vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
91.234.46.89301 Moved Permanently 288 B URL HTTP/1.1 vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
IP 91.234.46.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2ed55b5c54788095ec98fb7af54380fa
0df45c06a806d3692940aa67017fa1a06f674bd8
d81e8f0b9487114b49ea7091126b61ccdfc17f46eb2860296feca2741721d74e
Analyzer Verdict Alert fortinet Phishing
GET /aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
date: Tue, 29 Nov 2022 02:23:46 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
location: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
content-length: 288
content-type: text/html; charset=iso-8859-1
set-cookie: PH_HPXY_CHECK=s1; path=/
cache-control: private
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7935
Expires: Tue, 29 Nov 2022 04:36:01 GMT
Date: Tue, 29 Nov 2022 02:23:46 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2948
Cache-Control: max-age=118603
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 02:23:46 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:20:29 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 02:19:34 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 252
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6596
Expires: Tue, 29 Nov 2022 04:13:42 GMT
Date: Tue, 29 Nov 2022 02:23:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LmSIr4vE3VD30VEV0wQrgcW4Mq1FKKOlz1Z5kIRA7GOg+vPA5i1GzrXa7lY55rjeU+uIWCMszCI=
x-amz-request-id: 0NCHEN3W5ZW01WVR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 01:45:15 GMT
age: 2312
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:23:47 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.comodoca.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash c0658c1ea1048bf0e282f3634ac21024
ff18d1e10b2a1107530722458b670ef42be43234
b133fbcfc07231819c69091d217d3aa36fda69eb796617b4d0639f6d56201e5b
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:23:47 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 17:37:25 GMT
Expires: Sun, 04 Dec 2022 17:37:24 GMT
Etag: "ff18d1e10b2a1107530722458b670ef42be43234"
Cache-Control: max-age=568060,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7717e21f3c45b518-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 02:08:56 GMT
cache-control: public,max-age=3600
age: 891
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3723
Cache-Control: max-age=114311
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 02:23:47 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:08:58 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 02:23:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vatrostalac.hr/wp-content/plugins/formcraft3/dist/form.css?ver=3.7.2
91.234.46.89200 OK 64 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/formcraft3/dist/form.css?ver=3.7.2
IP 91.234.46.89:0
File type ASCII text, with very long lines (63876), with no line terminators
Hash f087a88ab8e483544e4131acfb078874
6f060a60f8d6e23a9b6dc60912418a457bc98f93
cdac167589e6467150c79b5e84d468d0fb4d6ed2b45cc832d69b3576d5dfcf8b
GET /wp-content/plugins/formcraft3/dist/form.css?ver=3.7.2 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 15:23:16 GMT
accept-ranges: bytes
content-length: 63876
content-type: text/css
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 02:23:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vatrostalac.hr/wp-content/plugins/formcraft3/dist/formcraft-common.css?ver=3.7.2
91.234.46.89200 OK 28 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/formcraft3/dist/formcraft-common.css?ver=3.7.2
IP 91.234.46.89:0
File type ASCII text, with very long lines (28170), with no line terminators
Hash a0e500d8f5d5f8b028bfbaa7c797234c
d8fd83ca943afbe669d588f08f60770295526614
841d5aa9fb627b9d4da90602fbcf04efee058d95485a3a4b288466f97ecd793a
GET /wp-content/plugins/formcraft3/dist/formcraft-common.css?ver=3.7.2 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 15:23:16 GMT
accept-ranges: bytes
content-length: 28170
content-type: text/css
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/themes/Impreza-child/style.css?ver=5.4
