoDRPkhyX7vgiup3Z1ITVRGi9ff3NxKYyNsFbqqACVE0KKj8HkhFz4O57%2ByxftPqQpYNIcYXpIzgxSF2DxJmw847eawKhZTxBXkaX52HjB7FFJAiVmOQ1y2P%2FkwSzesnfQN1XQ5DaiMMfA5BioHFSNYNPz4yQ2h5d%2F%2FrK0rxCo6jhQprodKKO%2BKMX9o7z%2BPJXZyuOaaItWt%2Bs7fps7TuBzz3ObgtGGT7vU83ptJHYinnn1238AAAD%2F%2FwEAAP%2F%2Fu7wdQ24EAAA%3D

192.243.59.20

200 OK

7 B

URL GET HTTP/1.1
faintsuperintend.com/ren.gif?sid=H4sIAAAAAAAC%2F1SSPWwcRRTH53KWQEmBiGho0Ek0IMF5d2%2FvixQBE4wsnDgfIOjQ7MzcefDszjKze3t2ZRGBUh6igmr9PztWwFikowGhdRpkCcnXucBFJCpSERFRIbRni4Mnzbz35r3i9%2F5vPttKT4iDlB4vXtUbUik636w7tZc%2BcN1LtWUZpcPasNP6sOVfqpnBa67TrTsv194WbE3Pe47rOK7j1halET09nHddt%2B5Axntdt9516r5Xd5s%2Bhub%2FuU0rsLQCPjghFyH55Pzevg%2FJCkThd1eEXUt0%2FMpbYapoog0GfPe9aC3SWYRwFvZMBb1o96wb2h4t%2Fggd7UyBoQf%2FNgZyQiq%2FPUQQ7Z5RIhjsnIIGCiJCwC8gGxQQqoCkBZi%2BDcmPCMA4rq0gCu9e0yaj66dVWlYnZO7JY8hsQuZ%2BfQ5RuL%2Bg5LB2S6s0kTqyGPZyyGEB2S8QpwdINs5BZgdgySeQ%2FBcy%2F2QZUbi9YpWG5Pl0eCkLyF4BJUagtoK0PLKCtFdBGlcQ8uNam%2FmdDu80ORWMeUHP7fT8nt%2BlzOkxp9H1kLISb4QkHoGpEZjZRGw2sSY%2FP2pehEl%2Fgl3NYXkFNpmQyo1NDHiOTBBkliCjBJkkyBKCbJDvcGU9m9%2FlyqaBe%2Ba9M9%2FIxzrpb9EdnfRFRLbiE%2FLsVJq%2FHj6FNXFcY13Xa7itNvUarRZvtBzGfd5xOOUeZY1mB1bmkPbcdNqNck94GnHprz5CQA9g1QGYrIKmLmg2bnsO6OrY7zjYiO4N0r6idaZDcJ0jTuaQrFe21Al5fgrx%2BoPHEOzw8v3fP33h%2BxuPwEyO2OT4SD4g6Ks745s6I9s3dWbJ%2FZU4kaHcoOXubiU0EdWv3xHrmTZ86Yod3XuDlYUy3HtX2GSZRlxGfUu%2BWZCcC7OoDRPkhyX7vgiup3Z1ITVRGi9ff3NxKYyNsFbqqACVE0KKj8HkhFz4O57%2ByxftPqQpYNIcYXpIzgxSF2DxJmw847eawKhZTxBXkaX52HjB7FFJAiVmOQ1y2P%2FkwSzesnfQN1XQ5DaiMMfA5BioHFSNYNPz4yQ2h5d%2F%2FrK0rxCo6jhQprodKKO%2BKMX9o7z%2BPJXZyuOaaItWt%2Bs7fps7TuBzz3ObgtGGT7vU83ptJHYinnn1238AAAD%2F%2FwEAAP%2F%2Fu7wdQ24EAAA%3D
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectfaintsuperintend.com
Fingerprint51:B2:E1:2A:6D:EC:B8:67:D6:6D:AE:CF:3D:C7:14:85:FA:1F:2A:48
ValidityTue, 19 Sep 2023 06:31:45 GMT - Mon, 18 Dec 2023 06:31:44 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1SSPWwcRRTH53KWQEmBiGho0Ek0IMF5d2%2FvixQBE4wsnDgfIOjQ7MzcefDszjKze3t2ZRGBUh6igmr9PztWwFikowGhdRpkCcnXucBFJCpSERFRIbRni4Mnzbz35r3i9%2F5vPttKT4iDlB4vXtUbUik636w7tZc%2BcN1LtWUZpcPasNP6sOVfqpnBa67TrTsv194WbE3Pe47rOK7j1halET09nHddt%2B5Axntdt9516r5Xd5s%2Bhub%2FuU0rsLQCPjghFyH55Pzevg%2FJCkThd1eEXUt0%2FMpbYapoog0GfPe9aC3SWYRwFvZMBb1o96wb2h4t%2Fggd7UyBoQf%2FNgZyQiq%2FPUQQ7Z5RIhjsnIIGCiJCwC8gGxQQqoCkBZi%2BDcmPCMA4rq0gCu9e0yaj66dVWlYnZO7JY8hsQuZ%2BfQ5RuL%2Bg5LB2S6s0kTqyGPZyyGEB2S8QpwdINs5BZgdgySeQ%2FBcy%2F2QZUbi9YpWG5Pl0eCkLyF4BJUagtoK0PLKCtFdBGlcQ8uNam%2FmdDu80ORWMeUHP7fT8nt%2BlzOkxp9H1kLISb4QkHoGpEZjZRGw2sSY%2FP2pehEl%2Fgl3NYXkFNpmQyo1NDHiOTBBkliCjBJkkyBKCbJDvcGU9m9%2FlyqaBe%2Ba9M9%2FIxzrpb9EdnfRFRLbiE%2FLsVJq%2FHj6FNXFcY13Xa7itNvUarRZvtBzGfd5xOOUeZY1mB1bmkPbcdNqNck94GnHprz5CQA9g1QGYrIKmLmg2bnsO6OrY7zjYiO4N0r6idaZDcJ0jTuaQrFe21Al5fgrx%2BoPHEOzw8v3fP33h%2BxuPwEyO2OT4SD4g6Ks745s6I9s3dWbJ%2FZU4kaHcoOXubiU0EdWv3xHrmTZ86Yod3XuDlYUy3HtX2GSZRlxGfUu%2BWZCcC7OoDRPkhyX7vgiup3Z1ITVRGi9ff3NxKYyNsFbqqACVE0KKj8HkhFz4O57%2ByxftPqQpYNIcYXpIzgxSF2DxJmw847eawKhZTxBXkaX52HjB7FFJAiVmOQ1y2P%2FkwSzesnfQN1XQ5DaiMMfA5BioHFSNYNPz4yQ2h5d%2F%2FrK0rxCo6jhQprodKKO%2BKMX9o7z%2BPJXZyuOaaItWt%2Bs7fps7TuBzz3ObgtGGT7vU83ptJHYinnn1238AAAD%2F%2FwEAAP%2F%2Fu7wdQ24EAAA%3D HTTP/1.1
Host: faintsuperintend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 23 Sep 2023 18:25:50 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5ebd0644d2c54394a32a7a427c7dd6a0
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/si/e7/65/91/e76591885426335875f96fec271ab416/1683357009.png

45.133.44.9

200 OK

118 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/e7/65/91/e76591885426335875f96fec271ab416/1683357009.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintAA:0D:43:1A:D3:E4:C6:42:86:E6:B6:6B:B0:1E:22:41:C9:F8:8C:A9
ValidityThu, 27 Jul 2023 23:07:11 GMT - Wed, 25 Oct 2023 23:07:10 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size
118 kB (118147 bytes)
Hash
42aa625f7b89a3d77b9fe771f1f1d3c3
9b3d290a8eba25e0c882692bc11c9c3ef4e52dbd
e85910c5985368e86dd68b62ca341599e65a4950383aa0a99e9336eecc47e122

HTTP Headers

GET /si/e7/65/91/e76591885426335875f96fec271ab416/1683357009.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: image/png
content-length: 118147
server: nginx/1.21.6
last-modified: Sat, 06 May 2023 07:10:21 GMT
etag: "6455fd5d-1cd83"
expires: Mon, 25 Sep 2023 18:25:50 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/f5/1a/51/f51a5127fdcd4dba8257a50bc502162f/1683356981.png

45.133.44.9

200 OK

128 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/f5/1a/51/f51a5127fdcd4dba8257a50bc502162f/1683356981.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintAA:0D:43:1A:D3:E4:C6:42:86:E6:B6:6B:B0:1E:22:41:C9:F8:8C:A9
ValidityThu, 27 Jul 2023 23:07:11 GMT - Wed, 25 Oct 2023 23:07:10 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size
128 kB (128338 bytes)
Hash
2e213fca84ea9e780c6bf1c25ec75b61
d8fc9898a7bc1031b1d4c350c0d827ce424e17d5
c4cc2ce592d14c491c0430f3a6263e489a680b75ffecf97f6fde10f96ba6a9dd

HTTP Headers

GET /si/f5/1a/51/f51a5127fdcd4dba8257a50bc502162f/1683356981.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: image/png
content-length: 128338
server: nginx/1.21.6
last-modified: Sat, 06 May 2023 07:09:51 GMT
etag: "6455fd3f-1f552"
expires: Mon, 25 Sep 2023 18:25:50 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/9b/47/fb/9b47fb4316ad611bd932807c02c26cff/1683356991.png

45.133.44.9

200 OK

139 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/9b/47/fb/9b47fb4316ad611bd932807c02c26cff/1683356991.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintAA:0D:43:1A:D3:E4:C6:42:86:E6:B6:6B:B0:1E:22:41:C9:F8:8C:A9
ValidityThu, 27 Jul 2023 23:07:11 GMT - Wed, 25 Oct 2023 23:07:10 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size
139 kB (139050 bytes)
Hash
b5095853b4c6e16acd9d238c51c479ff
b7436311ee33f668d8a71e1300a60a4e11ff32e4
b47522a109caa660ee05c5278f3ffc9eecd1d290b4132b6388d5677f9ea372a7

HTTP Headers

GET /si/9b/47/fb/9b47fb4316ad611bd932807c02c26cff/1683356991.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: image/png
content-length: 139050
server: nginx/1.21.6
last-modified: Sat, 06 May 2023 07:10:00 GMT
etag: "6455fd48-21f2a"
expires: Mon, 25 Sep 2023 18:25:50 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

tharbadir.com/11?rnd=894998106&z=2892323&b=18698481&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=ZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA==&ruid=12747fa5-104d-43b1-9533-6821d5858341&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ot=343

139.45.197.238

200 OK

0 B

URL GET HTTP/2
tharbadir.com/11?rnd=894998106&z=2892323&b=18698481&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=ZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA==&ruid=12747fa5-104d-43b1-9533-6821d5858341&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ot=343
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /11?rnd=894998106&z=2892323&b=18698481&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=ZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA==&ruid=12747fa5-104d-43b1-9533-6821d5858341&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ot=343 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=3956c693bf8748e9b0d2cde7acd9d72c; oaidts=1695493548
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: ab6b1d2df8b6355ae2e9e78adc89306e
access-control-expose-headers: X-Sc
set-cookie: OAID=3956c693bf8748e9b0d2cde7acd9d72c; expires=Sun, 22 Sep 2024 18:25:50 GMT; secure; SameSite=None
oaidts=1695493548; expires=Sun, 22 Sep 2024 18:25:50 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

offerimage.com/www/images/3cc187c3294f050cb0f2632e70e60563.png

104.22.33.172

200 OK

93 kB

URL GET HTTP/2
offerimage.com/www/images/3cc187c3294f050cb0f2632e70e60563.png
IP
104.22.33.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
93 kB (93324 bytes)
Hash
3cc187c3294f050cb0f2632e70e60563
3f827edd982ebb762f5aa277031e479b915ec3ca
b19c84a72b1d44fb0226991b96e3ad276549cb40af572411320212828d77a498

HTTP Headers

GET /www/images/3cc187c3294f050cb0f2632e70e60563.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: image/png
content-length: 93324
last-modified: Thu, 10 Dec 2020 17:25:26 GMT
etag: "5fd25a06-16c8c"
expires: Sun, 24 Sep 2023 08:41:27 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 35063
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4d5215936991b-ARN
X-Firefox-Spdy: h2

glimtors.net/custom

139.45.197.251

200 OK

0 B

URL POST HTTP/2
glimtors.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
Fingerprint16:2D:47:69:3C:36:FE:B1:A3:A3:A5:57:73:5B:D0:FD:74:26:13:8F
ValiditySat, 02 Sep 2023 05:36:03 GMT - Fri, 01 Dec 2023 05:36:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2

glimtors.net/custom

139.45.197.251

200 OK

0 B

URL POST HTTP/2
glimtors.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
Fingerprint16:2D:47:69:3C:36:FE:B1:A3:A3:A5:57:73:5B:D0:FD:74:26:13:8F
ValiditySat, 02 Sep 2023 05:36:03 GMT - Fri, 01 Dec 2023 05:36:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=c7f5e181706849489829233e2af1c634&zoneId=1548391&checkDuplicate=true&ymid=&var=

