Report - aszoran.hr/natus-aut/documents.zip

Report Overview

Submitted URL
aszoran.hr/natus-aut/documents.zip
IP
95.217.76.40
ASN
#24940 Hetzner Online GmbH
Submitted
2022-09-08 18:18:19
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
76

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	76 kB	69.16.175.10
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	736 B	93.184.220.29
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.5 kB	23.36.77.32
www.aszoran.hr	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.8 kB	1.1 MB	95.217.76.40
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	118 kB	142.250.74.163
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	410 B	17 kB	142.250.74.10
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	5.6 kB	142.250.74.3
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.164.56.167
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	302 B	62 kB	142.250.74.138
platform.linkedin.com	3785	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	267 B	163 kB	23.36.76.210
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	55 kB	34.120.237.76
aszoran.hr	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	353 B	588 B	95.217.76.40
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.25

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-08	medium	aszoran.hr/natus-aut/documents.zip	Malware
2022-09-08	medium	www.aszoran.hr/natus-aut/documents.zip	Malware
2022-09-08	medium	www.aszoran.hr/hrvatski/naslovnica_1/	Malware
2022-09-08	medium	www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js	Malware
2022-09-08	medium	www.aszoran.hr/addons/js/to-top/to-top-script.js	Malware
2022-09-08	medium	www.aszoran.hr/addons/js/jquery.slick.menu/jquery.slicknav.js	Malware
2022-09-08	medium	www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js	Malware
2022-09-08	medium	www.aszoran.hr/addons/js/jquery.classie/classie.js	Malware
2022-09-08	medium	www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js	Malware
2022-09-08	medium	www.aszoran.hr/addons/js/browser-css-fix.php	Malware
2022-09-08	medium	www.aszoran.hr/hrvatski/naslovnica_1/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed
2022-09-08	medium	aszoran.hr	Sinkholed

JavaScript (16)

	URL	Size	First Seen	Last Seen
	www.aszoran.hr/addons/js/jquery.slick.menu/jquery.slicknav.js	16 kB	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/jquery.slick.menu/jquery.slicknav.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 6b76a9cbd9a5d9106bcf23e70642407c 5211149af0c1576db3a0b700f3443ebf8109baed 1745479779e5f1a651548694c615c06cfe617303885cd9a847548c09840855a4 Loading...

	www.aszoran.hr/addons/js/jquery.classie/classie.js	1.9 kB	2023-03-07	2024-03-29
Pretty URL www.aszoran.hr/addons/js/jquery.classie/classie.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2024-03-29 11:18:49 Times Seen126 Hash d3c2ce47c4784c4cd4740ab047371f85 7eafb00a912e475500ac1a5ec6f8ead5299c4ebb 469273fc70486fd947d2f8822ef14108d6219ca26b4e0306769e6ae8473259ba Loading...

	code.jquery.com/jquery-3.2.1.min.js	87 kB	2023-03-07	2024-05-11
Pretty URL code.jquery.com/jquery-3.2.1.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-11 01:50:00 Times Seen65853 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	www.aszoran.hr/addons/js/browser-css-fix.php	10 kB	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/browser-css-fix.php IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 4117917bbdde7cef416654714b777b0d 8335f70435cf6d4adf91b3607ad4af08c1cb645d e8bd473ff1690816a139e944ccb9cbda61b6e98ee005c28cc4b2e86b9bbea58b Loading...

	www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js	65 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash a151c4a8ba3d021d279a8e099cfb408a d4a874100c4a05e1b89624f75051db59a2d9d07f acf7351a4a20ca736754d303e9c09227f8190e0f6237716c125bdafb64d66226 Loading...

	www.aszoran.hr/hrvatski/naslovnica_1/	107 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/hrvatski/naslovnica_1/ IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 5742d59195256a6ccf1eb238a5bf5cfe 4f2f01a76a84b8b577286ad2368884eea2bac291 2b7e630251a0b57034ade8c209268a82b91d0739ccf9d51b0c8c024e2b767c6d Loading...

	www.aszoran.hr/hrvatski/naslovnica_1/	819 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/hrvatski/naslovnica_1/ IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 9e336fc2025388ea1df456d33b7d728a ce27d208496cc2383c45bf7350b41d6e7720755d adbb2dd8c4137985ea7c48647dbcd1bcd2d6c60e675ec3d3ee45dffc4ffd6fe2 Loading...

	www.aszoran.hr/hrvatski/naslovnica_1/	504 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/hrvatski/naslovnica_1/ IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 148c688c710b13cf5f2ac9ff872bb2cb 4802be36150fbb3882c520d2319b0d25160b4118 150740aa8d8a42c4c83ac22cdf6f0a371d0659326d1bdea9a19fd5df27dc66ec Loading...