91.234.46.89200 OK 4.9 kB URL HTTP/2 vatrostalac.hr/wp-content/themes/Impreza-child/style.css?ver=5.4
IP 91.234.46.89:0
File type ASCII text, with very long lines (2031)
Hash 45f76c47176f2229fa2af4338c3f2f23
4c7ec33e7b59fd4616ffe2ec28b9894638da71e2
6841f764c3774fe1f3949391349e6f912ac03f73d0d9beab5312e08e40a8e302
GET /wp-content/themes/Impreza-child/style.css?ver=5.4 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Mon, 14 Sep 2020 11:51:30 GMT
accept-ranges: bytes
content-length: 4894
content-type: text/css
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js
142.250.74.10200 OK 53 kB URL HTTP/2 maps.googleapis.com/maps/api/js
IP 142.250.74.10:0
File type ASCII text, with very long lines (2589)
Hash 6b3b0e678269b91a5a11b573723df72e
effe0b8544e714185488903a4ffe8ba544408bdd
08c484a2139ac16fb0fe901e36b16bc61ba86624de070fe00aeb93a812be1e5a
GET /maps/api/js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vatrostalac.hr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Tue, 29 Nov 2022 02:23:47 GMT
expires: Tue, 29 Nov 2022 02:53:47 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53404
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=10
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 02:23:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vatrostalac.hr/wp-content/themes/Impreza/css/style.min.css?ver=5.4
91.234.46.89200 OK 247 kB URL HTTP/2 vatrostalac.hr/wp-content/themes/Impreza/css/style.min.css?ver=5.4
IP 91.234.46.89:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 247 kB (247339 bytes)
Hash 6cdb19973c7891cfb68faebd17f9da4e
e26d20845520940de33e72cb9c4d6b674ba3f01a
1d0c448a3e433237e93cce4d2d6b5852097b8befa3d032024a9a9776e467d158
GET /wp-content/themes/Impreza/css/style.min.css?ver=5.4 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:54:43 GMT
accept-ranges: bytes
content-length: 247339
content-type: text/css
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 02:23:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vatrostalac.hr/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=5.2.17
91.234.46.89200 OK 28 kB URL HTTP/2 vatrostalac.hr/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=5.2.17
IP 91.234.46.89:0
File type ASCII text, with very long lines (27639), with no line terminators
Hash 36ea4805809e6b690c2f5126a0808297
4531470deab3efd0b8499f29a323a1b45f0efced
4354449ab7a164ef5486d12020f3bc403b8ff104a8da73e9f9332106b86b061c
GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=5.2.17 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:16 GMT
accept-ranges: bytes
content-length: 27639
content-type: text/css
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/css/icons.css?ver=3.16.26
91.234.46.89200 OK 1.6 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/css/icons.css?ver=3.16.26
IP 91.234.46.89:0
File type ASCII text, with CRLF line terminators
Hash d1bf2259b160993796fa278c4a652c72
1c19c51cd93f6bb7243b486b5dc7d7ecd4111b75
e18a7e7c066be5b361790012308feff237d8d95a175feee93f5304efbaf1651c
GET /wp-content/plugins/Ultimate_VC_Addons/assets/css/icons.css?ver=3.16.26 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 1599
content-type: text/css
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/fonts/vidcons.css?ver=5.2.17
91.234.46.89200 OK 823 B URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/fonts/vidcons.css?ver=5.2.17
IP 91.234.46.89:0
File type ASCII text, with CRLF line terminators
Hash 9c1c4fac455988bc18928fb6386d2414
6a9a36dd4ae99bb859892641000868ee5bee7f0b
7a4867e25c2802591dd027caff627d76f25de1e7113021640c137de582fa758a
GET /wp-content/plugins/Ultimate_VC_Addons/assets/fonts/vidcons.css?ver=5.2.17 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 823
content-type: text/css
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/themes/Impreza/css/responsive.min.css?ver=5.4
91.234.46.89200 OK 23 kB URL HTTP/2 vatrostalac.hr/wp-content/themes/Impreza/css/responsive.min.css?ver=5.4
IP 91.234.46.89:0
File type ASCII text, with very long lines (22694), with no line terminators