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?pub=0&userId=c7f5e181706849489829233e2af1c634&zoneId=1548391&checkDuplicate=true&ymid=&var=
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintB4:02:64:AF:5C:AB:27:5B:1B:80:CF:C8:FF:EB:BF:43:29:C3:C5:C1
ValidityTue, 25 Jul 2023 06:29:27 GMT - Mon, 23 Oct 2023 06:29:26 GMT

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
a520cf466a7cab6590c6cf525085aaff
ad330881e4280bc56e6d39f7128fe613ff26e042
e19ea269785e674ef1f4a6f22a9783f4f2e1d0e8b1ecb5476a11ec3ae4a0b18f

HTTP Headers

GET /gid.js?pub=0&userId=c7f5e181706849489829233e2af1c634&zoneId=1548391&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Cookie: ID=3956c693bf8748e9b0d2cde7acd9d72c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=3956c693bf8748e9b0d2cde7acd9d72c; expires=Sun, 22 Sep 2024 18:25:50 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

faintsuperintend.com/ren.gif?sid=H4sIAAAAAAAC%2F1SSP2wcxRfH52JLv5%2BSAhHR0KCTaECC8%2B7e3j9SBEwwsnDi%2FAFBh2Zn5s6DZ3eWmZ3bsyuLCJTyEBVU6%2B%2FZsQImSjoaEFqnQZaQfJ0LXESiIhURERVCd7E4eNLMe2%2FeKz7v%2B%2BazbXdCPDh6vHRZb0ql6EKj5lVf%2BsD3L1RXZOIG1UG7%2BWEzvFA1%2Fdd8r1PzXq6%2BLdi6Xgg83%2FN8z68uSSO6erDg%2B37Ng0z3O36t49XCoOY3QgzMf3PrKrC0At4%2FIech%2Bfjs%2Ft0QkpVI4nuXhF3PdPrKW7FTNNMGfb73XrKe6DxBPAu7poJusnfaDW2Pln6ATnanwND9fxojOSaVXx8iSvZOKRH1d5%2BCRgoiQcTPIe%2BXEKqEpCWYvgnJjwjAOK6sIolvX9EmpxtPq3RSHZP5J48h8zGZ%2F%2BU5JPHdRSUH1RtauUzqxGLQLSAHJWSvROoOkG2egcwPwLJPIPnPZOHJCpJ4Z9UqDcmL6fBSlpDdEkoMQW0FbnJkBa5bgUsriPlxtcXCdpu3G5wKxoKo67e7YTfsUOZ1mVfvBHBsgjdElg7B1BDMbCE1W1iXnx81zsO4H2HXClhegc3GpHJtC31eIBcEuSXIKUEuCfKMIO8Xu1zZwBa3ubIu8k99cOrrxUhnvW26q7OeSMh2ekKenUrz58P%2FYV0cV1nHD%2Bp%2Bs0WDerPJ602P8ZC3PU55QFm90YaVBaQ9M512c7In%2FB%2FpxF9%2BhIgewKoDMDkH6nzQfNQKPNC1Udj2sJnc6bueojWmY3BdIM3mkW1UttUJeX4K8fqDPyDY4cX7v336wnfXHoGZAqkp8JF8QNBTt0bXdU52ruvckvuraSZjuUknu7uR0UzMff2O2Mi14cuX7PDOG2xSmIT77wqbrdCEy6RnyTeLknNhlrRhgny%2FbN8X0VVn1xadSVy6cvXNpeU4NcJaqZMSVI4JKT8Gk2Ny7q90%2Bi9ftPcgTQnjCsTukJwapC7B0i3YdMZvNYFRs54oPYPcFSMTRLNHJQmUmOU0KmD%2FlUezeNveQs%2FMgWY3kcQF%2BqZAXxWgagjrzo6y1Bxe%2FOnLiX2FSM2NImXmdiJl1BcTcX%2BfKjy5HsPK46poiWanE3phi3teFPIg8BuC0XpIOzQIui1kdiyeefXbvwEAAP%2F%2FAQAA%2F%2F%2Bq8Ut5bgQAAA%3D%3D

192.243.59.20

200 OK

7 B

URL GET HTTP/1.1
faintsuperintend.com/ren.gif?sid=H4sIAAAAAAAC%2F1SSP2wcxRfH52JLv5%2BSAhHR0KCTaECC8%2B7e3j9SBEwwsnDi%2FAFBh2Zn5s6DZ3eWmZ3bsyuLCJTyEBVU6%2B%2FZsQImSjoaEFqnQZaQfJ0LXESiIhURERVCd7E4eNLMe2%2FeKz7v%2B%2BazbXdCPDh6vHRZb0ql6EKj5lVf%2BsD3L1RXZOIG1UG7%2BWEzvFA1%2Fdd8r1PzXq6%2BLdi6Xgg83%2FN8z68uSSO6erDg%2B37Ng0z3O36t49XCoOY3QgzMf3PrKrC0At4%2FIech%2Bfjs%2Ft0QkpVI4nuXhF3PdPrKW7FTNNMGfb73XrKe6DxBPAu7poJusnfaDW2Pln6ATnanwND9fxojOSaVXx8iSvZOKRH1d5%2BCRgoiQcTPIe%2BXEKqEpCWYvgnJjwjAOK6sIolvX9EmpxtPq3RSHZP5J48h8zGZ%2F%2BU5JPHdRSUH1RtauUzqxGLQLSAHJWSvROoOkG2egcwPwLJPIPnPZOHJCpJ4Z9UqDcmL6fBSlpDdEkoMQW0FbnJkBa5bgUsriPlxtcXCdpu3G5wKxoKo67e7YTfsUOZ1mVfvBHBsgjdElg7B1BDMbCE1W1iXnx81zsO4H2HXClhegc3GpHJtC31eIBcEuSXIKUEuCfKMIO8Xu1zZwBa3ubIu8k99cOrrxUhnvW26q7OeSMh2ekKenUrz58P%2FYV0cV1nHD%2Bp%2Bs0WDerPJ602P8ZC3PU55QFm90YaVBaQ9M512c7In%2FB%2FpxF9%2BhIgewKoDMDkH6nzQfNQKPNC1Udj2sJnc6bueojWmY3BdIM3mkW1UttUJeX4K8fqDPyDY4cX7v336wnfXHoGZAqkp8JF8QNBTt0bXdU52ruvckvuraSZjuUknu7uR0UzMff2O2Mi14cuX7PDOG2xSmIT77wqbrdCEy6RnyTeLknNhlrRhgny%2FbN8X0VVn1xadSVy6cvXNpeU4NcJaqZMSVI4JKT8Gk2Ny7q90%2Bi9ftPcgTQnjCsTukJwapC7B0i3YdMZvNYFRs54oPYPcFSMTRLNHJQmUmOU0KmD%2FlUezeNveQs%2FMgWY3kcQF%2BqZAXxWgagjrzo6y1Bxe%2FOnLiX2FSM2NImXmdiJl1BcTcX%2BfKjy5HsPK46poiWanE3phi3teFPIg8BuC0XpIOzQIui1kdiyeefXbvwEAAP%2F%2FAQAA%2F%2F%2Bq8Ut5bgQAAA%3D%3D
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectfaintsuperintend.com
Fingerprint51:B2:E1:2A:6D:EC:B8:67:D6:6D:AE:CF:3D:C7:14:85:FA:1F:2A:48
ValidityTue, 19 Sep 2023 06:31:45 GMT - Mon, 18 Dec 2023 06:31:44 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1SSP2wcxRfH52JLv5%2BSAhHR0KCTaECC8%2B7e3j9SBEwwsnDi%2FAFBh2Zn5s6DZ3eWmZ3bsyuLCJTyEBVU6%2B%2FZsQImSjoaEFqnQZaQfJ0LXESiIhURERVCd7E4eNLMe2%2FeKz7v%2B%2BazbXdCPDh6vHRZb0ql6EKj5lVf%2BsD3L1RXZOIG1UG7%2BWEzvFA1%2Fdd8r1PzXq6%2BLdi6Xgg83%2FN8z68uSSO6erDg%2B37Ng0z3O36t49XCoOY3QgzMf3PrKrC0At4%2FIech%2Bfjs%2Ft0QkpVI4nuXhF3PdPrKW7FTNNMGfb73XrKe6DxBPAu7poJusnfaDW2Pln6ATnanwND9fxojOSaVXx8iSvZOKRH1d5%2BCRgoiQcTPIe%2BXEKqEpCWYvgnJjwjAOK6sIolvX9EmpxtPq3RSHZP5J48h8zGZ%2F%2BU5JPHdRSUH1RtauUzqxGLQLSAHJWSvROoOkG2egcwPwLJPIPnPZOHJCpJ4Z9UqDcmL6fBSlpDdEkoMQW0FbnJkBa5bgUsriPlxtcXCdpu3G5wKxoKo67e7YTfsUOZ1mVfvBHBsgjdElg7B1BDMbCE1W1iXnx81zsO4H2HXClhegc3GpHJtC31eIBcEuSXIKUEuCfKMIO8Xu1zZwBa3ubIu8k99cOrrxUhnvW26q7OeSMh2ekKenUrz58P%2FYV0cV1nHD%2Bp%2Bs0WDerPJ602P8ZC3PU55QFm90YaVBaQ9M512c7In%2FB%2FpxF9%2BhIgewKoDMDkH6nzQfNQKPNC1Udj2sJnc6bueojWmY3BdIM3mkW1UttUJeX4K8fqDPyDY4cX7v336wnfXHoGZAqkp8JF8QNBTt0bXdU52ruvckvuraSZjuUknu7uR0UzMff2O2Mi14cuX7PDOG2xSmIT77wqbrdCEy6RnyTeLknNhlrRhgny%2FbN8X0VVn1xadSVy6cvXNpeU4NcJaqZMSVI4JKT8Gk2Ny7q90%2Bi9ftPcgTQnjCsTukJwapC7B0i3YdMZvNYFRs54oPYPcFSMTRLNHJQmUmOU0KmD%2FlUezeNveQs%2FMgWY3kcQF%2BqZAXxWgagjrzo6y1Bxe%2FOnLiX2FSM2NImXmdiJl1BcTcX%2BfKjy5HsPK46poiWanE3phi3teFPIg8BuC0XpIOzQIui1kdiyeefXbvwEAAP%2F%2FAQAA%2F%2F%2Bq8Ut5bgQAAA%3D%3D HTTP/1.1
Host: faintsuperintend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 23 Sep 2023 18:25:50 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fcc3f7cd964fa7c2e8cdeb29119505c0
Strict-Transport-Security: max-age=0; includeSubdomains

glimtors.net/custom

139.45.197.251

200 OK

39 B

URL POST HTTP/2
glimtors.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
Fingerprint16:2D:47:69:3C:36:FE:B1:A3:A3:A5:57:73:5B:D0:FD:74:26:13:8F
ValiditySat, 02 Sep 2023 05:36:03 GMT - Fri, 01 Dec 2023 05:36:02 GMT

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 386
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 381216f4551d106d7d84ce3a0515f0b8
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

glimtors.net/custom

139.45.197.251

200 OK

39 B

URL POST HTTP/2
glimtors.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
Fingerprint16:2D:47:69:3C:36:FE:B1:A3:A3:A5:57:73:5B:D0:FD:74:26:13:8F
ValiditySat, 02 Sep 2023 05:36:03 GMT - Fri, 01 Dec 2023 05:36:02 GMT

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 751
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: dddf252b2f56718c97cf976b11a1803f
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

0 B

URL POST HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintD6:54:A1:23:39:A0:9A:41:5A:CC:0B:F2:C1:7C:6A:FA:F0:E8:C1:52
ValidityWed, 06 Sep 2023 01:33:39 GMT - Tue, 05 Dec 2023 01:33:38 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

0 B

URL POST HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintD6:54:A1:23:39:A0:9A:41:5A:CC:0B:F2:C1:7C:6A:FA:F0:E8:C1:52
ValidityWed, 06 Sep 2023 01:33:39 GMT - Tue, 05 Dec 2023 01:33:38 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

94 B

URL POST HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintD6:54:A1:23:39:A0:9A:41:5A:CC:0B:F2:C1:7C:6A:FA:F0:E8:C1:52
ValidityWed, 06 Sep 2023 01:33:39 GMT - Tue, 05 Dec 2023 01:33:38 GMT

File type
JSON data\012- , ASCII text
Size
94 B (94 bytes)
Hash
b9d188445e78296fa523cb667075e0cf
bf37dcec8233724d576ae9b95b4045a459e35855
7a2826b83d7a5af5eb359799392209a901b4865bfdef63227614b42f9f623b4e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 525
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: application/json; charset=utf-8
content-length: 94
x-trace-id: 67442d42c4e67ebd155d22bb09f41fe4
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

94 B

URL POST HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintD6:54:A1:23:39:A0:9A:41:5A:CC:0B:F2:C1:7C:6A:FA:F0:E8:C1:52
ValidityWed, 06 Sep 2023 01:33:39 GMT - Tue, 05 Dec 2023 01:33:38 GMT

File type
JSON data\012- , ASCII text
Size
94 B (94 bytes)
Hash
d1b37b073286c3dc9b39ca5cf4d51d19
06d86d7991c461f5bd4cd27bd6029fdb86b6c639
4f799f00e36b95b2297806c5af611efee43404d4d4a69c82a2ea3b7f93671c53