	code.jquery.com/jquery-migrate-3.0.0.js	15 kB	2023-03-07	2024-03-04
Pretty URL code.jquery.com/jquery-migrate-3.0.0.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2024-03-04 03:44:58 Times Seen68 Hash 3a465b249cb5f68e904c94a47d3da683 33723207fcd0f514433521b035d421ced655de70 96c54e07edd8866e877b93244cedc1c3f5f0e0d5caef06184e2d58f8cff63eb3 Loading...

	www.aszoran.hr/hrvatski/naslovnica_1/	107 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/hrvatski/naslovnica_1/ IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash d7e4863afc969e2d536121edd5b70dba 51528407b7ae0ca00f229478470ec9582d3bcbc1 9634394a3e17188a0cbf9017f3f7e176765335c8b8b7adf2876b3d20e52ad45f Loading...

	www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js	1.3 kB	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash fd8856a4304962506fdf9af710391d1d 3b3584d0d647d9f7a172817528813f0c9abda9c4 8c265e202dac21911f007c0ed2d751b915ed012ecf2dd53f27ebaf3d13269364 Loading...

	www.aszoran.hr/addons/js/to-top/to-top-script.js	294 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/to-top/to-top-script.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 4098892a03fe0a069248944c28307cc2 4beb1d8e2c45512792d52581d56b03dd40c16024 97031164e39800c0e097d93c9bf249fba012fd34dece0f716b05e581024eb530 Loading...

	www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js	1.8 kB	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 7bde2230740c65ea8113e47729df9e66 74333d17f24820fce5c96ba5514077c0a4eb3736 cf60081a30151ca8117c55e29eac8e9e27d24af74119081a2763e88b6212762b Loading...

	unknown	0 B	2023-03-07	2024-05-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 03:18:40 Times Seen37534249 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	code.jquery.com/jquery-latest.min.js	96 kB	2023-03-07	2024-05-11
Pretty URL code.jquery.com/jquery-latest.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-11 02:40:56 Times Seen47403 Hash 8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441 Loading...

	ajax.googleapis.com/ajax/libs/jqueryui/1.10.2/jquery-ui.min.js	228 kB	2023-03-07	2024-05-02
Pretty URL ajax.googleapis.com/ajax/libs/jqueryui/1.10.2/jquery-ui.min.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2024-05-02 15:16:22 Times Seen380 Hash 3e6acb1e6426ef90d2e786a006a4ea28 326339e0b8ee351a1e706f6b1cba772e64d1ff19 16089a42741acc5fd00ab17da92be9458e8f0029fd645f159e582a7ea0f52ec1 Loading...

HTTP Transactions (66)

URL IP Response Size

aszoran.hr/natus-aut/documents.zip

95.217.76.40

301 Moved Permanently

253 B

URL HTTP/1.1
aszoran.hr/natus-aut/documents.zip
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
253 B (253 bytes)
Hash
9cb05f149124f011fbc674399945e42a
8b89246fd56a5f5afdf6cc708f3f9698573bdb25
76f71bc8ae0aaea1d35ef9a3edd5c587919ac08980ce2a1fc49c83ab0b3b9947

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /natus-aut/documents.zip HTTP/1.1
Host: aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Location: http://www.aszoran.hr/natus-aut/documents.zip
Cache-Control: max-age=172800
Expires: Sat, 10 Sep 2022 18:18:08 GMT
Content-Length: 253
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8530
Expires: Thu, 08 Sep 2022 20:40:18 GMT
Date: Thu, 08 Sep 2022 18:18:08 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 18:05:21 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: j6fBvTlcpc_zSLaPF3p0lDlT5OBrCwEOR3_vmp9yJNPEb3woVffETw==
Age: 767

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.25

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.25:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2bhpXeKzZoJFgKs5CwNBxVh-p55GEEoK3MTb51f40XztHNcl-zReNg==
age: 52294
X-Firefox-Spdy: h2

www.aszoran.hr/natus-aut/documents.zip

95.217.76.40

302 Found

0 B

URL HTTP/1.1
www.aszoran.hr/natus-aut/documents.zip
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /natus-aut/documents.zip HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Pragma: no-cache
Set-Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f; path=/
Location: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0, max-age=300, public, no-cache, no-store, must-revalidate
Expires: Mon, 12 Dec 1982 06:00:00 GMT, 0
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:18:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.aszoran.hr/hrvatski/naslovnica_1/