Hash 691371b6b7bdf3c09bb442d85b8c882f
24a4aade1b0a35aa6c6b93030fca673847209fcb
5af6f3a0c4fef68bc2d9d0f3b0a8a8ae104671f0607e7c0740257cf59372f7dd
GET /wp-content/themes/Impreza/css/responsive.min.css?ver=5.4 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:54:43 GMT
accept-ranges: bytes
content-length: 22694
content-type: text/css
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/modernizr-custom.min.js?ver=3.16.26
91.234.46.89200 OK 8.0 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/modernizr-custom.min.js?ver=3.16.26
IP 91.234.46.89:0
File type HTML document, ASCII text, with very long lines (8021), with no line terminators
Hash 1c353b1db0f06c7ded73ece19874c164
5bd17b3d94ace35a7ab206748d6e17f51595e722
906d313986fc2c2b307f453b433df60ec6aa106439948de08cc6bc1f8e9588ad
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/modernizr-custom.min.js?ver=3.16.26 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 8021
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
91.234.46.89200 OK 3.9 kB URL HTTP/2 vatrostalac.hr/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP 91.234.46.89:0
File type ASCII text, with very long lines (3704)
Hash e6784d91bf2c668bc4093063c5b15113
687e1d2e957a821280dbd205ae66182f16dfdc30
194ebae85ff853319e8668f23a4c5bf371a7d9f5d550a40980ab53026ddaaa17
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Thu, 15 Apr 2021 10:05:55 GMT
accept-ranges: bytes
content-length: 3929
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
91.234.46.89200 OK 6.8 kB URL HTTP/2 vatrostalac.hr/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
IP 91.234.46.89:0
File type ASCII text, with very long lines (6603)
Hash 2fb11e1fba920ce6191aaf65473894ff
858e35ea212ce2c331f6f2b4980b55fa5bac29f5
1b4f1024fa4887b47765e2ad4db9bc1f6ea96335f77fd44c62b8538d75e7190c
GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Thu, 15 Apr 2021 10:05:55 GMT
accept-ranges: bytes
content-length: 6827
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4
91.234.46.89200 OK 11 kB URL HTTP/2 vatrostalac.hr/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4
IP 91.234.46.89:0
File type ASCII text, with very long lines (10694)
Hash aa205fbfb232b9cb5f104142e7183b36
d73fef1ae7c9fc260dba69e57658793f01590eea
bf9d214a2ec4f01d57a72fa4417e1cd8f895800b277b6040eb98c77e4b49e668
GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Thu, 15 Apr 2021 10:05:55 GMT
accept-ranges: bytes
content-length: 10911
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-ui-labeledslider.min.js?ver=3.16.26
91.234.46.89200 OK 1.8 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-ui-labeledslider.min.js?ver=3.16.26
IP 91.234.46.89:0
File type ASCII text, with very long lines (1753), with no line terminators
Hash c7bfe6ba88deee6950492cd06e52d500
081903b1ec849c2c8cbd8142a7c15c20e58664f9
e252bd4f27487a15e67e5957dab8a52d02052028299a1c3e227b8f847daa8ac6
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-ui-labeledslider.min.js?ver=3.16.26 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 1753
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jparallax.min.js?ver=5.2.17
91.234.46.89200 OK 7.5 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jparallax.min.js?ver=5.2.17
IP 91.234.46.89:0
File type ASCII text, with very long lines (7477), with no line terminators
Hash 46bb09e5109211798947f72912c431b9
f6c5e2355bd666c0602899acacac5bd9235c0c26
78c063e3ce3b2baf61725224816468a0b0dcb6b5aa579d4aa8c2d3b07bf24bc8
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jparallax.min.js?ver=5.2.17 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 7477
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/vhparallax.min.js?ver=5.2.17
91.234.46.89200 OK 3.4 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/vhparallax.min.js?ver=5.2.17
IP 91.234.46.89:0
File type ASCII text, with very long lines (3435), with no line terminators
Hash 4370101d230ef783bc1c98edb1b5eb4a
b46484dd9b3f9879c4306b58e13a759615d0d144
1e0773abd8ee73197951130272e5e2812bef73893d705e26f86b1a4a082da62b