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 525
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: application/json; charset=utf-8
content-length: 94
x-trace-id: 0eeff5436eaed2670b8b0afeee4751f7
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

visitorcardinal.com/sbar.json?key=d137022925bcc2a680f8a4476ff94144&uuid=aed4d350-c661-4d54-a858-86f18a5998d7%3A1%3A1

192.243.59.20

200 OK

3.2 kB

URL GET HTTP/1.1
visitorcardinal.com/sbar.json?key=d137022925bcc2a680f8a4476ff94144&uuid=aed4d350-c661-4d54-a858-86f18a5998d7%3A1%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvisitorcardinal.com
FingerprintB3:4F:99:74:63:73:27:1B:99:99:A2:19:3E:B4:E0:A0:EA:5C:03:D0
ValidityMon, 18 Sep 2023 15:38:06 GMT - Sun, 17 Dec 2023 15:38:05 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (6205), with no line terminators
Size
3.2 kB (3153 bytes)
Hash
7f796fbb12477e0aeb6999d6a6c30f18
3f30ae0bfde73984900aa18a538fdafe79e49cd2
e23a4d5382eb77d7f7f7a0d811099d0c7527018812705d11e1d777dc4a615159

HTTP Headers

GET /sbar.json?key=d137022925bcc2a680f8a4476ff94144&uuid=aed4d350-c661-4d54-a858-86f18a5998d7%3A1%3A1 HTTP/1.1
Host: visitorcardinal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 23 Sep 2023 18:25:50 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15460408; expires=Sun, 24 Sep 2023 18:25:50 GMT; secure; SameSite=None
uid_id2=aed4d350-c661-4d54-a858-86f18a5998d7:1:1; expires=Sat, 30 Sep 2023 18:25:50 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 24 Sep 2023 18:25:50 GMT; secure; SameSite=None
uncs=1; expires=Sun, 24 Sep 2023 18:25:50 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 24 Sep 2023 18:25:50 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 24 Sep 2023 18:25:50 GMT; secure; SameSite=None
slecd137022925bcc2a680f8a4476ff94144=[4243976]; expires=Sat, 23 Sep 2023 18:25:55 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3143bd0c4e597f3cb4aaf566fe437462
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

interstitial-08.com/contents/s/8b/87/1f/32bf81d578df4bd8db6bbe9c03/01414279769626.png

139.45.197.151

200 OK

165 kB

URL GET HTTP/2
interstitial-08.com/contents/s/8b/87/1f/32bf81d578df4bd8db6bbe9c03/01414279769626.png
IP
139.45.197.151:443
ASN
#9002 RETN Limited

Requested by
https://interstitial-08.com/?l=Ks37wDcsh9ZUgKV&cd_meta_crid=55809&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D2628323539%26z%3D2892323%26b%3D18698481%26c%3D7298598%26var%3D%26varid%3D0%26d%3Dhttps%253A%252F%252Fexolix.com%252F%253Futm_source%253Dpropeller%2526utm_medium%253Dcpc%2526utm_campaign%253Daugust2023_banner%26cln%3D1%26btp%3D7%26rb%3DZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D12747fa5-104d-43b1-9533-6821d5858341%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Ftag%252Fferalpisalo-pisa-golovi%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D3%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Certificate
IssuerLet's Encrypt
Subjectinterstitial-08.com
Fingerprint89:0A:25:3E:74:93:82:46:D6:24:9C:BA:62:C4:6D:5B:DE:77:74:66
ValidityTue, 25 Jul 2023 05:15:09 GMT - Mon, 23 Oct 2023 05:15:08 GMT

File type
PNG image data, 500 x 700, 8-bit/color RGBA, non-interlaced\012- data
Size
165 kB (164614 bytes)
Hash
8b871f32bf81d578df4bd8db6bbe9c03
e97f8062db1f90339a0f338977b867450623273a
5b8dbba2538b4e9853aed64f42cf0ae27d9058fab4e50bcde0ff301239c0d229

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /contents/s/8b/87/1f/32bf81d578df4bd8db6bbe9c03/01414279769626.png HTTP/1.1
Host: interstitial-08.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://interstitial-08.com/?l=Ks37wDcsh9ZUgKV&cd_meta_crid=55809&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D2628323539%26z%3D2892323%26b%3D18698481%26c%3D7298598%26var%3D%26varid%3D0%26d%3Dhttps%253A%252F%252Fexolix.com%252F%253Futm_source%253Dpropeller%2526utm_medium%253Dcpc%2526utm_campaign%253Daugust2023_banner%26cln%3D1%26btp%3D7%26rb%3DZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D12747fa5-104d-43b1-9533-6821d5858341%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Ftag%252Fferalpisalo-pisa-golovi%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D3%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: image/png
content-length: 164614
last-modified: Fri, 18 Aug 2023 13:21:44 GMT
vary: Accept-Encoding
etag: "64df7068-28306"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2

www.vugla.com/favicon.ico

192.185.106.252

200 OK

0 B

URL GET HTTP/2
www.vugla.com/favicon.ico
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=aed4d350-c661-4d54-a858-86f18a5998d7%3A1%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=faintsuperintend.com; prefetchAd_1316441=true; sb_main_d137022925bcc2a680f8a4476ff94144=1; sb_count_d137022925bcc2a680f8a4476ff94144=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
vary: User-Agent
referrer-policy: 
content-length: 0
content-type: image/vnd.microsoft.icon
date: Sat, 23 Sep 2023 18:25:50 GMT
server: Apache
X-Firefox-Spdy: h2

visitorcardinal.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRitTnIIyUEMXjwIA3pQcGe7e3pmug0SjXEluPlBouhNqquqJ%2BVWd7VV3dOze1oMSI6T%2F6D3zW6W6LLoH6Bor7eF4I4H2YN7EARBb4HcBJnZxdUPmu91vVfwvvfVFxvlEXFR0sOlG3pNKkUXu2239erHnne5tSyzctQahb1PesHllhm%2B4blR232t9Z5gK3rRdz3X9VyvtSSNSPRo0fO8tguZ70ReO3Lbgd%2F2ugFG5v%2F%2FtnRgqQM%2BPCKXIPn0ws5uAMkaZOnX14RdKXT%2B%2BrtpqWihDYZ8%2B8NsJdNVhvQUJsZBkm2fqKHtwdJ30NnW3DD08F9hLKfE%2Bf03xNn2iUvEw61jo7GCyBDzi6iGDYRqIGkDpu9D8gMCMI6bt5Clj25qU9HVY5bO2Ck59%2BwpZDUl5359AVm6e1XJUeuuVmUhdWYxSmrIUQM5aJCXeyjWzkBWe2DF55D8CVl8tows3bxllYbkh69QwQPe6boLrNfzFgLeDRZo2A0Xwl7ihbQbRSHvzxOSsoFMGigxBrUOytknHZSJgzJ3kPLDVp8FYcjDLqeCMT9OvDAJkiCizE2Y24l8lGw2wxhFPgZTYzCzjtysY0U%2BPOhegim%2Fh71Xw3IHtiAY8hqVIKgsQUUJKklQFQTVsN7iyvq2fsSVLWPvpPsnvVNPdDHYoFu6GIiMbORH5Pl5dn%2F%2BEWJFHLa41%2Bm7vh%2F53Zgxn%2FZCNwlpEPR7SRIFXhDAyhrSnplPujZbJM4jn%2FUbfyGme7BqD0yeBS1fAq0mfd8FvTcJQhdr2eNhOVC0zXQKrmvkxTkUq86GOiIvzk281ZyHYPtXfiLzAjM1clPjU%2FkjwUA9mNzRFdm8oytLvrmVFzKVa3S23LsFLcTZL98Xq5U2%2FPo1O378NpsRM7jzgbDFMs24zAaWfHVVci7MkjZMkG%2Bv249EfLu0966WJivz5dvvLF1PcyOslTprQOWUkOYzMDklF%2F9%2BMn%2B4L5sM0jQwZY203CcnBan3wPJ12PzUv9UERp1q4txBVdYT48enh0pOif%2F0LpTYv%2FLD5JcLb%2BaboHENK%2F5z8RRv2AcYGAe0uI8srTE0NYaqBlVj2PLspMjN%2FpWfO%2FNCrJxJrIyzGSujHh4HbOVhS%2FRFL4oCN%2Bhz140D7vteVzDaCWhEfT%2Fpo7BT8dzC7j8AAAD%2F%2FwEAAP%2F%2F7pUOQ4kEAAA%3D

192.243.59.20

200 OK

7 B

URL GET HTTP/1.1
visitorcardinal.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRitTnIIyUEMXjwIA3pQcGe7e3pmug0SjXEluPlBouhNqquqJ%2BVWd7VV3dOze1oMSI6T%2F6D3zW6W6LLoH6Bor7eF4I4H2YN7EARBb4HcBJnZxdUPmu91vVfwvvfVFxvlEXFR0sOlG3pNKkUXu2239erHnne5tSyzctQahb1PesHllhm%2B4blR232t9Z5gK3rRdz3X9VyvtSSNSPRo0fO8tguZ70ReO3Lbgd%2F2ugFG5v%2F%2FtnRgqQM%2BPCKXIPn0ws5uAMkaZOnX14RdKXT%2B%2BrtpqWihDYZ8%2B8NsJdNVhvQUJsZBkm2fqKHtwdJ30NnW3DD08F9hLKfE%2Bf03xNn2iUvEw61jo7GCyBDzi6iGDYRqIGkDpu9D8gMCMI6bt5Clj25qU9HVY5bO2Ck59%2BwpZDUl5359AVm6e1XJUeuuVmUhdWYxSmrIUQM5aJCXeyjWzkBWe2DF55D8CVl8tows3bxllYbkh69QwQPe6boLrNfzFgLeDRZo2A0Xwl7ihbQbRSHvzxOSsoFMGigxBrUOytknHZSJgzJ3kPLDVp8FYcjDLqeCMT9OvDAJkiCizE2Y24l8lGw2wxhFPgZTYzCzjtysY0U%2BPOhegim%2Fh71Xw3IHtiAY8hqVIKgsQUUJKklQFQTVsN7iyvq2fsSVLWPvpPsnvVNPdDHYoFu6GIiMbORH5Pl5dn%2F%2BEWJFHLa41%2Bm7vh%2F53Zgxn%2FZCNwlpEPR7SRIFXhDAyhrSnplPujZbJM4jn%2FUbfyGme7BqD0yeBS1fAq0mfd8FvTcJQhdr2eNhOVC0zXQKrmvkxTkUq86GOiIvzk281ZyHYPtXfiLzAjM1clPjU%2FkjwUA9mNzRFdm8oytLvrmVFzKVa3S23LsFLcTZL98Xq5U2%2FPo1O378NpsRM7jzgbDFMs24zAaWfHVVci7MkjZMkG%2Bv249EfLu0966WJivz5dvvLF1PcyOslTprQOWUkOYzMDklF%2F9%2BMn%2B4L5sM0jQwZY203CcnBan3wPJ12PzUv9UERp1q4txBVdYT48enh0pOif%2F0LpTYv%2FLD5JcLb%2BaboHENK%2F5z8RRv2AcYGAe0uI8srTE0NYaqBlVj2PLspMjN%2FpWfO%2FNCrJxJrIyzGSujHh4HbOVhS%2FRFL4oCN%2Bhz140D7vteVzDaCWhEfT%2Fpo7BT8dzC7j8AAAD%2F%2FwEAAP%2F%2F7pUOQ4kEAAA%3D
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvisitorcardinal.com
FingerprintB3:4F:99:74:63:73:27:1B:99:99:A2:19:3E:B4:E0:A0:EA:5C:03:D0
ValidityMon, 18 Sep 2023 15:38:06 GMT - Sun, 17 Dec 2023 15:38:05 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRitTnIIyUEMXjwIA3pQcGe7e3pmug0SjXEluPlBouhNqquqJ%2BVWd7VV3dOze1oMSI6T%2F6D3zW6W6LLoH6Bor7eF4I4H2YN7EARBb4HcBJnZxdUPmu91vVfwvvfVFxvlEXFR0sOlG3pNKkUXu2239erHnne5tSyzctQahb1PesHllhm%2B4blR232t9Z5gK3rRdz3X9VyvtSSNSPRo0fO8tguZ70ReO3Lbgd%2F2ugFG5v%2F%2FtnRgqQM%2BPCKXIPn0ws5uAMkaZOnX14RdKXT%2B%2BrtpqWihDYZ8%2B8NsJdNVhvQUJsZBkm2fqKHtwdJ30NnW3DD08F9hLKfE%2Bf03xNn2iUvEw61jo7GCyBDzi6iGDYRqIGkDpu9D8gMCMI6bt5Clj25qU9HVY5bO2Ck59%2BwpZDUl5359AVm6e1XJUeuuVmUhdWYxSmrIUQM5aJCXeyjWzkBWe2DF55D8CVl8tows3bxllYbkh69QwQPe6boLrNfzFgLeDRZo2A0Xwl7ihbQbRSHvzxOSsoFMGigxBrUOytknHZSJgzJ3kPLDVp8FYcjDLqeCMT9OvDAJkiCizE2Y24l8lGw2wxhFPgZTYzCzjtysY0U%2BPOhegim%2Fh71Xw3IHtiAY8hqVIKgsQUUJKklQFQTVsN7iyvq2fsSVLWPvpPsnvVNPdDHYoFu6GIiMbORH5Pl5dn%2F%2BEWJFHLa41%2Bm7vh%2F53Zgxn%2FZCNwlpEPR7SRIFXhDAyhrSnplPujZbJM4jn%2FUbfyGme7BqD0yeBS1fAq0mfd8FvTcJQhdr2eNhOVC0zXQKrmvkxTkUq86GOiIvzk281ZyHYPtXfiLzAjM1clPjU%2FkjwUA9mNzRFdm8oytLvrmVFzKVa3S23LsFLcTZL98Xq5U2%2FPo1O378NpsRM7jzgbDFMs24zAaWfHVVci7MkjZMkG%2Bv249EfLu0966WJivz5dvvLF1PcyOslTprQOWUkOYzMDklF%2F9%2BMn%2B4L5sM0jQwZY203CcnBan3wPJ12PzUv9UERp1q4txBVdYT48enh0pOif%2F0LpTYv%2FLD5JcLb%2BaboHENK%2F5z8RRv2AcYGAe0uI8srTE0NYaqBlVj2PLspMjN%2FpWfO%2FNCrJxJrIyzGSujHh4HbOVhS%2FRFL4oCN%2Bhz140D7vteVzDaCWhEfT%2Fpo7BT8dzC7j8AAAD%2F%2FwEAAP%2F%2F7pUOQ4kEAAA%3D HTTP/1.1
Host: visitorcardinal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=aed4d350-c661-4d54-a858-86f18a5998d7:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecd137022925bcc2a680f8a4476ff94144=[4243976]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 23 Sep 2023 18:25:50 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cee73673656b5879bb442c8200fce917
Strict-Transport-Security: max-age=0; includeSubdomains