95.217.76.40

200 OK

10 kB

URL HTTP/1.1
www.aszoran.hr/hrvatski/naslovnica_1/
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size
10 kB (10317 bytes)
Hash
4117917bbdde7cef416654714b777b0d
8335f70435cf6d4adf91b3607ad4af08c1cb645d
e8bd473ff1690816a139e944ccb9cbda61b6e98ee005c28cc4b2e86b9bbea58b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /hrvatski/naslovnica_1/ HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Pragma: no-cache
Cache-Control: max-age=300, must-revalidate, max-age=300, public, no-cache, no-store, must-revalidate
Expires: Mon, 12 Dec 1982 06:00:00 GMT, 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

platform.linkedin.com/in.js

23.36.76.210

200 OK

162 kB

URL HTTP/1.1
platform.linkedin.com/in.js
IP
23.36.76.210:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (41431)
Size
162 kB (162498 bytes)
Hash
72840ba9f3ec38b9fbe5086df1edc4ae
f977e19d60bb362f92ee0dd8aeb10b8734baf6ce
ab4fd0386115be9e52480a25ca88c1355b3a7fad36d8d7540e15183616209422

HTTP Headers

GET /in.js HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Server: Play
Expires: Thu, 8 Sep 2022 18:26:40 GMT
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Content-Type: text/javascript; charset=UTF-8
Content-Length: 162498
X-Li-Fabric: prod-ltx1
X-Li-Pop: prod-ltx1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAXoLbt5C06p3xohHtCZMQ==
Date: Thu, 08 Sep 2022 18:18:08 GMT
Connection: keep-alive
Vary: Accept-Encoding
X-CDN-CLIENT-IP-VERSION: IPV4
X-CDN: AKAM

www.aszoran.hr/addons/css/reset.css

95.217.76.40

200 OK

568 B

URL HTTP/1.1
www.aszoran.hr/addons/css/reset.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (438)
Size
568 B (568 bytes)
Hash
f3625005c5c910b8f7c334ef92a85c9d
f297489dcd385187db3dcad5badad120a1e4c704
f4dbb920fd66facb0156b415e60afe568ffb39907c8535a6db6d28a9efee7034

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /addons/css/reset.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 568
Cache-Control: max-age=2592000
Expires: Sat, 08 Oct 2022 18:18:08 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

code.jquery.com/jquery-migrate-3.0.0.js

69.16.175.10

200 OK

5.0 kB

URL HTTP/1.1
code.jquery.com/jquery-migrate-3.0.0.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text
Size
5.0 kB (4960 bytes)
Hash
a1ab44f15ae27f50bd5432a0d8a9c41a
da6cac4b271724aff3d13efd17a3154824aeaf20
cbf744382777029fa06a71bcd98055902ad3f94ba40e31d69e381b501813e23b

HTTP Headers

GET /jquery-migrate-3.0.0.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 4960
Content-Type: application/javascript; charset=utf-8
Last-Modified: Fri, 20 Aug 2021 17:47:53 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"611feac9-3a4b"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1662661088.dop026.sk1.t,1662661088.cds220.sk1.c

www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.css

95.217.76.40

200 OK

519 B

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
519 B (519 bytes)
Hash
710811976ad0030b32af6178727192fa
04143d9251564a91c3caa3a3d5189642f0a4a1c8
5d453293ab8cc49e609e72b5bb242b62b2021c825f52625d518415cf94156deb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.social/jquery.social.custom.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 519
Cache-Control: max-age=2592000
Expires: Sat, 08 Oct 2022 18:18:08 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.aszoran.hr/addons/css/basic.css

95.217.76.40

200 OK

2.1 kB

URL HTTP/1.1
www.aszoran.hr/addons/css/basic.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
2.1 kB (2071 bytes)
Hash
41ea52392bc72cad4e5f02834d86636d
567685f6c84205c22fdf3f1a7596fdcdca05f90a
5b505e0e4b7d93f86dea60203c27f26d11b30959888d5321ac15c48331b59cf5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /addons/css/basic.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 13:20:28 GMT
Accept-Ranges: bytes
Content-Length: 2071
Cache-Control: max-age=2592000
Expires: Sat, 08 Oct 2022 18:18:08 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

code.jquery.com/jquery-latest.min.js

69.16.175.10

200 OK

33 kB

URL HTTP/1.1
code.jquery.com/jquery-latest.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (32086)
Size
33 kB (33202 bytes)
Hash
a39e9fcc2a78d5b1ed25b5f853c17a22
f1d1d30d35146a7adee855becba02b776366f169
a0581d3f2c05cfb302f81d2894c114da758e14a290bd4f240c7b63628469ee8d

HTTP Headers

GET /jquery-latest.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 33202
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 16 Feb 2022 10:50:39 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"620cd6ff-1762a"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1662661088.dop018.sk1.t,1662661088.cds256.sk1.c

code.jquery.com/ui/1.10.1/themes/base/jquery-ui.css

69.16.175.10

200 OK

5.9 kB

URL HTTP/1.1
code.jquery.com/ui/1.10.1/themes/base/jquery-ui.css
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (339)
Size
5.9 kB (5903 bytes)
Hash
ff960b5f26bc3f99c208134bd3d25bc5
bd71bfee058ccecf5b3d9cdc26258e6f4166755d
953952aca9c675f4a683ffb2facf35cf062688dafd4d7b50ca95df0732d8f89c