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/vhparallax.min.js?ver=5.2.17 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 3435
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=5.2.17
91.234.46.89200 OK 46 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=5.2.17
IP 91.234.46.89:0
File type ASCII text, with very long lines (31956)
Hash 9cdbaaa2ef286dd768fccda0845c5ff8
2183eba7433550d2d8ddb3384e82d008912c8f05
b9fb0f1da81f72b941dce1b42eb66762a47d8989fc891c8866ea0b1e2b69e5fe
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=5.2.17 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 45582
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
91.234.46.89200 OK 3.1 kB URL HTTP/2 vatrostalac.hr/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
IP 91.234.46.89:0
File type ASCII text, with very long lines (2927)
Hash 412416b5df69805b1e084e50d4283c2f
b8c47463c0793854638a8981cfad35503f393297
7e8d54d6c6a4ebd0237786d41ff5d205096eda696f2a5b591e074fe94ba3b3af
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Thu, 15 Apr 2021 10:05:55 GMT
accept-ranges: bytes
content-length: 3142
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/sitepress-multilingual-cms/res/flags/de.png
91.234.46.89200 OK 250 B URL HTTP/2 vatrostalac.hr/wp-content/plugins/sitepress-multilingual-cms/res/flags/de.png
IP 91.234.46.89:0
File type PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 9106b58cd67a757d34013ad61e826fcb
5f01f848404a402ed52a377b718236d444d3205b
fb8abf4975a70816d1ecb0e3dff7ed44ff73201795790a55b4abfb0d1b6d162f
GET /wp-content/plugins/sitepress-multilingual-cms/res/flags/de.png HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Thu, 11 Mar 2021 14:53:24 GMT
accept-ranges: bytes
content-length: 250
content-type: image/png
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/sitepress-multilingual-cms/res/flags/en.png
91.234.46.89200 OK 600 B URL HTTP/2 vatrostalac.hr/wp-content/plugins/sitepress-multilingual-cms/res/flags/en.png
IP 91.234.46.89:0
File type PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 2878f64a0217a154e531853f6a822c65
ac7a53e9f53b9de8a344c38222e217d50d559b83
3f47c75fa68e49b1cdca50c61e9cd6603b57c521e5e6809df59a4a15e291a4ef
GET /wp-content/plugins/sitepress-multilingual-cms/res/flags/en.png HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Thu, 11 Mar 2021 14:53:24 GMT
accept-ranges: bytes
content-length: 600
content-type: image/png
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/background-style.min.css?ver=3.16.26
91.234.46.89200 OK 9.3 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/background-style.min.css?ver=3.16.26
IP 91.234.46.89:0
File type ASCII text, with very long lines (9312), with no line terminators
Hash 2caf917503c8c9bd6395e9cbd1977d60
7e6eb7ec39997bd766a51192e7cc299eff47ba97
1799f5f4c1ef63cf01499e15a4cc47beaa351c2661b4d1c4f6b9443e66ddef8e
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/background-style.min.css?ver=3.16.26 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 9312
content-type: text/css
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/uploads/2018/10/Logo.svg
91.234.46.89200 OK 35 kB URL HTTP/2 vatrostalac.hr/wp-content/uploads/2018/10/Logo.svg
IP 91.234.46.89:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (1088), with CRLF line terminators
Hash 17b0ee29382676606da374d5ebfb1b34
73c4f0ed45bccb6ca1974111ab7185e41ce6e2c6
e951eab03188f474b282307b7f26e00c3a44ac9006dbb26b2426d5827c65045e
GET /wp-content/uploads/2018/10/Logo.svg HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Thu, 25 Oct 2018 07:52:45 GMT
accept-ranges: bytes
content-length: 34864
content-type: image/svg+xml
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/mb-YTPlayer.min.js?ver=5.2.17
91.234.46.89200 OK 62 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/mb-YTPlayer.min.js?ver=5.2.17
IP 91.234.46.89:0
File type HTML document, ASCII text, with very long lines (31977)
Hash 7b28b4b168e9fb6224e4f9854b1dbfd0
c6e554374abc7d2c71198ccebd10435f2d9cfc37
88bfd5d500ae39a66df6f1fce014461b0773bb32a840817c7d910e51eb2f8079