unseenreport.com/pxf.gif?uuid=aed4d350-c661-4d54-a858-86f18a5998d7&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=18

192.243.61.225

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=aed4d350-c661-4d54-a858-86f18a5998d7&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=18
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
FingerprintBE:8C:78:D1:BA:58:B8:88:10:09:32:1D:31:7A:D9:4A:09:BF:6C:7A
ValiditySat, 23 Sep 2023 07:33:12 GMT - Fri, 22 Dec 2023 07:33:11 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=aed4d350-c661-4d54-a858-86f18a5998d7&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=18 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 23 Sep 2023 18:25:50 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 19dd5823d37481fa0089d912d52ac54d
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/si/05/c8/20/05c820d9ce67af6dea2e5441dbe3e8f9/1683231080.png

45.133.44.9

200 OK

39 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/05/c8/20/05c820d9ce67af6dea2e5441dbe3e8f9/1683231080.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintAA:0D:43:1A:D3:E4:C6:42:86:E6:B6:6B:B0:1E:22:41:C9:F8:8C:A9
ValidityThu, 27 Jul 2023 23:07:11 GMT - Wed, 25 Oct 2023 23:07:10 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
39 kB (39220 bytes)
Hash
6451b63b68b5068db02571051f6f6a30
32badef5d69090b4d2ea7b300bb5264938e198ef
b1b0a314a2d4924b2849fec48b7863ccc68413e58330d99f6ad901bfa6282819

HTTP Headers

GET /si/05/c8/20/05c820d9ce67af6dea2e5441dbe3e8f9/1683231080.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:51 GMT
content-type: image/png
content-length: 39220
server: nginx/1.21.6
last-modified: Thu, 04 May 2023 20:11:29 GMT
etag: "64541171-9934"
expires: Mon, 25 Sep 2023 18:25:51 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/b3/dd/fd/b3ddfd7cf6f212b3bce3129fb7a007fc/1683231156.png

45.133.44.9

200 OK

65 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/b3/dd/fd/b3ddfd7cf6f212b3bce3129fb7a007fc/1683231156.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintAA:0D:43:1A:D3:E4:C6:42:86:E6:B6:6B:B0:1E:22:41:C9:F8:8C:A9
ValidityThu, 27 Jul 2023 23:07:11 GMT - Wed, 25 Oct 2023 23:07:10 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
65 kB (64601 bytes)
Hash
887812a53b8ea2dbad33f6ae105b8c2d
f83d97ef46827200fa62093ed09b4b6fa25b26d8
9443edf293511b0732211234002c799508a2bfc63a3e28a57d7b12ee30f277e9

HTTP Headers

GET /si/b3/dd/fd/b3ddfd7cf6f212b3bce3129fb7a007fc/1683231156.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:51 GMT
content-type: image/png
content-length: 64601
server: nginx/1.21.6
last-modified: Thu, 04 May 2023 20:12:45 GMT
etag: "645411bd-fc59"
expires: Mon, 25 Sep 2023 18:25:51 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

139.45.197.237

200 OK

5.2 kB

URL GET HTTP/2
eehuzaih.com/500/5005565?excludes=&oaid=3956c693bf8748e9b0d2cde7acd9d72c&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
139.45.197.237:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjecteehuzaih.com
Fingerprint8D:ED:92:10:5B:67:C8:5F:CE:1E:52:5E:08:F3:95:06:27:8D:7D:FB
ValiditySun, 27 Aug 2023 04:27:50 GMT - Sat, 25 Nov 2023 04:27:49 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
5.2 kB (5229 bytes)
Hash
19c9c8a7fe097a953ac2b7b6be2ae5e2
898457524d5c1c33048b289bdf7723cfaaecc76c
73e6c46d640fbd30b036aed149decfe7709a2b8201dc66e7ebf45feaa65aa810

HTTP Headers

GET /500/5005565?excludes=&oaid=3956c693bf8748e9b0d2cde7acd9d72c&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: OAID=7f25d0faf8264e20b518c6976d820546
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:49 GMT
content-type: application/javascript
x-trace-id: ea0de6662285b59e25cc2daf1d681877
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://www.vugla.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=3956c693bf8748e9b0d2cde7acd9d72c; expires=Sun, 22 Sep 2024 18:25:49 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 10:05:24 GMT
expires: Sat, 21 Sep 2024 10:05:24 GMT
cache-control: public, max-age=31536000
age: 116427
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

visitorcardinal.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fdating%2Fdefault%2Fus%2Fdesk-all%2Fcss%2Fstyle.css&l=5788&fd=393

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
visitorcardinal.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fdating%2Fdefault%2Fus%2Fdesk-all%2Fcss%2Fstyle.css&l=5788&fd=393
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvisitorcardinal.com
FingerprintB3:4F:99:74:63:73:27:1B:99:99:A2:19:3E:B4:E0:A0:EA:5C:03:D0
ValidityMon, 18 Sep 2023 15:38:06 GMT - Sun, 17 Dec 2023 15:38:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fdating%2Fdefault%2Fus%2Fdesk-all%2Fcss%2Fstyle.css&l=5788&fd=393 HTTP/1.1
Host: visitorcardinal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=aed4d350-c661-4d54-a858-86f18a5998d7:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecd137022925bcc2a680f8a4476ff94144=[4243976]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 23 Sep 2023 18:25:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 04:50:55 GMT
expires: Fri, 20 Sep 2024 04:50:55 GMT
cache-control: public, max-age=31536000
age: 221696
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

tharbadir.com/9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=3956c693bf8748e9b0d2cde7acd9d72c

139.45.197.238

204 No Content

2.7 kB

URL OPTIONS HTTP/2
tharbadir.com/9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=3956c693bf8748e9b0d2cde7acd9d72c
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
2.7 kB (2672 bytes)
Hash
84a9e952c7dcb18f5713b97f361f7a53
11876243054b07481f72ab50787039eee8281af4
bf083f9dc0623047be1ebf2744ff25c0e30a151f6b042a4097b82340ec866c97

HTTP Headers

POST /9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=3956c693bf8748e9b0d2cde7acd9d72c HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 105
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=d2448eb807f84aafbefae0527ceba4c7; oaidts=1695493548
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:49 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 1bef7bd18e020629d8a298636a5ef614
access-control-expose-headers: X-Sc
set-cookie: OAID=3956c693bf8748e9b0d2cde7acd9d72c; expires=Sun, 22 Sep 2024 18:25:49 GMT; secure; SameSite=None
oaidts=1695493548; expires=Sun, 22 Sep 2024 18:25:49 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

visitorcardinal.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fdating%2Fdefault%2Fus%2Fdesk-all%2Fjs%2Fscript.js&l=386&fd=391

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
visitorcardinal.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fdating%2Fdefault%2Fus%2Fdesk-all%2Fjs%2Fscript.js&l=386&fd=391
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvisitorcardinal.com
FingerprintB3:4F:99:74:63:73:27:1B:99:99:A2:19:3E:B4:E0:A0:EA:5C:03:D0
ValidityMon, 18 Sep 2023 15:38:06 GMT - Sun, 17 Dec 2023 15:38:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fdating%2Fdefault%2Fus%2Fdesk-all%2Fjs%2Fscript.js&l=386&fd=391 HTTP/1.1
Host: visitorcardinal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=aed4d350-c661-4d54-a858-86f18a5998d7:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecd137022925bcc2a680f8a4476ff94144=[4243976]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 23 Sep 2023 18:25:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

interstitial-08.com/?l=Ks37wDcsh9ZUgKV&cd_meta_crid=55809&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D2628323539%26z%3D2892323%26b%3D18698481%26c%3D7298598%26var%3D%26varid%3D0%26d%3Dhttps%253A%252F%252Fexolix.com%252F%253Futm_source%253Dpropeller%2526utm_medium%253Dcpc%2526utm_campaign%253Daugust2023_banner%26cln%3D1%26btp%3D7%26rb%3DZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D12747fa5-104d-43b1-9533-6821d5858341%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Ftag%252Fferalpisalo-pisa-golovi%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D3%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0

139.45.197.151

200 OK

6.7 kB

URL GET HTTP/2
interstitial-08.com/?l=Ks37wDcsh9ZUgKV&cd_meta_crid=55809&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D2628323539%26z%3D2892323%26b%3D18698481%26c%3D7298598%26var%3D%26varid%3D0%26d%3Dhttps%253A%252F%252Fexolix.com%252F%253Futm_source%253Dpropeller%2526utm_medium%253Dcpc%2526utm_campaign%253Daugust2023_banner%26cln%3D1%26btp%3D7%26rb%3DZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D12747fa5-104d-43b1-9533-6821d5858341%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Ftag%252Fferalpisalo-pisa-golovi%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D3%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP
139.45.197.151:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectinterstitial-08.com
Fingerprint89:0A:25:3E:74:93:82:46:D6:24:9C:BA:62:C4:6D:5B:DE:77:74:66
ValidityTue, 25 Jul 2023 05:15:09 GMT - Mon, 23 Oct 2023 05:15:08 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4212), with CRLF, LF line terminators
Size
6.7 kB (6734 bytes)
Hash
1860439902266fad09f0818ef8963c88
513ad1fb682f60666f3385e8f9b10c77d5f0afa2
7e1d9ddce6f00213c865b87d660bdb9dccab2e5384aed055a5a4db154917b71e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?l=Ks37wDcsh9ZUgKV&cd_meta_crid=55809&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D2628323539%26z%3D2892323%26b%3D18698481%26c%3D7298598%26var%3D%26varid%3D0%26d%3Dhttps%253A%252F%252Fexolix.com%252F%253Futm_source%253Dpropeller%2526utm_medium%253Dcpc%2526utm_campaign%253Daugust2023_banner%26cln%3D1%26btp%3D7%26rb%3DZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D12747fa5-104d-43b1-9533-6821d5858341%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Ftag%252Fferalpisalo-pisa-golovi%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D3%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interstitial-08.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
set-cookie: reverse=b8NI2RanoTLcbcLSWkReXGRUGn3S28iCM5nQL2r5bHI; expires=Sat, 23-Sep-2023 19:25:50 GMT; Max-Age=3600; path=/
OAID=c78d1b117340e6509c2992dc47754b25; expires=Thu, 16-Jun-2078 12:51:40 GMT; Max-Age=1727115950; path=/
oaidts=1695493550; expires=Thu, 16-Jun-2078 12:51:40 GMT; Max-Age=1727115950; path=/
syncedCookie=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: br
X-Firefox-Spdy: h2

visitorcardinal.com/pixel/sbs?c=1

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
visitorcardinal.com/pixel/sbs?c=1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvisitorcardinal.com
FingerprintB3:4F:99:74:63:73:27:1B:99:99:A2:19:3E:B4:E0:A0:EA:5C:03:D0
ValidityMon, 18 Sep 2023 15:38:06 GMT - Sun, 17 Dec 2023 15:38:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: visitorcardinal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=aed4d350-c661-4d54-a858-86f18a5998d7:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecd137022925bcc2a680f8a4476ff94144=[4243976]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 23 Sep 2023 18:25:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

eehuzaih.com/impression/bwU7rjSrFRdClv0J6M8SboVQ6hgk3VV61TLhoHeAYzZu3QpqkVBaEWyjzNLQ5jex-yrYoIrwnHw5btzsNLub-YdKNpZTLapwTPOPKAX2OAL2PCn74pokmcr8tmbJPfdHaAdhUuCzVFy0sjJYCHF7C-_oMNSyhDZfabTg0NBGl9yzWMS67kgbILHtjHUhyyTrUU_5MpcbzVkf8WVWmRv6f5lRUaCllEFFuto65SSzmq239NfcRKBH2vWWTOZ5LHmy25iO16NdcUmBhzbAFt_aKFZkNzlXKHiw86g0fPqhanidroAfoZVPo_8Qx8FJQ6gmFKjdT_q_7EFXkgQ6Bp04vZDWKwZ4aLn4z10_u5F23CS1iY7wYjFVQuF3mlGEOiAXHgnCWGoQfmQY5xm2BmxqhqOolVVxWEy5X9sr7k8g5LgDcQBJBjaR5ezkftZZIh3EzfLCjMZXDZYXB-enQh1DzCQCeDsA0wooyc91w28spss7iGskP6BT0_ZIAqgbdWVoKgJzXjxKdVgepDqodf9dTqB7rwFxBj2plY0LXbsUtVJPGPFORnR3WNHStFwns8SNiN5kHFDw4cHYbnm4lh9MLJ2vlecfNL_7AKtQbgCmuXP_qI1koEL7XgNiqAq6TgJsCqHNuw==?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0