HTTP Headers

GET /ui/1.10.1/themes/base/jquery-ui.css HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 5903
Content-Type: text/css
Last-Modified: Wed, 16 Feb 2022 10:50:40 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"620cd700-7e0a"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1662661088.dop001.sk1.t,1662661088.cds254.sk1.c

www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js

95.217.76.40

200 OK

1.3 kB

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
1.3 kB (1256 bytes)
Hash
fd8856a4304962506fdf9af710391d1d
3b3584d0d647d9f7a172817528813f0c9abda9c4
8c265e202dac21911f007c0ed2d751b915ed012ecf2dd53f27ebaf3d13269364

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.social/jquery.social.custom.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 1256
Cache-Control: max-age=172800
Expires: Sat, 10 Sep 2022 18:18:08 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.aszoran.hr/addons/js/to-top/to-top-script.js

95.217.76.40

200 OK

294 B

URL HTTP/1.1
www.aszoran.hr/addons/js/to-top/to-top-script.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
294 B (294 bytes)
Hash
4098892a03fe0a069248944c28307cc2
4beb1d8e2c45512792d52581d56b03dd40c16024
97031164e39800c0e097d93c9bf249fba012fd34dece0f716b05e581024eb530

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/to-top/to-top-script.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 294
Cache-Control: max-age=172800
Expires: Sat, 10 Sep 2022 18:18:08 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

ajax.googleapis.com/ajax/libs/jqueryui/1.10.2/jquery-ui.min.js

142.250.74.138

200 OK

61 kB

URL HTTP/1.1
ajax.googleapis.com/ajax/libs/jqueryui/1.10.2/jquery-ui.min.js
IP
142.250.74.138:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32127)
Size
61 kB (60637 bytes)
Hash
a4fae3bd93aeeff434297afd1aee71fa
fc48093eea0f31043d6e4b863d74c001ebba7688
c425c0431c3199eaa90590fcf017a18f35226445bd531ffcf0aa7dd0d100e42d

HTTP Headers

GET /ajax/libs/jqueryui/1.10.2/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 60637
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 08 Sep 2022 10:41:25 GMT
Expires: Fri, 08 Sep 2023 10:41:25 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 27403
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8

code.jquery.com/jquery-3.2.1.min.js

69.16.175.10

200 OK

30 kB

URL HTTP/2
code.jquery.com/jquery-3.2.1.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (32058)
Size
30 kB (30125 bytes)
Hash
148f8d3ffd9cc02048c5f4d1cc83c407
9f2b89cfd151be6a29b4d43ad64d164fb8471046
4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e

HTTP Headers

GET /jquery-3.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.aszoran.hr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Sep 2022 18:18:08 GMT
content-encoding: gzip
content-length: 30125
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1662661088.dop018.sk1.t,1662661088.cds258.sk1.hn,1662661088.cds222.sk1.c
X-Firefox-Spdy: h2

www.aszoran.hr/addons/js/jquery.slick.menu/jquery.slicknav.js

95.217.76.40

200 OK

16 kB

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.slick.menu/jquery.slicknav.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (348), with CRLF line terminators
Size
16 kB (15943 bytes)
Hash
6b76a9cbd9a5d9106bcf23e70642407c
5211149af0c1576db3a0b700f3443ebf8109baed
1745479779e5f1a651548694c615c06cfe617303885cd9a847548c09840855a4

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.slick.menu/jquery.slicknav.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 15943
Cache-Control: max-age=172800
Expires: Sat, 10 Sep 2022 18:18:08 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js

95.217.76.40

200 OK

1.8 kB

URL HTTP/1.1
www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document, ASCII text
Size
1.8 kB (1797 bytes)
Hash
7bde2230740c65ea8113e47729df9e66
74333d17f24820fce5c96ba5514077c0a4eb3736
cf60081a30151ca8117c55e29eac8e9e27d24af74119081a2763e88b6212762b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/to-top/jquery.ui.totop.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 1797
Cache-Control: max-age=172800
Expires: Sat, 10 Sep 2022 18:18:08 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.aszoran.hr/addons/js/to-top/ui.totop.css

95.217.76.40

200 OK

762 B

URL HTTP/1.1
www.aszoran.hr/addons/js/to-top/ui.totop.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
762 B (762 bytes)
Hash
ca7a1a5fc8651a6031fcda2d2c02c1fa
aaaad4310be94423d593c1f15c88f5dde9c9850f
e9218adb87f90d04920f9c858101bcaa80c40226f68cf3a7763242d09b266050