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/mb-YTPlayer.min.js?ver=5.2.17 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 62348
content-type: application/javascript
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.71.202.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.71.202.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zccB5xhb10ogC8u+NjpnRg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NHiiOOgiYyzQ/yja5pJ0i3cZ/qs=
vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
91.234.46.89404 Not Found 178 kB URL HTTP/2 vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
IP 91.234.46.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26722), with CRLF, LF line terminators
Size 178 kB (177720 bytes)
Hash 0f25293501ab99f952a0650e7ac7497d
cc6d39b22e3338767f5e48c3b08fc26647a1df21
9f5c8b785e94013f8a856df6ef178aabadd5b95c9d867b0f9459a6953ad93dc3
Analyzer Verdict Alert fortinet Phishing
GET /aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://vatrostalac.hr/wp-json/>; rel="https://api.w.org/"
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-type: text/html; charset=UTF-8
set-cookie: PH_HPXY_CHECK=s1; path=/
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-ui.min.js?ver=3.16.26
91.234.46.89200 OK 91 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-ui.min.js?ver=3.16.26
IP 91.234.46.89:0
File type ASCII text, with very long lines (31987)
Hash 529f48c241ee0caca1caff1ccc56dbb8
a8d89d2fa8dc2b35cd9381948661604d2f566ff7
3eac41db92909951f69dba6b41b3355f0bc716dd1912c85f43839237023c0a10
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-ui.min.js?ver=3.16.26 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 91040
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/modal-all.min.js?ver=3.16.26
91.234.46.89200 OK 85 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/modal-all.min.js?ver=3.16.26
IP 91.234.46.89:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (31993)
Hash 1863ae249a4ca37dcbfa99f2d5b41ce1
ad3abb2f90aca5114c1371018e75c83f69e8d347
48e0560e637a4f535c36f13f71b74e96b62ef5ba8681eb1ed957a191445498ea
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/modal-all.min.js?ver=3.16.26 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 84825
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-includes/js/imagesloaded.min.js?ver=3.2.0
91.234.46.89200 OK 8.1 kB URL HTTP/2 vatrostalac.hr/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP 91.234.46.89:0
File type ASCII text, with very long lines (7996)
Hash 7e97ab52c3df75e9053002bb59f2cdd5
502edaa98677c743246149deb3a76f5ff65272dd
11e15f1d64a63cb498d0d42720a688ed15bf78393d8c460d695a110244c066e3
GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Wed, 23 May 2018 10:05:31 GMT
accept-ranges: bytes
content-length: 8113
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-includes/js/wp-embed.min.js?ver=5.2.17
91.234.46.89200 OK 1.4 kB URL HTTP/2 vatrostalac.hr/wp-includes/js/wp-embed.min.js?ver=5.2.17
IP 91.234.46.89:0
File type ASCII text, with very long lines (1391), with no line terminators
Hash 570ae0f3c201604926ea599d3d1f6c04
2c29243a73660964d4712b969d2a15e27777bc14
5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b
GET /wp-includes/js/wp-embed.min.js?ver=5.2.17 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Thu, 15 Apr 2021 10:05:55 GMT
accept-ranges: bytes
content-length: 1391
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-appear.min.js?ver=3.16.26
91.234.46.89200 OK 1.4 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-appear.min.js?ver=3.16.26
IP 91.234.46.89:0
File type ASCII text, with very long lines (1430), with no line terminators
Hash 82ecd80a230f5845e8a1859e606ff600
9e3298b409824a8c1031ca2fabba5b1973cd8384
ed5b0f10d76535a66cf69210fb0656ada3621dc0eaad98f13dc37eed471cb728
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-appear.min.js?ver=3.16.26 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 1430
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-includes/js/masonry.min.js?ver=3.3.2
91.234.46.89200 OK 29 kB URL HTTP/2 vatrostalac.hr/wp-includes/js/masonry.min.js?ver=3.3.2