139.45.197.237

200 OK

43 B

URL GET HTTP/2
eehuzaih.com/impression/bwU7rjSrFRdClv0J6M8SboVQ6hgk3VV61TLhoHeAYzZu3QpqkVBaEWyjzNLQ5jex-yrYoIrwnHw5btzsNLub-YdKNpZTLapwTPOPKAX2OAL2PCn74pokmcr8tmbJPfdHaAdhUuCzVFy0sjJYCHF7C-_oMNSyhDZfabTg0NBGl9yzWMS67kgbILHtjHUhyyTrUU_5MpcbzVkf8WVWmRv6f5lRUaCllEFFuto65SSzmq239NfcRKBH2vWWTOZ5LHmy25iO16NdcUmBhzbAFt_aKFZkNzlXKHiw86g0fPqhanidroAfoZVPo_8Qx8FJQ6gmFKjdT_q_7EFXkgQ6Bp04vZDWKwZ4aLn4z10_u5F23CS1iY7wYjFVQuF3mlGEOiAXHgnCWGoQfmQY5xm2BmxqhqOolVVxWEy5X9sr7k8g5LgDcQBJBjaR5ezkftZZIh3EzfLCjMZXDZYXB-enQh1DzCQCeDsA0wooyc91w28spss7iGskP6BT0_ZIAqgbdWVoKgJzXjxKdVgepDqodf9dTqB7rwFxBj2plY0LXbsUtVJPGPFORnR3WNHStFwns8SNiN5kHFDw4cHYbnm4lh9MLJ2vlecfNL_7AKtQbgCmuXP_qI1koEL7XgNiqAq6TgJsCqHNuw==?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
139.45.197.237:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjecteehuzaih.com
Fingerprint8D:ED:92:10:5B:67:C8:5F:CE:1E:52:5E:08:F3:95:06:27:8D:7D:FB
ValiditySun, 27 Aug 2023 04:27:50 GMT - Sat, 25 Nov 2023 04:27:49 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /impression/bwU7rjSrFRdClv0J6M8SboVQ6hgk3VV61TLhoHeAYzZu3QpqkVBaEWyjzNLQ5jex-yrYoIrwnHw5btzsNLub-YdKNpZTLapwTPOPKAX2OAL2PCn74pokmcr8tmbJPfdHaAdhUuCzVFy0sjJYCHF7C-_oMNSyhDZfabTg0NBGl9yzWMS67kgbILHtjHUhyyTrUU_5MpcbzVkf8WVWmRv6f5lRUaCllEFFuto65SSzmq239NfcRKBH2vWWTOZ5LHmy25iO16NdcUmBhzbAFt_aKFZkNzlXKHiw86g0fPqhanidroAfoZVPo_8Qx8FJQ6gmFKjdT_q_7EFXkgQ6Bp04vZDWKwZ4aLn4z10_u5F23CS1iY7wYjFVQuF3mlGEOiAXHgnCWGoQfmQY5xm2BmxqhqOolVVxWEy5X9sr7k8g5LgDcQBJBjaR5ezkftZZIh3EzfLCjMZXDZYXB-enQh1DzCQCeDsA0wooyc91w28spss7iGskP6BT0_ZIAqgbdWVoKgJzXjxKdVgepDqodf9dTqB7rwFxBj2plY0LXbsUtVJPGPFORnR3WNHStFwns8SNiN5kHFDw4cHYbnm4lh9MLJ2vlecfNL_7AKtQbgCmuXP_qI1koEL7XgNiqAq6TgJsCqHNuw==?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: OAID=3956c693bf8748e9b0d2cde7acd9d72c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:54 GMT
content-type: image/gif
content-length: 43
x-trace-id: f012470f584d43b53b5952947530060c
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700

142.250.74.106

94 kB

URL
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
94 kB (94119 bytes)
Hash
b0e68d13caedc516e4e7b7a9e1cc9b1b
85025dc986197fa1b7c8d15187925779615571cb
ae0c953129217f8e1a6cf8b738bea1d258fa23478d152ecca3b46d096a1420c4

HTTP Headers

GET /css2?family=Roboto:wght@100;300;400;500;700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 23 Sep 2023 18:25:54 GMT
date: Sat, 23 Sep 2023 18:25:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

offerimage.com/www/images/3cc187c3294f050cb0f2632e70e60563.png

104.22.33.172

200 OK

93 kB

URL GET HTTP/2
offerimage.com/www/images/3cc187c3294f050cb0f2632e70e60563.png
IP
104.22.33.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
93 kB (93324 bytes)
Hash
3cc187c3294f050cb0f2632e70e60563
3f827edd982ebb762f5aa277031e479b915ec3ca
b19c84a72b1d44fb0226991b96e3ad276549cb40af572411320212828d77a498

HTTP Headers

GET /www/images/3cc187c3294f050cb0f2632e70e60563.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:54 GMT
content-type: image/png
content-length: 93324
last-modified: Thu, 10 Dec 2020 17:25:26 GMT
etag: "5fd25a06-16c8c"
expires: Sun, 24 Sep 2023 08:41:27 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 35067
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4d53d9af4991b-ARN
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 10:05:24 GMT
expires: Sat, 21 Sep 2024 10:05:24 GMT
cache-control: public, max-age=31536000
age: 116430
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 04:50:55 GMT
expires: Fri, 20 Sep 2024 04:50:55 GMT
cache-control: public, max-age=31536000
age: 221699
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 10:05:24 GMT
expires: Sat, 21 Sep 2024 10:05:24 GMT
cache-control: public, max-age=31536000
age: 116430
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 04:50:55 GMT
expires: Fri, 20 Sep 2024 04:50:55 GMT
cache-control: public, max-age=31536000
age: 221699
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

tharbadir.com/11?rnd=894998106&z=2892323&b=18698481&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=ZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA==&ruid=12747fa5-104d-43b1-9533-6821d5858341&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1

139.45.197.238

200 OK

0 B

URL GET HTTP/2
tharbadir.com/11?rnd=894998106&z=2892323&b=18698481&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=ZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA==&ruid=12747fa5-104d-43b1-9533-6821d5858341&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /11?rnd=894998106&z=2892323&b=18698481&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=ZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA==&ruid=12747fa5-104d-43b1-9533-6821d5858341&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=3956c693bf8748e9b0d2cde7acd9d72c; oaidts=1695493548
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:55 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: e199ec0a620a47615d06aa31854245c1
access-control-expose-headers: X-Sc
set-cookie: OAID=3956c693bf8748e9b0d2cde7acd9d72c; expires=Sun, 22 Sep 2024 18:25:55 GMT; secure; SameSite=None
oaidts=1695493548; expires=Sun, 22 Sep 2024 18:25:55 GMT; secure; SameSite=None
oaidvc=1; expires=Sun, 22 Sep 2024 18:25:55 GMT; secure; SameSite=None
CNT=1_v1_8VAdAQEAAACnTAAA; expires=Sat, 23 Sep 2023 19:25:55 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/js/script.js

172.64.102.10

200 OK

142 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/js/script.js
IP
172.64.102.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint48:B7:50:3B:95:5B:52:CB:74:D5:D6:39:E2:DD:12:9D:05:51:D6:87
ValidityWed, 23 Aug 2023 16:10:20 GMT - Tue, 21 Nov 2023 16:10:19 GMT

File type
ASCII text
Size
142 kB (142078 bytes)
Hash
5ca8c1679ba9453cfa512e01d6fec9c5
45628341eb20e4acee5e812d3b2dfc8f23962daf
520a0196a18cbe656f7382a02ec828125e68bdac511b9ebe2bf27f31e262d037

HTTP Headers

GET /sb/notifications/dating/default/us/desk-all/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:51 GMT
content-type: application/javascript
last-modified: Tue, 14 Apr 2020 14:09:27 GMT
etag: W/"5e95c417-182"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A8zcDvVMXNTfjSt6UO2ZIkWvyKac6CwS5Qw8MvqEMJUHwiyezwh0zEDRiIrBsVCslAdGk2Q70tLeDyvfoCT%2FWUI2SDJkRnB8OwOgoQ4JJIEn%2BW%2B7bpbA6kOkhSADs%2B9GtAxNkn45f9%2Fu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4d5264dde4177-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

glimtors.net/custom

139.45.197.251

200 OK

39 B

URL POST HTTP/2
glimtors.net/custom
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
Fingerprint16:2D:47:69:3C:36:FE:B1:A3:A3:A5:57:73:5B:D0:FD:74:26:13:8F
ValiditySat, 02 Sep 2023 05:36:03 GMT - Fri, 01 Dec 2023 05:36:02 GMT

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 388
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:55 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: fee3ebcf100a6a011c8506b4388116f1
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

445 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#15169 GOOGLE

File type
XML 1.0 document text\012- XML document, ASCII text, with very long lines (332)
Size
445 B (445 bytes)
Hash
d39546249a86d29697ea6b389afd84f2
244ce5f2d9a3e80da843e527f35cae0b9d9e20be
ba339c9812783530a739e05b9bc0ec254d9c22eb13779e8e5be5860a192f8c80

HTTP Headers

GET /update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: 17805
rule-data-version: 1
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2023-10-29-15-54-13.chain; p384ecdsa=1ZbvGNOV768ZU9ONNmif5hG77d200rkKKNkMx0oBh0jpi9nLR9EC-pyj8LLSJPTqLtYgZptFKFGny1GNLkWVgG-XEL_iYDTzBqOh__D-dvZYxFnlqCZVjZUfwh3ctfV5
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Sat, 23 Sep 2023 18:24:20 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 445
age: 103
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

glimtors.net/pfe/current/universal.min.js?v=3.1.460

139.45.197.251

200 OK

88 kB

URL GET HTTP/2
glimtors.net/pfe/current/universal.min.js?v=3.1.460
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
Fingerprint16:2D:47:69:3C:36:FE:B1:A3:A3:A5:57:73:5B:D0:FD:74:26:13:8F
ValiditySat, 02 Sep 2023 05:36:03 GMT - Fri, 01 Dec 2023 05:36:02 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
88 kB (87463 bytes)
Hash
0f22080b3f88f2f09bbabbcb8e9550c4
191596e48cd208528643ab0530ce3b2cb3f68fae
5d1d95a226026f763d0d086ef23b7cdc09e9dd0c68df56d6d638b0474a64e1e0

HTTP Headers

GET /pfe/current/universal.min.js?v=3.1.460 HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:49 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 12:11:16 GMT
etag: W/"65083e64-155a7"
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_main.css

192.185.106.252

200 OK

85 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_main.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
ASCII text, with very long lines (6104), with CRLF line terminators
Size
85 kB (84670 bytes)
Hash
1d85fc3a503a0f77b0f029ad44e4ddd4
5b1212871267b4eba6f2d0628ce678890cefbd8e
df3db153ea5d4b5fdd494569edaa7513e12c7520282d6926628bee4e93c18187

HTTP Headers

GET /wp-content/themes/vugla/css/style_main.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=5.1.16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 23 May 2014 15:19:09 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: text/css
date: Sat, 23 Sep 2023 18:25:47 GMT
server: Apache
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/css/animate.css

172.64.102.10

200 OK

79 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/css/animate.css
IP
172.64.102.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint48:B7:50:3B:95:5B:52:CB:74:D5:D6:39:E2:DD:12:9D:05:51:D6:87
ValidityWed, 23 Aug 2023 16:10:20 GMT - Tue, 21 Nov 2023 16:10:19 GMT

File type
ASCII text
Size
79 kB (79245 bytes)
Hash
80047eaa13ebd50c50e8a9753621e430
9c503e07d130572a0eaf51f7c02cbd4cf6213fe3
3f831a59615f8d5d40b4340b2836f91438c876f8dbce75f78e38360d6fe0f429