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /addons/js/to-top/ui.totop.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 762
Cache-Control: max-age=2592000
Expires: Sat, 08 Oct 2022 18:18:08 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.aszoran.hr/addons/js/jquery.classie/classie.js

95.217.76.40

200 OK

1.9 kB

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.classie/classie.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
1.9 kB (1872 bytes)
Hash
d3c2ce47c4784c4cd4740ab047371f85
7eafb00a912e475500ac1a5ec6f8ead5299c4ebb
469273fc70486fd947d2f8822ef14108d6219ca26b4e0306769e6ae8473259ba

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.classie/classie.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 1872
Cache-Control: max-age=172800
Expires: Sat, 10 Sep 2022 18:18:08 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js

95.217.76.40

200 OK

65 B

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
65 B (65 bytes)
Hash
a151c4a8ba3d021d279a8e099cfb408a
d4a874100c4a05e1b89624f75051db59a2d9d07f
acf7351a4a20ca736754d303e9c09227f8190e0f6237716c125bdafb64d66226

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.slick.menu/nav-slick-custom.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 65
Cache-Control: max-age=172800
Expires: Sat, 10 Sep 2022 18:18:08 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.aszoran.hr/templates/css/media_queries.css

95.217.76.40

200 OK

5.1 kB

URL HTTP/1.1
www.aszoran.hr/templates/css/media_queries.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
5.1 kB (5132 bytes)
Hash
19924c037517e6e34d4786c2a88a9c76
f5e8023769faf48a507a55686547a51471d40e0d
2d629d118001a924f0bc0a02ad63f46c18ceeb4359ea9bb10b5b3c080cb9407a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/css/media_queries.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Thu, 20 Jul 2017 14:12:42 GMT
Accept-Ranges: bytes
Content-Length: 5132
Cache-Control: max-age=2592000
Expires: Sat, 08 Oct 2022 18:18:08 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.aszoran.hr/templates/css/style.css

95.217.76.40

200 OK

27 kB

URL HTTP/1.1
www.aszoran.hr/templates/css/style.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
27 kB (26944 bytes)
Hash
0d5f9869e3c2a97c1ca08feb99716f19
d83c097811151e64a11ae89b6969e415368f3539
9d21aea4c50ba6cf4e8b64f5ed4eca45624f3a96dace62bcc0fab26c42f627db

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/css/style.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Fri, 27 Oct 2017 08:55:52 GMT
Accept-Ranges: bytes
Content-Length: 26944
Cache-Control: max-age=2592000
Expires: Sat, 08 Oct 2022 18:18:08 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

www.aszoran.hr/addons/js/browser-css-fix.php

95.217.76.40

302 Found

0 B

URL HTTP/1.1
www.aszoran.hr/addons/js/browser-css-fix.php
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/browser-css-fix.php HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 302 Found
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Pragma: no-cache
Location: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0, max-age=300, public, no-cache, no-store, must-revalidate
Expires: Mon, 12 Dec 1982 06:00:00 GMT, 0
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:18:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.aszoran.hr/templates/img/phone-call-icon.png

95.217.76.40

200 OK

3.0 kB

URL HTTP/1.1
www.aszoran.hr/templates/img/phone-call-icon.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (2979 bytes)
Hash
e52e9613bebf6e9ef646c42183ece3bb
276422b1fcfe9a0f04441990913c067c5b38143e
7f89a16a7925d29f9bb125f33437400ad85a41bc90e1b607b2fb62cf1d4bdd1c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/img/phone-call-icon.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2017 11:35:48 GMT
Accept-Ranges: bytes
Content-Length: 2979
Cache-Control: max-age=31536000
Expires: Fri, 08 Sep 2023 18:18:08 GMT
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/upload/images/contents/thumbs/64x64-5-servis-i-odrzavanje-korisnika.png

95.217.76.40

200 OK

2.5 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/contents/thumbs/64x64-5-servis-i-odrzavanje-korisnika.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2456 bytes)
Hash
628c67564db567121bb01704670e8658
36db5a5c0a25556992b6f41e65046e0762e78cbd
19ad4a4d6b0e0b51680a373d290d6402f95041f888a3821eed3f0e247816dd39

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/contents/thumbs/64x64-5-servis-i-odrzavanje-korisnika.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Tue, 13 Jun 2017 07:25:10 GMT
Accept-Ranges: bytes
Content-Length: 2456
Cache-Control: max-age=31536000
Expires: Fri, 08 Sep 2023 18:18:08 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/upload/images/contents/thumbs/64x64-7-gume.png

95.217.76.40

200 OK

4.6 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/contents/thumbs/64x64-7-gume.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
4.6 kB (4587 bytes)
Hash
a4c33ea6246d63f6e550ae60361918c4
cd57f10d70000320f52c038676a7ab9d5fe9964a
e4d2068641095c15bef9f544bfdf746ae790f2f7ada818a8fd3eb6858fe928ef