IP 91.234.46.89:0
File type ASCII text, with very long lines (28817)
Hash c54e75edf5cbaf412bc16ba4145f6032
67638430c92c23cedb89db038627876d361135c0
733d7c26a5fb7240e83e8af2c822218b321b5143e28c2dd65ab2492297ac6bd7
GET /wp-includes/js/masonry.min.js?ver=3.3.2 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Wed, 23 May 2018 10:05:31 GMT
accept-ranges: bytes
content-length: 28953
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/custom.min.js?ver=3.16.26
91.234.46.89200 OK 21 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/custom.min.js?ver=3.16.26
IP 91.234.46.89:0
File type HTML document, ASCII text, with very long lines (21409), with no line terminators
Hash 643934cfc39bee9caaa6e01084a895ce
581a6d2798f9c2c843500a3d28a3989037183866
b707429da9ec5581f7127fe22903e2e2391335b5615eea4a2ea1be0c7340b97f
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/custom.min.js?ver=3.16.26 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 21409
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/gdpr-cookie-compliance/dist/scripts/main.js?ver=4.9.2
91.234.46.89200 OK 59 kB URL HTTP/2 vatrostalac.hr/wp-content/plugins/gdpr-cookie-compliance/dist/scripts/main.js?ver=4.9.2
IP 91.234.46.89:0
File type ASCII text, with very long lines (31853)
Hash 5be60fa314737c258aa36f8f00250c4e
9b3a801fe3a5ade76cf22e4892df17eb12b5ff5a
4af46194ee902b043845a782e22ec08547da87316251efbc38b5ff110cf17631
GET /wp-content/plugins/gdpr-cookie-compliance/dist/scripts/main.js?ver=4.9.2 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Wed, 09 Nov 2022 15:16:47 GMT
accept-ranges: bytes
content-length: 59026
content-type: application/javascript
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 02:23:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
216.58.207.195200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vatrostalac.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:13:13 GMT
expires: Tue, 28 Nov 2023 21:13:13 GMT
cache-control: public, max-age=31536000
age: 18635
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyCMIT5lu.woff2
216.58.207.195200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyCMIT5lu.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30448, version 1.0\012- data
Hash f6a5275600e3447cfa07e0ee749c765b
c5b0110362478148228002baf85595775cf53fd1
ab47b8f50fe4195819b4af2ac0fffb2b3543502e11282d492d6cd73c124845cf
GET /s/raleway/v28/1Ptug8zYS_SKggPNyCMIT5lu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vatrostalac.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30448
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:36:09 GMT
expires: Tue, 28 Nov 2023 21:36:09 GMT
cache-control: public, max-age=31536000
age: 17259
last-modified: Mon, 18 Jul 2022 20:08:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 02:23:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vatrostalac.hr/wp-content/themes/Impreza/fonts/fa-regular-400.woff2
91.234.46.89200 OK 110 kB URL HTTP/2 vatrostalac.hr/wp-content/themes/Impreza/fonts/fa-regular-400.woff2
IP 91.234.46.89:0
File type Web Open Font Format (Version 2), TrueType, length 110020, version 1.0\012- data
Size 110 kB (110020 bytes)
Hash 0950f9f61f5a493c0f5d8e3df26cfbf2
6cf4f290d94e769e8c09d3183d6c868f3d5e9b1c
3cc49fc5ded58b415e3f3fd2f07cff4f18da9e1e09602b5085fcd3f0cc85a486
GET /wp-content/themes/Impreza/fonts/fa-regular-400.woff2 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:48 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:54:43 GMT
accept-ranges: bytes
content-length: 110020
content-type: font/woff2
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/themes/Impreza/fonts/fa-solid-900.woff2
91.234.46.89200 OK 92 kB URL HTTP/2 vatrostalac.hr/wp-content/themes/Impreza/fonts/fa-solid-900.woff2
IP 91.234.46.89:0
File type Web Open Font Format (Version 2), TrueType, length 91792, version 1.0\012- data
Hash 6897be186b147b75c308c29eb0782f14
4190cab3384f7769ffb33f277cc20be68eb32c18
a238cffffbfea4c2868fca1b142a3a9690574537a38c857dbe309ec27b033eb3