HTTP Headers

GET /sb/notifications/dating/default/us/desk-all/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:51 GMT
content-type: text/css
last-modified: Tue, 14 Apr 2020 14:09:21 GMT
etag: W/"5e95c411-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7mpsRXmaZj9%2BavwoZqgxysaG1KGn%2B8nA%2BwVMspHbugqMnd0VM0HESgvbhrwfRdvsvis7VnCUIyaxPe87bwsdONWV3xUuDJnUcIG4ZqVT4pWacWpr88KHc%2FiQRx%2BsHJjRXmAnUJpsxs1x"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4d5264dc04177-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dubzenom.com/5/1316441

139.45.197.245

200 OK

70 kB

URL GET HTTP/2
dubzenom.com/5/1316441
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectdubzenom.com
FingerprintB4:A2:7A:7C:28:7D:21:81:28:0D:43:28:55:83:62:AB:A7:E8:B5:4B
ValidityTue, 05 Sep 2023 14:16:13 GMT - Mon, 04 Dec 2023 14:16:12 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
70 kB (70243 bytes)
Hash
22f60b970408c2229e53b66902db547f
f15392c0d44ab18bf761914f02a6f9dbb1076a36
851550675df9a9f63f08adee9eb3f6d5969c2079de1f0bbc119f8b4cf0c547de

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/1316441 HTTP/1.1
Host: dubzenom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:48 GMT
content-type: application/javascript
x-trace-id: fed3957d6082cc13d24421e1700dfee2
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=3956c693bf8748e9b0d2cde7acd9d72c; expires=Sun, 22 Sep 2024 18:25:48 GMT; path=/; secure; SameSite=None
oaidts=1695493548; expires=Sun, 22 Sep 2024 18:25:48 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.barscreative1.com/sb/au/24/54/4e/24544ed07f7394384bbb75023b9b0b3a/1591713925.html

45.133.44.4

200 OK

1.3 kB

URL GET HTTP/2
cdn.barscreative1.com/sb/au/24/54/4e/24544ed07f7394384bbb75023b9b0b3a/1591713925.html
IP
45.133.44.4:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectcdn.barscreative1.com
FingerprintCB:0F:87:85:B0:83:8B:5C:86:E5:81:91:9D:F5:ED:C4:A2:B6:B1:BE
ValidityTue, 12 Sep 2023 01:01:21 GMT - Mon, 11 Dec 2023 01:01:20 GMT

File type
HTML document text\012- HTML document, ASCII text, with very long lines (1388), with no line terminators
Size
1.3 kB (1274 bytes)
Hash
1e11fba825d4244ebfc11b9784c9744f
86f24edfd397e9f4d65e589ceb97196b71d2d828
7737a119c12f495c4f32f75686c087c59387d5f851ec8c5443a385dda8c5df76

HTTP Headers

GET /sb/au/24/54/4e/24544ed07f7394384bbb75023b9b0b3a/1591713925.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Sat, 07 May 2022 03:21:27 GMT
etag: W/"6275e5b7-4fa"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Sat, 23 Sep 2023 19:25:50 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

dubzenom.com/?rb=n0_bCXlgm7XPROrpcBuMBRvsdaz0yBtoE4FHi7ZX7iAiC-CLK6BOGul3mC-5w6QPR5WTGoDgp6z-_w0nORrGWxKJtFA2xkgkeL4zBKeKAvXVAH21bUzjyYJ68twuxS0HhwP8-EKt_oK4BEjza2y11nTXmW2tYxmKv7WQuvsB22AovSNzvc8Os0DGl89xqGGcCehwMlYrV5-IcgITOOJBGH8MyaI%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=ac436675-df21-43bc-b3aa-d9a9ee3c102a&userId=3956c693bf8748e9b0d2cde7acd9d72c&m=link

139.45.197.245

200 OK

2.4 kB

URL GET HTTP/2
dubzenom.com/?rb=n0_bCXlgm7XPROrpcBuMBRvsdaz0yBtoE4FHi7ZX7iAiC-CLK6BOGul3mC-5w6QPR5WTGoDgp6z-_w0nORrGWxKJtFA2xkgkeL4zBKeKAvXVAH21bUzjyYJ68twuxS0HhwP8-EKt_oK4BEjza2y11nTXmW2tYxmKv7WQuvsB22AovSNzvc8Os0DGl89xqGGcCehwMlYrV5-IcgITOOJBGH8MyaI%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=ac436675-df21-43bc-b3aa-d9a9ee3c102a&userId=3956c693bf8748e9b0d2cde7acd9d72c&m=link
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectdubzenom.com
FingerprintB4:A2:7A:7C:28:7D:21:81:28:0D:43:28:55:83:62:AB:A7:E8:B5:4B
ValidityTue, 05 Sep 2023 14:16:13 GMT - Mon, 04 Dec 2023 14:16:12 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2459), with no line terminators
Size
2.4 kB (2430 bytes)
Hash
4463441e0ff3f39e00aa40dd99579bf5
07fa6bbe4ae0f3e789bdc2945fd0462e02c938fa
ae9696c136e23a42ec08cce934dcd1f2a5d60441bc073c0d9730139286249a19

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=n0_bCXlgm7XPROrpcBuMBRvsdaz0yBtoE4FHi7ZX7iAiC-CLK6BOGul3mC-5w6QPR5WTGoDgp6z-_w0nORrGWxKJtFA2xkgkeL4zBKeKAvXVAH21bUzjyYJ68twuxS0HhwP8-EKt_oK4BEjza2y11nTXmW2tYxmKv7WQuvsB22AovSNzvc8Os0DGl89xqGGcCehwMlYrV5-IcgITOOJBGH8MyaI%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fferalpisalo-pisa-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=ac436675-df21-43bc-b3aa-d9a9ee3c102a&userId=3956c693bf8748e9b0d2cde7acd9d72c&m=link HTTP/1.1
Host: dubzenom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Cookie: OAID=3956c693bf8748e9b0d2cde7acd9d72c; oaidts=1695493548
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: application/json
x-trace-id: d8d848cdec58c3e1a9b828b4a892eeb4
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=3956c693bf8748e9b0d2cde7acd9d72c; expires=Sun, 22 Sep 2024 18:25:49 GMT; path=/; secure; SameSite=None
oaidts=1695493549; expires=Sun, 22 Sep 2024 18:25:49 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sat, 30 Sep 2023 18:25:49 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

faintsuperintend.com/ren.gif?sid=H4sIAAAAAAAC%2F1SSP2wcxRfHZ2NLv5%2BSAhHR0KCTaECC8%2B7e3j9SBEwwsnDi%2FAFBh2Zn5s6DZ3eWmd3bsyuLCJTyEBVU6%2B%2FZsQJORDoaEFqnQZaQfJ0LXESiIhURERVCe7E4eNK%2BP%2Fu%2Bxee9N59tZyfERUaPly7rTakUXWjW3dpLH3jehdqKjLNhbdhpfdgKLtTM4DXP7dbdl2tvC7auF3zXc13P9WpL0oieHi54nld3IZP9rlfvuvXAr3vNAEPz39pmDix1wAcn5Dwkn5zdvxdAshJx9O0lYddTnbzyVpQpmmqDAd97L16PdR4jmqU946AX752qoe3R0g%2FQ8e4UGHrwjzCUE%2BL8%2BhBhvHdKiXCw%2BxQ0VBAxQn4O%2BaCEUCUkLcH0TUh%2BRADGcWUVcXT7ijY53XjapVV3QuafPIbMJ2T%2Bl%2BcQR%2FcWlRzWbmiVpVLHFsNeATksIfslkuwA6eYZyPwALP0Ekv9MFp6sII52Vq3SkLyYDi9lCdkrocQI1DrIqk86yHoOssRBxI9rbRZ0OrzT5FQw5oc9r9MLekGXMrfH3EbXR8YqvBHSZASmRmBmC4nZwrr8%2FKh5Hib7EXatgOUObDohzrUtDHiBXBDkliCnBLkkyFOCfFDscmV9W9zmymahdxr909goxjrtb9NdnfZFTLaTE%2FLsdDV%2FPvwf1sVxjXU9v%2BG12tRvtFq80XIZD3jH5ZT7lDWaHVhZQNoz02k3qzvh%2F0iqePkRQnoAqw7A5Bxo5oHm47bvgq6Ng46LzfjOIOsrWmc6AtcFknQe6YazrU7I81OI1x%2F8DsEOL97%2F7dMXvrv2CMwUSEyBj%2BQDgr66Nb6uc7JzXeeW3F9NUhnJTVrd7kZKUzH39TtiI9eGL1%2ByoztvsKpRpfvvCpuu0JjLuG%2FJN4uSc2GWtGGCfL9s3xfh1cyuLWYmzpKVq28uLUeJEdZKHZegckJI%2BTGYnJBzfyXTd%2FmivQtpSpisQJQdklOD1CVYsgWbzPitJjBqpgkTB3lWjI0fzn4qSaDErKZhAfuvOpzl2%2FYW%2BmYONL2JOCowMAUGqgBVI9js7DhNzOHFn76s7CuEam4cKjO3Eyqjvpgut3J%2FVO4xrDyuibZodbuBG7S564YB932vKRhtBLRLfb%2FXRmon4plX7%2F4NAAD%2F%2FwEAAP%2F%2F%2FimpaW4EAAA%3D

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
faintsuperintend.com/ren.gif?sid=H4sIAAAAAAAC%2F1SSP2wcxRfHZ2NLv5%2BSAhHR0KCTaECC8%2B7e3j9SBEwwsnDi%2FAFBh2Zn5s6DZ3eWmd3bsyuLCJTyEBVU6%2B%2FZsQJORDoaEFqnQZaQfJ0LXESiIhURERVCe7E4eNK%2BP%2Fu%2Bxee9N59tZyfERUaPly7rTakUXWjW3dpLH3jehdqKjLNhbdhpfdgKLtTM4DXP7dbdl2tvC7auF3zXc13P9WpL0oieHi54nld3IZP9rlfvuvXAr3vNAEPz39pmDix1wAcn5Dwkn5zdvxdAshJx9O0lYddTnbzyVpQpmmqDAd97L16PdR4jmqU946AX752qoe3R0g%2FQ8e4UGHrwjzCUE%2BL8%2BhBhvHdKiXCw%2BxQ0VBAxQn4O%2BaCEUCUkLcH0TUh%2BRADGcWUVcXT7ijY53XjapVV3QuafPIbMJ2T%2Bl%2BcQR%2FcWlRzWbmiVpVLHFsNeATksIfslkuwA6eYZyPwALP0Ekv9MFp6sII52Vq3SkLyYDi9lCdkrocQI1DrIqk86yHoOssRBxI9rbRZ0OrzT5FQw5oc9r9MLekGXMrfH3EbXR8YqvBHSZASmRmBmC4nZwrr8%2FKh5Hib7EXatgOUObDohzrUtDHiBXBDkliCnBLkkyFOCfFDscmV9W9zmymahdxr909goxjrtb9NdnfZFTLaTE%2FLsdDV%2FPvwf1sVxjXU9v%2BG12tRvtFq80XIZD3jH5ZT7lDWaHVhZQNoz02k3qzvh%2F0iqePkRQnoAqw7A5Bxo5oHm47bvgq6Ng46LzfjOIOsrWmc6AtcFknQe6YazrU7I81OI1x%2F8DsEOL97%2F7dMXvrv2CMwUSEyBj%2BQDgr66Nb6uc7JzXeeW3F9NUhnJTVrd7kZKUzH39TtiI9eGL1%2ByoztvsKpRpfvvCpuu0JjLuG%2FJN4uSc2GWtGGCfL9s3xfh1cyuLWYmzpKVq28uLUeJEdZKHZegckJI%2BTGYnJBzfyXTd%2FmivQtpSpisQJQdklOD1CVYsgWbzPitJjBqpgkTB3lWjI0fzn4qSaDErKZhAfuvOpzl2%2FYW%2BmYONL2JOCowMAUGqgBVI9js7DhNzOHFn76s7CuEam4cKjO3Eyqjvpgut3J%2FVO4xrDyuibZodbuBG7S564YB932vKRhtBLRLfb%2FXRmon4plX7%2F4NAAD%2F%2FwEAAP%2F%2F%2FimpaW4EAAA%3D
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectfaintsuperintend.com
Fingerprint51:B2:E1:2A:6D:EC:B8:67:D6:6D:AE:CF:3D:C7:14:85:FA:1F:2A:48
ValidityTue, 19 Sep 2023 06:31:45 GMT - Mon, 18 Dec 2023 06:31:44 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1SSP2wcxRfHZ2NLv5%2BSAhHR0KCTaECC8%2B7e3j9SBEwwsnDi%2FAFBh2Zn5s6DZ3eWmd3bsyuLCJTyEBVU6%2B%2FZsQJORDoaEFqnQZaQfJ0LXESiIhURERVCe7E4eNK%2BP%2Fu%2Bxee9N59tZyfERUaPly7rTakUXWjW3dpLH3jehdqKjLNhbdhpfdgKLtTM4DXP7dbdl2tvC7auF3zXc13P9WpL0oieHi54nld3IZP9rlfvuvXAr3vNAEPz39pmDix1wAcn5Dwkn5zdvxdAshJx9O0lYddTnbzyVpQpmmqDAd97L16PdR4jmqU946AX752qoe3R0g%2FQ8e4UGHrwjzCUE%2BL8%2BhBhvHdKiXCw%2BxQ0VBAxQn4O%2BaCEUCUkLcH0TUh%2BRADGcWUVcXT7ijY53XjapVV3QuafPIbMJ2T%2Bl%2BcQR%2FcWlRzWbmiVpVLHFsNeATksIfslkuwA6eYZyPwALP0Ekv9MFp6sII52Vq3SkLyYDi9lCdkrocQI1DrIqk86yHoOssRBxI9rbRZ0OrzT5FQw5oc9r9MLekGXMrfH3EbXR8YqvBHSZASmRmBmC4nZwrr8%2FKh5Hib7EXatgOUObDohzrUtDHiBXBDkliCnBLkkyFOCfFDscmV9W9zmymahdxr909goxjrtb9NdnfZFTLaTE%2FLsdDV%2FPvwf1sVxjXU9v%2BG12tRvtFq80XIZD3jH5ZT7lDWaHVhZQNoz02k3qzvh%2F0iqePkRQnoAqw7A5Bxo5oHm47bvgq6Ng46LzfjOIOsrWmc6AtcFknQe6YazrU7I81OI1x%2F8DsEOL97%2F7dMXvrv2CMwUSEyBj%2BQDgr66Nb6uc7JzXeeW3F9NUhnJTVrd7kZKUzH39TtiI9eGL1%2ByoztvsKpRpfvvCpuu0JjLuG%2FJN4uSc2GWtGGCfL9s3xfh1cyuLWYmzpKVq28uLUeJEdZKHZegckJI%2BTGYnJBzfyXTd%2FmivQtpSpisQJQdklOD1CVYsgWbzPitJjBqpgkTB3lWjI0fzn4qSaDErKZhAfuvOpzl2%2FYW%2BmYONL2JOCowMAUGqgBVI9js7DhNzOHFn76s7CuEam4cKjO3Eyqjvpgut3J%2FVO4xrDyuibZodbuBG7S564YB932vKRhtBLRLfb%2FXRmon4plX7%2F4NAAD%2F%2FwEAAP%2F%2F%2FimpaW4EAAA%3D HTTP/1.1
Host: faintsuperintend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 23 Sep 2023 18:25:49 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 562ebb43c27530fc5d2668a4062dccfe
Strict-Transport-Security: max-age=0; includeSubdomains