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/contents/thumbs/64x64-7-gume.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Tue, 13 Jun 2017 07:24:52 GMT
Accept-Ranges: bytes
Content-Length: 4587
Cache-Control: max-age=31536000
Expires: Fri, 08 Sep 2023 18:18:08 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/upload/images/contents/thumbs/64x64-8-lageri-kotaca.png

95.217.76.40

200 OK

3.9 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/contents/thumbs/64x64-8-lageri-kotaca.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3912 bytes)
Hash
1a0116f856f5e2a0fa3ea22428652f01
28b06e1c11aff7e9ec60698874b72676dbdb7479
b481845f23a1155f94b6cd3124da55653be12d9bb7dd23ab59abf1ff15976ffa

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/contents/thumbs/64x64-8-lageri-kotaca.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Tue, 13 Jun 2017 07:22:00 GMT
Accept-Ranges: bytes
Content-Length: 3912
Cache-Control: max-age=31536000
Expires: Fri, 08 Sep 2023 18:18:08 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/upload/images/contents/thumbs/64x64-4-autoelektrika.png

95.217.76.40

200 OK

1.4 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/contents/thumbs/64x64-4-autoelektrika.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1439 bytes)
Hash
0fc908ab4c3dcb4e20f862bce9a5b1be
64581289e8a0117ce056fa7eca2af4c5fbcd5ad6
f2699d17a3d4e7a5ff4f1daf775acf72f95ea803598f6cfddeb18a2490afe3b4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/contents/thumbs/64x64-4-autoelektrika.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Fri, 25 Aug 2017 07:43:30 GMT
Accept-Ranges: bytes
Content-Length: 1439
Cache-Control: max-age=31536000
Expires: Fri, 08 Sep 2023 18:18:08 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/hrvatski/naslovnica_1/

95.217.76.40

200 OK

10 kB

URL HTTP/1.1
www.aszoran.hr/hrvatski/naslovnica_1/
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size
10 kB (10317 bytes)
Hash
4117917bbdde7cef416654714b777b0d
8335f70435cf6d4adf91b3607ad4af08c1cb645d
e8bd473ff1690816a139e944ccb9cbda61b6e98ee005c28cc4b2e86b9bbea58b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /hrvatski/naslovnica_1/ HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Connection: keep-alive
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Pragma: no-cache
Cache-Control: max-age=300, must-revalidate, max-age=300, public, no-cache, no-store, must-revalidate
Expires: Mon, 12 Dec 1982 06:00:00 GMT, 0
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:18:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.aszoran.hr/upload/images/site/-logo.png

95.217.76.40

200 OK

5.8 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/site/-logo.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 216 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size
5.8 kB (5847 bytes)
Hash
45aa653360c1307a1045909d5691d443
a4956f170245b13f50dad649edfbfcf29377fc2a
cbd9cd6d6b6b0065364601031d22e61f5f380509fd1cc12eeabaabaf210a321c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/site/-logo.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 11:23:02 GMT
Accept-Ranges: bytes
Content-Length: 5847
Cache-Control: max-age=31536000
Expires: Fri, 08 Sep 2023 18:18:08 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/upload/images/pages/1-naslovnica.png

95.217.76.40

200 OK

978 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/pages/1-naslovnica.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 1600 x 583, 8-bit/color RGBA, non-interlaced\012- data
Size
978 kB (977514 bytes)
Hash
fcbea2a330efc7b53549cd46e6e0e069
306ab0a3f76927c3da5d8df7625d5e3ae02bac55
286eaee156ade3bbca028767ed092766ba647702524b1ab277376d034e297ccc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/pages/1-naslovnica.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 13:21:34 GMT
Accept-Ranges: bytes
Content-Length: 977514
Cache-Control: max-age=31536000
Expires: Fri, 08 Sep 2023 18:18:08 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/templates/css/icon.png

95.217.76.40

200 OK

570 B

URL HTTP/1.1
www.aszoran.hr/templates/css/icon.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
570 B (570 bytes)
Hash
7cdd0704fa4eed5729a53345a5178aeb
2dca03ac8c7b8058825551a26e6491531923ca4b
9d07aa16033b5954bcd1d9f3d53089c78d2732af3490e7a83fd85617569272ba

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/css/icon.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2017 09:01:40 GMT
Accept-Ranges: bytes
Content-Length: 570
Cache-Control: max-age=31536000
Expires: Fri, 08 Sep 2023 18:18:08 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/templates/img/menu-icons.png