GET /wp-content/themes/Impreza/fonts/fa-solid-900.woff2 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:48 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:54:43 GMT
accept-ranges: bytes
content-length: 91792
content-type: font/woff2
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/uploads/2018/10/fffa-350x350.png
91.234.46.89200 OK 24 kB URL HTTP/2 vatrostalac.hr/wp-content/uploads/2018/10/fffa-350x350.png
IP 91.234.46.89:0
File type PNG image data, 350 x 350, 8-bit/color RGBA, non-interlaced\012- data
Hash 1de7e05fee1533444f224b85bf6017fa
23328010775aaa9f43a573256cb8df973ce9a87b
7307ffcbf7f2fc9be84234a8f52556144f40dad419e918ae7fa38eeeb06d2149
GET /wp-content/uploads/2018/10/fffa-350x350.png HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:48 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Wed, 24 Oct 2018 20:16:32 GMT
accept-ranges: bytes
content-length: 23700
content-type: image/png
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/uploads/2018/10/fffa-150x150.png
91.234.46.89200 OK 5.8 kB URL HTTP/2 vatrostalac.hr/wp-content/uploads/2018/10/fffa-150x150.png
IP 91.234.46.89:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 607ed01ad9313ae7a6da8415bf560243
1acaa84ca89581b91b674bc8f1134da8e9f07d7c
d32acdd252ec9ee5ef5919f34c45e8ce10071b9e2604dc2c1ae3aaad981cc03e
GET /wp-content/uploads/2018/10/fffa-150x150.png HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:48 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Wed, 24 Oct 2018 20:16:32 GMT
accept-ranges: bytes
content-length: 5764
content-type: image/png
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6517
Expires: Tue, 29 Nov 2022 04:12:26 GMT
Date: Tue, 29 Nov 2022 02:23:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6517
Expires: Tue, 29 Nov 2022 04:12:26 GMT
Date: Tue, 29 Nov 2022 02:23:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6517
Expires: Tue, 29 Nov 2022 04:12:26 GMT
Date: Tue, 29 Nov 2022 02:23:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6517
Expires: Tue, 29 Nov 2022 04:12:26 GMT
Date: Tue, 29 Nov 2022 02:23:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uGocx-Lv8ieJVvICjnTGQZyzaQzjVdICX2RZaNyBTQvUKeIcNxaCJQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:38:02 GMT
age: 67547
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae2e2986caa15a90b615147f229b51ec
c6dfd277cdbd057472e6df6ad1a200f50684d442
ec3799922c38ee6394601744ff4b2c405ee44c4718a2b90c104134657f8b480b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9015
x-amzn-requestid: 9f657586-a44e-46f0-8c38-f1bf26142486
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVOlEE6ZoAMFUPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852aed-1da2400f4165dd553418f8b9;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:41:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mqdz1NhVCqmSrhYLIF0miDzrBiS82SUU6ZRFzDMllbCwS70hC0rMRQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:55 GMT
age: 16614
etag: "c6dfd277cdbd057472e6df6ad1a200f50684d442"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 823e92f62ff7b3c2093828817d7f2866
c501de9eaa581a10b0b5fce40b54bb10f57f7c29
7d89669e23682f167b2fe1eff9edc5939112ec66b6b4e6389ef8aec78ccbdfe5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8921
x-amzn-requestid: 98baf100-c007-4c44-89aa-b9cf55fa3f94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnwFYToAMFoWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852964-1227b5a9100c206e0c64f4b2;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ivu6pzZ6dbt3I4tuFMg4oHcuPVdyNS-F3k_lQdmKoXFkdCfSseAEwQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:55 GMT
age: 16614
etag: "c501de9eaa581a10b0b5fce40b54bb10f57f7c29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9cd333c474420e235831d96ed881167e
5008d7344dd85ae61a598c17e7baf427def3e25d
2178a96e120661e43d8e8ed0df1fcf500caf4c58db9e1bedaf0706af0a80b286
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3944
x-amzn-requestid: 8a6732c1-72da-4a73-ba51-8533c6a01a9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNmfFgeIAMFjLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6385295c-0c807d93277bfb7f6b13c2ee;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:20 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oW4xFfsPp-Jmf28Uc88iZ2jLgtMRjn2gW0orrJ4K201r6Y6OlHkacQ==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:51 GMT
age: 16618
etag: "5008d7344dd85ae61a598c17e7baf427def3e25d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22e7d3e11e78242383e452adb9299016
035a1b4a2a7889787532ec2637d5c21e06daf672
990f18423bafc9cc3daaa1bd1290313b6cb3d3a391f642d01fd6797ad4fc9ca8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3004
x-amzn-requestid: 1e6e228a-fb73-4ed3-881b-6b0e5c8297c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrFRXoAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-45059338501b45d943d7e08c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rmBhEB-x2sOvI7XfEpZQ0-lXEDWZ4los77q017Im-Lwb32ZLA0Zvcg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 04:45:02 GMT
age: 77927
etag: "035a1b4a2a7889787532ec2637d5c21e06daf672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d574c4db20a68295dbd06cb08f5990b
433061bbb226048765a711deca3026ee3e52372f
8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9203
x-amzn-requestid: 8cba52d6-3c1c-495c-bb9d-3ba6f0adc7e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cHcHmGmQoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fa6fd-73abfa592ff223061401af9a;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 17:16:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lzXj01ht9kpuwONgKM0xM0QRu8G9M9oX6rwYzv_Q_sI09Y3-RIVF-A==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 03:47:05 GMT
age: 81404
etag: "433061bbb226048765a711deca3026ee3e52372f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway%3A400%2C700%2C800%2C900&subset=latin-ext&ver=5.2.17
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway%3A400%2C700%2C800%2C900&subset=latin-ext&ver=5.2.17
IP 142.250.74.10:0
GET /css?family=Raleway%3A400%2C700%2C800%2C900&subset=latin-ext&ver=5.2.17 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vatrostalac.hr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 02:23:47 GMT
date: Tue, 29 Nov 2022 02:23:47 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate.min.js?ver=3.16.26
91.234.46.89200 OK 0 B URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate.min.js?ver=3.16.26
IP 91.234.46.89:0
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate.min.js?ver=3.16.26 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 213936
content-type: application/javascript
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ultimate.min.css?ver=3.16.26
91.234.46.89200 OK 0 B URL HTTP/2 vatrostalac.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ultimate.min.css?ver=3.16.26
IP 91.234.46.89:0
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ultimate.min.css?ver=3.16.26 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:56:10 GMT
accept-ranges: bytes
content-length: 449719
content-type: text/css
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main-nf.css?ver=4.9.2
91.234.46.89200 OK 0 B URL HTTP/2 vatrostalac.hr/wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main-nf.css?ver=4.9.2
IP 91.234.46.89:0
GET /wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main-nf.css?ver=4.9.2 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Wed, 09 Nov 2022 15:16:47 GMT
accept-ranges: bytes
content-length: 82004
content-type: text/css
X-Firefox-Spdy: h2
vatrostalac.hr/wp-content/themes/Impreza/js/us.core.min.js?ver=5.4
91.234.46.89200 OK 0 B URL HTTP/2 vatrostalac.hr/wp-content/themes/Impreza/js/us.core.min.js?ver=5.4
IP 91.234.46.89:0
GET /wp-content/themes/Impreza/js/us.core.min.js?ver=5.4 HTTP/1.1
Host: vatrostalac.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vatrostalac.hr/aaboy/365/3a4a6e492951172884504438f41e0999/owaprocess.php
Connection: keep-alive
Cookie: PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 02:23:47 GMT
server: Apache
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Tue, 16 Oct 2018 14:54:43 GMT
accept-ranges: bytes
content-length: 109863
content-type: application/javascript
X-Firefox-Spdy: h2