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.106

200 OK

6.8 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT

File type
ASCII text, with very long lines (7013), with no line terminators
Size
6.8 kB (6824 bytes)
Hash
49475c425d6c00477bb339179326c49b
bd97deeb753f44f43a21feafa92d98239fa511bd
598841a98ad357d2896d2f093ea3e4e1d44e24b3351268ffd45e61ff8c1d0e09

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 23 Sep 2023 18:25:51 GMT
date: Sat, 23 Sep 2023 18:25:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

s.w.org/images/core/emoji/11.2.0/svg/1f60a.svg

192.0.77.48

200 OK

1.1 kB

URL GET HTTP/2
s.w.org/images/core/emoji/11.2.0/svg/1f60a.svg
IP
192.0.77.48:443
ASN
#2635 AUTOMATTIC

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerSectigo Limited
Subject*.w.org
FingerprintB2:4C:20:97:37:FE:82:F3:56:5E:3B:F9:5C:EA:7F:81:14:89:D7:0E
ValidityTue, 06 Dec 2022 00:00:00 GMT - Sat, 06 Jan 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1083), with no line terminators
Size
1.1 kB (1055 bytes)
Hash
501e929ccd03e664890fe77d64ba1fbc
e931c59e5b4b17cae19deafc800e1dd0dbef0430
0bdf9cf4c8e8cbc4716100ed71677c413f336ea1e8bad99b647ae619ab85c91c

HTTP Headers

GET /images/core/emoji/11.2.0/svg/1f60a.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:50 GMT
content-type: image/svg+xml
last-modified: Fri, 18 Jan 2019 01:27:58 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

glimtors.net/pfe/current/tag.min.js?z=1548391

139.45.197.251

200 OK

13 kB

URL GET HTTP/2
glimtors.net/pfe/current/tag.min.js?z=1548391
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
Fingerprint16:2D:47:69:3C:36:FE:B1:A3:A3:A5:57:73:5B:D0:FD:74:26:13:8F
ValiditySat, 02 Sep 2023 05:36:03 GMT - Fri, 01 Dec 2023 05:36:02 GMT

File type
C source, ASCII text, with very long lines (13266), with no line terminators
Size
13 kB (13266 bytes)
Hash
2ab81df34a2461b2a4885cf8b04ec7a9
7182892392c7320d1c11106f33a1789d08329ac3
e58b4c163cb14f66ced74ce6a9fe37321b148a519af57a516335fc09851b0dcd

HTTP Headers

GET /pfe/current/tag.min.js?z=1548391 HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:48 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 12:11:16 GMT
etag: W/"65083e64-33d2"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/img/close.png

172.64.102.10

200 OK

4.0 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/img/close.png
IP
172.64.102.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint48:B7:50:3B:95:5B:52:CB:74:D5:D6:39:E2:DD:12:9D:05:51:D6:87
ValidityWed, 23 Aug 2023 16:10:20 GMT - Tue, 21 Nov 2023 16:10:19 GMT

File type
PNG image data, 500 x 500, 8-bit gray+alpha, non-interlaced\012- data
Size
4.0 kB (4022 bytes)
Hash
23e9690b0e7ac26868363a6248f44467
d7ad0eae64e0c1e65b12eda0aa9d2b91996dd64f
f362c67320d739ccf3bea21f857b9620075bd20ceacda8c51261b9612fe28395

HTTP Headers

GET /sb/notifications/dating/default/us/desk-all/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:51 GMT
content-type: image/png
content-length: 4022
last-modified: Tue, 14 Apr 2020 14:09:22 GMT
etag: "5e95c412-fb6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 26973268
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IIGwHUAQ7o05lsBRHxFRxlHj3UOwdquGK2d%2FY5VYTYf6x7Qr%2BpoZ48lCJuz1MEdO%2BmrfnLYy5aFJQW8dh0z%2BGSscBGLqR9Zg6%2Fx4OCYiJKbtfYegCHHEVJIP0D5PsjBd1hFt2Jxv7eGq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4d5264dd04177-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

visitorcardinal.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRitTnIIyUEMXjwIA3pQcGe7e7pnegwSjXEluPlBouhNqquqJ%2BVWd7VV3dOze1oMSI6T%2F6D3zW6W6LLoH6Bor7eF4I4H2YN7EARBb4HcBJnZxdUPmu91vVfwvvfVFxvlEXFR0sOlG3pNKkUXw7bbevVjz7vcWpZZOWqNou4n3eByywzf8Nx%2B232t9Z5gK3rRdz3X9VyvtSSNSPRo0fO8tguZ7%2FS9dt9tB37bCwOMzP%2F%2FbenAUgd8eEQuQfLphZ3dAJI1yNKvrwm7Uuj89XfTUtFCGwz59ofZSqarDOkpTIyDJNs%2BUUPbg6XvoLOtuWHo4b%2FCWE6J8%2FtviLPtE5eIh1vHRmMFkSHmF1ENGwjVQNIGTN%2BH5AcEYBw3byFLH93UpqKrxyydsVNy7tlTyGpKzv36ArJ096qSo9ZdrcpC6sxilNSQowZy0CAv91CsnYGs9sCKzyH5E7L4bBlZunnLKg3JD1%2Bhgge8E7oLrNv1FgIeBgs0CqOFqJt4EQ37%2FYj35glJ2UAmDZQYg1oH5eyTDsrEQZk7SPlhq8eCKOJRyKlgzI8TL0qCJOhT5ibM7fR9lGw2wxhFPgZTYzCzjtysY0U%2BPAgvwZTfw96rYbkDWxAMeY1KEFSWoKIElSSoCoJqWG9xZX1bP%2BLKlrF30v2T3qknuhhs0C1dDERGNvIj8vw8uz%2F%2FiLAiDlvc6%2FRc3%2B%2F7YcyYT7uRm0Q0CHrdJOkHXhDAyhrSnplPujZbJM4jn%2FUbfyGme7BqD0yeBS1fAq0mPd8FvTcJIhdr2eNhOVC0zXQKrmvkxTkUq86GOiIvzk281ZyHYPtXfiLzAjM1clPjU%2FkjwUA9mNzRFdm8oytLvrmVFzKVa3S23LsFLcTZL98Xq5U2%2FPo1O378NpsRM7jzgbDFMs24zAaWfHVVci7MkjZMkG%2Bv249EfLu0966WJivz5dvvLF1PcyOslTprQOWUkOYzMDklF%2F9%2BMn%2B4L5sM0jQwZY203CcnBan3wPJ12PzUv9UERp1q4txBVdYT48enh0pOif%2F0LpTYv%2FLD5JcLb%2BaboHENK%2F5z8RRv2AcYGAe0uI8srTE0NYaqBlVj2PLspMjN%2FpWfO%2FNCrJxJrIyzGSujHh4HbOVhizFXUC%2FueUJwEXYYC7osirtJJ%2BiJKOQhCjsVzy3s%2FgMAAP%2F%2FAQAA%2F%2F8RsqZTiQQAAA%3D%3D

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
visitorcardinal.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRitTnIIyUEMXjwIA3pQcGe7e7pnegwSjXEluPlBouhNqquqJ%2BVWd7VV3dOze1oMSI6T%2F6D3zW6W6LLoH6Bor7eF4I4H2YN7EARBb4HcBJnZxdUPmu91vVfwvvfVFxvlEXFR0sOlG3pNKkUXw7bbevVjz7vcWpZZOWqNou4n3eByywzf8Nx%2B232t9Z5gK3rRdz3X9VyvtSSNSPRo0fO8tguZ7%2FS9dt9tB37bCwOMzP%2F%2FbenAUgd8eEQuQfLphZ3dAJI1yNKvrwm7Uuj89XfTUtFCGwz59ofZSqarDOkpTIyDJNs%2BUUPbg6XvoLOtuWHo4b%2FCWE6J8%2FtviLPtE5eIh1vHRmMFkSHmF1ENGwjVQNIGTN%2BH5AcEYBw3byFLH93UpqKrxyydsVNy7tlTyGpKzv36ArJ096qSo9ZdrcpC6sxilNSQowZy0CAv91CsnYGs9sCKzyH5E7L4bBlZunnLKg3JD1%2Bhgge8E7oLrNv1FgIeBgs0CqOFqJt4EQ37%2FYj35glJ2UAmDZQYg1oH5eyTDsrEQZk7SPlhq8eCKOJRyKlgzI8TL0qCJOhT5ibM7fR9lGw2wxhFPgZTYzCzjtysY0U%2BPAgvwZTfw96rYbkDWxAMeY1KEFSWoKIElSSoCoJqWG9xZX1bP%2BLKlrF30v2T3qknuhhs0C1dDERGNvIj8vw8uz%2F%2FiLAiDlvc6%2FRc3%2B%2F7YcyYT7uRm0Q0CHrdJOkHXhDAyhrSnplPujZbJM4jn%2FUbfyGme7BqD0yeBS1fAq0mPd8FvTcJIhdr2eNhOVC0zXQKrmvkxTkUq86GOiIvzk281ZyHYPtXfiLzAjM1clPjU%2FkjwUA9mNzRFdm8oytLvrmVFzKVa3S23LsFLcTZL98Xq5U2%2FPo1O378NpsRM7jzgbDFMs24zAaWfHVVci7MkjZMkG%2Bv249EfLu0966WJivz5dvvLF1PcyOslTprQOWUkOYzMDklF%2F9%2BMn%2B4L5sM0jQwZY203CcnBan3wPJ12PzUv9UERp1q4txBVdYT48enh0pOif%2F0LpTYv%2FLD5JcLb%2BaboHENK%2F5z8RRv2AcYGAe0uI8srTE0NYaqBlVj2PLspMjN%2FpWfO%2FNCrJxJrIyzGSujHh4HbOVhizFXUC%2FueUJwEXYYC7osirtJJ%2BiJKOQhCjsVzy3s%2FgMAAP%2F%2FAQAA%2F%2F8RsqZTiQQAAA%3D%3D
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvisitorcardinal.com
FingerprintB3:4F:99:74:63:73:27:1B:99:99:A2:19:3E:B4:E0:A0:EA:5C:03:D0
ValidityMon, 18 Sep 2023 15:38:06 GMT - Sun, 17 Dec 2023 15:38:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRitTnIIyUEMXjwIA3pQcGe7e7pnegwSjXEluPlBouhNqquqJ%2BVWd7VV3dOze1oMSI6T%2F6D3zW6W6LLoH6Bor7eF4I4H2YN7EARBb4HcBJnZxdUPmu91vVfwvvfVFxvlEXFR0sOlG3pNKkUXw7bbevVjz7vcWpZZOWqNou4n3eByywzf8Nx%2B232t9Z5gK3rRdz3X9VyvtSSNSPRo0fO8tguZ7%2FS9dt9tB37bCwOMzP%2F%2FbenAUgd8eEQuQfLphZ3dAJI1yNKvrwm7Uuj89XfTUtFCGwz59ofZSqarDOkpTIyDJNs%2BUUPbg6XvoLOtuWHo4b%2FCWE6J8%2FtviLPtE5eIh1vHRmMFkSHmF1ENGwjVQNIGTN%2BH5AcEYBw3byFLH93UpqKrxyydsVNy7tlTyGpKzv36ArJ096qSo9ZdrcpC6sxilNSQowZy0CAv91CsnYGs9sCKzyH5E7L4bBlZunnLKg3JD1%2Bhgge8E7oLrNv1FgIeBgs0CqOFqJt4EQ37%2FYj35glJ2UAmDZQYg1oH5eyTDsrEQZk7SPlhq8eCKOJRyKlgzI8TL0qCJOhT5ibM7fR9lGw2wxhFPgZTYzCzjtysY0U%2BPAgvwZTfw96rYbkDWxAMeY1KEFSWoKIElSSoCoJqWG9xZX1bP%2BLKlrF30v2T3qknuhhs0C1dDERGNvIj8vw8uz%2F%2FiLAiDlvc6%2FRc3%2B%2F7YcyYT7uRm0Q0CHrdJOkHXhDAyhrSnplPujZbJM4jn%2FUbfyGme7BqD0yeBS1fAq0mPd8FvTcJIhdr2eNhOVC0zXQKrmvkxTkUq86GOiIvzk281ZyHYPtXfiLzAjM1clPjU%2FkjwUA9mNzRFdm8oytLvrmVFzKVa3S23LsFLcTZL98Xq5U2%2FPo1O378NpsRM7jzgbDFMs24zAaWfHVVci7MkjZMkG%2Bv249EfLu0966WJivz5dvvLF1PcyOslTprQOWUkOYzMDklF%2F9%2BMn%2B4L5sM0jQwZY203CcnBan3wPJ12PzUv9UERp1q4txBVdYT48enh0pOif%2F0LpTYv%2FLD5JcLb%2BaboHENK%2F5z8RRv2AcYGAe0uI8srTE0NYaqBlVj2PLspMjN%2FpWfO%2FNCrJxJrIyzGSujHh4HbOVhizFXUC%2FueUJwEXYYC7osirtJJ%2BiJKOQhCjsVzy3s%2FgMAAP%2F%2FAQAA%2F%2F8RsqZTiQQAAA%3D%3D HTTP/1.1
Host: visitorcardinal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=aed4d350-c661-4d54-a858-86f18a5998d7:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecd137022925bcc2a680f8a4476ff94144=[4243976]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 23 Sep 2023 18:25:51 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: bdb33f9d5a69822a180837b3ad7dee01
Strict-Transport-Security: max-age=0; includeSubdomains

fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700

142.250.74.106

200 OK

11 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT

File type
ASCII text
Size
11 kB (11054 bytes)
Hash
907324db4557468965fb1beb08371f20
4936d051bdee930b9cbea5dffb22de4e1f2c85e9
795a4ab4ef2ac13848a83e5b36477caf20c05f4314bbc003bbaadab6d4985c95

HTTP Headers

GET /css?family=Open+Sans:400italic,700italic,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 23 Sep 2023 18:25:47 GMT
date: Sat, 23 Sep 2023 18:25:47 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

faintsuperintend.com/ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3

192.243.59.20

200 OK

13 kB

URL GET HTTP/1.1
faintsuperintend.com/ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectfaintsuperintend.com
Fingerprint51:B2:E1:2A:6D:EC:B8:67:D6:6D:AE:CF:3D:C7:14:85:FA:1F:2A:48
ValidityTue, 19 Sep 2023 06:31:45 GMT - Mon, 18 Dec 2023 06:31:44 GMT

File type

Size
13 kB (13303 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3 HTTP/1.1
Host: faintsuperintend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 23 Sep 2023 18:25:49 GMT
Content-Type: application/json
Content-Length: 13303
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16310791; expires=Sun, 24 Sep 2023 18:25:49 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 24 Sep 2023 18:25:49 GMT; secure; SameSite=None
uncs=1; expires=Sun, 24 Sep 2023 18:25:49 GMT; secure; SameSite=None
pdhtkv49=true; expires=Sun, 24 Sep 2023 18:25:49 GMT; secure; SameSite=None
uncs49=1; expires=Sun, 24 Sep 2023 18:25:49 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: baf9bb7df273010d2667f9e3b3216cd9
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/css/style.css

172.64.102.10

200 OK

5.8 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/css/style.css
IP
172.64.102.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint48:B7:50:3B:95:5B:52:CB:74:D5:D6:39:E2:DD:12:9D:05:51:D6:87
ValidityWed, 23 Aug 2023 16:10:20 GMT - Tue, 21 Nov 2023 16:10:19 GMT

File type
ASCII text, with very long lines (6136), with no line terminators
Size
5.8 kB (5788 bytes)
Hash
9f80fb73071a2440f4592b4422167a7a
bbd9cd5f77ec53153284f71655920f35815c6c4b
0a1eda0aa145d20b7434500ebb9087051733b0e11eb2187a237a2891b0973b9d

HTTP Headers

GET /sb/notifications/dating/default/us/desk-all/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:25:51 GMT
content-type: text/css
last-modified: Fri, 27 Aug 2021 11:38:00 GMT
etag: W/"6128ce98-169c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kdgXLKkWJ2nm1cwSSD4K0ulIrX%2BbBykos6cInQtblEixien%2B2iibcZLf9RB4emiMZ3q3NddzU3%2BmIv0YWzhOU2a4z2Sc%2FhN9RHmkRi%2FORD1D2Xn0EGOIxiHE4cAYqc2TIZYkHQSynLSz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4d5264dcc4177-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=5.1.16

192.185.106.252

200 OK

104 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=5.1.16
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvugla.com
Fingerprint11:89:22:26:CC:83:B0:FD:1A:33:DC:B7:94:DA:E8:C9:52:EA:19:A6
ValidityFri, 22 Sep 2023 09:08:32 GMT - Thu, 21 Dec 2023 09:08:31 GMT

File type
HTML document, ASCII text, with very long lines (1754), with CRLF line terminators
Size
104 kB (103652 bytes)
Hash
ef9b7abbc5670902d89c6d20af50b7c3
2593f7764d07fecf938574d3d93693f1974759d2
17cadc0ae5ff07b667c2150bce71007b771bcc75ce070fd2a697ee2e60109535

HTTP Headers

GET /wp-content/themes/vugla/js/scripts.js?ver=5.1.16 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/feralpisalo-pisa-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 12:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: application/javascript
date: Sat, 23 Sep 2023 18:25:46 GMT
server: Apache
X-Firefox-Spdy: h2

interstitial-08.com/contents/s/9b/c0/07/de8cca6cb4c49b6819c605a407/0931937241247.png

139.45.197.151

200 OK

142 kB

URL GET HTTP/2
interstitial-08.com/contents/s/9b/c0/07/de8cca6cb4c49b6819c605a407/0931937241247.png
IP
139.45.197.151:443
ASN
#9002 RETN Limited

Requested by
https://interstitial-08.com/?l=Ks37wDcsh9ZUgKV&cd_meta_crid=55809&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D2628323539%26z%3D2892323%26b%3D18698481%26c%3D7298598%26var%3D%26varid%3D0%26d%3Dhttps%253A%252F%252Fexolix.com%252F%253Futm_source%253Dpropeller%2526utm_medium%253Dcpc%2526utm_campaign%253Daugust2023_banner%26cln%3D1%26btp%3D7%26rb%3DZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D12747fa5-104d-43b1-9533-6821d5858341%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Ftag%252Fferalpisalo-pisa-golovi%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D3%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Certificate
IssuerLet's Encrypt
Subjectinterstitial-08.com
Fingerprint89:0A:25:3E:74:93:82:46:D6:24:9C:BA:62:C4:6D:5B:DE:77:74:66
ValidityTue, 25 Jul 2023 05:15:09 GMT - Mon, 23 Oct 2023 05:15:08 GMT

File type
PNG image data, 700 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size
142 kB (141889 bytes)
Hash
9bc007de8cca6cb4c49b6819c605a407
d43e343520d25c20ba1ce39cdf5fb085fcfa2bbf
cdd90514220a31c685a9c2bb6512dddcea6f4ef1c5759e9f8044a82c35041551

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /contents/s/9b/c0/07/de8cca6cb4c49b6819c605a407/0931937241247.png HTTP/1.1
Host: interstitial-08.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://interstitial-08.com/?l=Ks37wDcsh9ZUgKV&cd_meta_crid=55809&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D2628323539%26z%3D2892323%26b%3D18698481%26c%3D7298598%26var%3D%26varid%3D0%26d%3Dhttps%253A%252F%252Fexolix.com%252F%253Futm_source%253Dpropeller%2526utm_medium%253Dcpc%2526utm_campaign%253Daugust2023_banner%26cln%3D1%26btp%3D7%26rb%3DZhO_7sy7fohzc8XfrbsscsI27JnavRozATZD2rxNYUL4A885UR07qUudnt9ZIGIqEzjwFesx4ebLIgeusLIDjO6_0MJ2_3QOF-1ebcckH7mzh9kKv50LrX263z1g5qCYkq65yYyODSVxBaoofiknr3sQfL1HYKBqMIBwfs0C9xyQ_CuyNXmeskWqAyY-I9Rla1tnczbtOTzLjRY5jHPsyqenovQWYywWjkuR0JU29dSJ2cKVTCfrQICJgft5qsJhdght27O_SU41IHHXe38hEu2PjLfKl6qFDzxOY2ZGB_8-zQGWmr33MmxqiL8yqg1QciLeNqzke0wd7xFjbqPnkmcEMvoinQRdIratOufsXb51SoLN317YDjVoT5bUDi9mb9_iIVjLEib3ZRDZN4VbzL9oiVERICCA5nPownQPPjcY5Og6GQLZL4C5PofdlWye0iEd3cY5UZZchAZ8wFGsRk85SeWHoWrj5p0Ot6dx3VrRvhvpNIA2Yu406j3TAd2DbAAlMeswATll45vXuYF39XeLv0ESBggEJ1ONy2uznUAtpBAm5LFXMmpmmb3_aeIRgse5t1G2CPnCgh3B44cEP3HEQSvIxLmj7GJ4Stz1sC09sc1YAy4twRG51M0MelKzt9fhi5nq-IONCya9KNqeRAovU8vpSIREwFWCJA%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D12747fa5-104d-43b1-9533-6821d5858341%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Ftag%252Fferalpisalo-pisa-golovi%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D3%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:55 GMT
content-type: image/png
content-length: 141889
last-modified: Fri, 18 Aug 2023 13:21:45 GMT
vary: Accept-Encoding
etag: "64df7069-22a41"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2

tharbadir.com/27/e70947491773b29465b66e664f6dd7f1

139.45.197.238

200 OK

413 kB

URL GET HTTP/2
tharbadir.com/27/e70947491773b29465b66e664f6dd7f1
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type
ASCII text, with very long lines (65523)
Size
413 kB (412876 bytes)
Hash
152d7faccc2e1133ff50f8d875e1778f
82c385ac3b6eb22b3cb5a9cb54f4fd6fc57c0f97
4a29d993864a9f91a4137d3fe1d3e1ddbffad9d130c4be30e191cc8a9095bb1b

HTTP Headers

GET /27/e70947491773b29465b66e664f6dd7f1 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=d2448eb807f84aafbefae0527ceba4c7; oaidts=1695493548
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:49 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 01c0fbd63cc0411c11fabb4f7c83b089
cache-control: max-age:290304000, public
last-modified: Tue, 12 Sep 2023 06:15:15 GMT
expires: Tue, 12 Oct 2083 06:15:15 GMT
access-control-expose-headers: X-Sc
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

visitorcardinal.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fdating%2Fdefault%2Fus%2Fdesk-all%2Fcss%2Fanimate.css&l=79245&fd=397

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
visitorcardinal.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fdating%2Fdefault%2Fus%2Fdesk-all%2Fcss%2Fanimate.css&l=79245&fd=397
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectvisitorcardinal.com
FingerprintB3:4F:99:74:63:73:27:1B:99:99:A2:19:3E:B4:E0:A0:EA:5C:03:D0
ValidityMon, 18 Sep 2023 15:38:06 GMT - Sun, 17 Dec 2023 15:38:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fdating%2Fdefault%2Fus%2Fdesk-all%2Fcss%2Fanimate.css&l=79245&fd=397 HTTP/1.1
Host: visitorcardinal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=aed4d350-c661-4d54-a858-86f18a5998d7:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecd137022925bcc2a680f8a4476ff94144=[4243976]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 23 Sep 2023 18:25:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

glimtors.net/pfe/current/defaultSkin.min.js

139.45.197.251

200 OK

57 kB

URL GET HTTP/2
glimtors.net/pfe/current/defaultSkin.min.js
IP
139.45.197.251:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/tag/feralpisalo-pisa-golovi
Certificate
IssuerLet's Encrypt
Subjectglimtors.net
Fingerprint16:2D:47:69:3C:36:FE:B1:A3:A3:A5:57:73:5B:D0:FD:74:26:13:8F
ValiditySat, 02 Sep 2023 05:36:03 GMT - Fri, 01 Dec 2023 05:36:02 GMT

File type

Size
57 kB (57187 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 18:25:55 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 12:11:16 GMT
etag: W/"65083e64-df63"
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (44)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by