95.217.76.40

200 OK

146 B

URL HTTP/1.1
www.aszoran.hr/templates/img/menu-icons.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 15 x 14, 8-bit/color RGBA, non-interlaced\012- data
Size
146 B (146 bytes)
Hash
bd3556e8365ee2058986ffed97786dd3
6c37b012abb126e8f5b6bb3e58873e66f46ec6d4
dadb798daba1adb44061e31a7325afc32daadcd96641d99a6bf0d77f0cd46fd0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/img/menu-icons.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/templates/css/style.css
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2017 08:58:06 GMT
Accept-Ranges: bytes
Content-Length: 146
Cache-Control: max-age=31536000
Expires: Fri, 08 Sep 2023 18:18:08 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/templates/img/icon-arrow.png

95.217.76.40

200 OK

273 B

URL HTTP/1.1
www.aszoran.hr/templates/img/icon-arrow.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size
273 B (273 bytes)
Hash
a2f48256fff35fa463a2e569e87c79bb
43b281a0e6c57c3647e5b80934e341bb8bb02c26
716f578043e4896d1e879288439a4cf6ff91ef0bc34eb1823a53706392c67ef3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/img/icon-arrow.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/templates/css/style.css
Cookie: PHPSESSID=b41df6496cafadf64e1206ff9308160f

HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:18:08 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2017 09:19:38 GMT
Accept-Ranges: bytes
Content-Length: 273
Cache-Control: max-age=31536000
Expires: Fri, 08 Sep 2023 18:18:08 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db3d2d40f373a7ef445874e65d7f0397
087a4802f28647e830222fafc67bda30dec5fc31
4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:18:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db3d2d40f373a7ef445874e65d7f0397
087a4802f28647e830222fafc67bda30dec5fc31
4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:18:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db3d2d40f373a7ef445874e65d7f0397
087a4802f28647e830222fafc67bda30dec5fc31
4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:18:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
61961ee76ab6c28f6e17eb7a1df4a3ea
ab4e8c9c284a0eed6b2fab77c9df432839158b3a
9e3bec23cc8ea49ab4e3a3a244a428c59e6c48c80359c473155584807ba0de41

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:18:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 08 Sep 2022 17:38:18 GMT
Expires: Thu, 08 Sep 2022 18:28:51 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Kxf9yLy2K54zzVc60PSbSpqJhi4JiIXbGRFUza3ouHHcIi7raJ1XYw==
Age: 2391

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 81841
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,500,700,900&subset=latin-ext

142.250.74.10

200 OK

16 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,500,700,900&subset=latin-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
16 kB (16474 bytes)
Hash
bea816e839a3c66643cbcac2cbc74aa3
28f502dd2230125c1c3e3dca0f8f52a4a5e90770
5dcb2da7f510e30eb63ced914e2132e0c7bebc8f545bca768953202c5a99f118

HTTP Headers

GET /css?family=Roboto:300,400,500,700,900&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.aszoran.hr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Sep 2022 18:18:08 GMT
date: Thu, 08 Sep 2022 18:18:08 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Size
12 kB (11824 bytes)
Hash
deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:35:18 GMT
expires: Thu, 07 Sep 2023 19:35:18 GMT
cache-control: public, max-age=31536000
age: 81771
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Size
12 kB (11872 bytes)
Hash
87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:35:48 GMT
expires: Thu, 07 Sep 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 81741
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size
16 kB (15740 bytes)
Hash
b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:21 GMT
expires: Thu, 07 Sep 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 81828
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
61961ee76ab6c28f6e17eb7a1df4a3ea
ab4e8c9c284a0eed6b2fab77c9df432839158b3a
9e3bec23cc8ea49ab4e3a3a244a428c59e6c48c80359c473155584807ba0de41

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:18:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11796, version 1.0\012- data
Size
12 kB (11796 bytes)
Hash
716871ec15f054ec158445180fe280e1
d7d746e03e49f7e10ca0b11e598f3d6db5e34a2b
b076e86301cbee8c5c9aef51863a9c0a88e6f6d2aabdffca93e031113c6caa74

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:43:35 GMT
expires: Thu, 07 Sep 2023 19:43:35 GMT
cache-control: public, max-age=31536000
age: 81274
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Size
16 kB (15752 bytes)
Hash
b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:40:23 GMT
expires: Thu, 07 Sep 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 81466
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Sep 2022 02:02:22 GMT
expires: Sun, 03 Sep 2023 02:02:22 GMT
cache-control: public, max-age=31536000
age: 490547
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11800, version 1.0\012- data
Size
12 kB (11800 bytes)
Hash
e36fccd06262bef92e7a9841e2202225
b907dd02819497b3942220e0aa160c167195506b
7f1c829b0c90fd664a03bb714a74f7d35d9e38ee1687104abc8ad5bd9c8ccb6c

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:35:48 GMT
expires: Thu, 07 Sep 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 81741
last-modified: Wed, 11 May 2022 19:25:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db3d2d40f373a7ef445874e65d7f0397
087a4802f28647e830222fafc67bda30dec5fc31
4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:18:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
042105f89c8d64b470d84e052cd412d1
a26c7e2559b3760ea2765b16a3f8d1be27f5dcf4
fadb8cdd22f4d7773d5c20d576f6400ab25e20e1efe3e3fe50d2ae39ca6f2725

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 565
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:18:09 GMT
Last-Modified: Thu, 08 Sep 2022 18:08:44 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.164.56.167

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.164.56.167:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uvLMnw2hbfLVs0IHXUfIzA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Q79gqhgm8AJuDOvDYWZxPsAam0o=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12074
Expires: Thu, 08 Sep 2022 21:39:24 GMT
Date: Thu, 08 Sep 2022 18:18:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12074
Expires: Thu, 08 Sep 2022 21:39:24 GMT
Date: Thu, 08 Sep 2022 18:18:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12074
Expires: Thu, 08 Sep 2022 21:39:24 GMT
Date: Thu, 08 Sep 2022 18:18:10 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faea8d298-d4be-46a2-9c14-670bdae204cd.jpeg

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faea8d298-d4be-46a2-9c14-670bdae204cd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8820 bytes)
Hash
675756a44be6f9bbe341fa4c866c941b
6502050805e53baeb44d82e55d4b15b82e34d2eb
cd1d16b5feefddfd89ac4bfcff21e80c49f07b0428aa57e8de365974f813e755

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faea8d298-d4be-46a2-9c14-670bdae204cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8820
x-amzn-requestid: e2c909d0-f781-48e6-805e-a43940e67c4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG_LpG1OIAMF_8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319124a-37f3458a2905bd947cf01f93;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:51:06 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: xZfSJCNKiAOumLXDwm496KBZqoY1FtqF6T6GkMAdHCJ3Ikq0brbdjw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 27fe6f224e0cfa3f3a446471ee256e56.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:51:13 GMT
age: 73617
etag: "6502050805e53baeb44d82e55d4b15b82e34d2eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7492 bytes)
Hash
a07d553b6441514870ed7e9e989a29a7
98c145b9326d1e6036fa9089d87a25232dd45b0b
373a586b596016baeb8de98022207c25af24c099c06077edbdfd837cffc31a0e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6mfdlMHJozdykr4faiijvUuJPXVrJGU_n0MxJgCrZ-uWWdejGYfiAQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:33:06 GMT
age: 71104
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba17b3c-58f5-4458-8dc2-8e4a7cf8d782.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7251 bytes)
Hash
1cd778a615e9a4ca3a25119790398434
d6daca74fc85d39274b3c7536f34528bef93ae97
e6b5a7a525e314e09c30985b22da7c34806df09cbe98ad52b00dcbf93a0dc054

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba17b3c-58f5-4458-8dc2-8e4a7cf8d782.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7251
x-amzn-requestid: 26b2021a-4440-47ce-8dba-d971cae60cc1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9bmHcmoAMF3Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f7d-5471edce7de2374c3b8af888;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: d3MrDEyDFDylQKyfxONQ12_7IBvRAg8o0rSZ64WNRGNvDHqQyDmqJA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:16:27 GMT
age: 72103
etag: "d6daca74fc85d39274b3c7536f34528bef93ae97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6214 bytes)
Hash
f922505178de0cea92eedcfda85a9f67
50f1459de01174e594e03e7df4dfaa8eb1798672
981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 05:34:36 GMT
age: 45814
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11365 bytes)
Hash
6f73ee4e91b38eaa36cadd4c437785f8
6ceea057f5ae50b9cef505da0a358e3d3b7d6a38
778d28e14b28c154843403470136d0efdcdd5e93e4b5aab784c12d4344e7af6f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11365
x-amzn-requestid: d50039cd-381c-4221-997e-9231d40ecfbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9V0EHEoAMFeag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f58-11cab61904bd14462cd13d0d;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: z7RyNwWgq5r9B2WMa5ibpo3d8DXFSFCCrEHpMvc0Q5SqE2x1ovaV-g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:41:33 GMT
age: 70597
etag: "6ceea057f5ae50b9cef505da0a358e3d3b7d6a38"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7885 bytes)
Hash
7ca5b5d4ac26d97b5729a30ecdc688bc
3e633bc6c4ab9adfe84899e5209d73bef1d097eb
2c8275d1819d933f86df9685b76aea030842ba5a341c59ea88ffd2da99a5a3d5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7885
x-amzn-requestid: 305dc6b7-eb3d-40ad-af89-8b60be935637
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9ThE3DIAMFRtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-7c0b58644e26de7f27c5b388;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ry2D03udnweYHan_7KhC9IDhT01g9_73G40Fa10BdIX21tgK0Cgjiw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:48:35 GMT
etag: "3e633bc6c4ab9adfe84899e5209d73bef1d097eb"
content-type: image/jpeg
age: 73775
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations