Report - aszoran.hr/natus-aut/documents.zip

Report Overview

Submitted URL
aszoran.hr/natus-aut/documents.zip
IP
95.217.76.40
ASN
#24940 Hetzner Online GmbH
Submitted
2022-09-10 17:53:16
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
70

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.25
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	76 kB	69.16.175.10
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	302 B	62 kB	142.250.74.170
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	5.6 kB	142.250.74.3
platform.linkedin.com	3785	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	267 B	164 kB	2.22.244.90
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
aszoran.hr	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	353 B	588 B	95.217.76.40
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	978 B	2.7 kB	23.33.119.27
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.3 kB	135 kB	142.250.74.163
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.80.131.74
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	410 B	746 B	142.250.74.10
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
www.aszoran.hr	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.5 kB	1.1 MB	95.217.76.40
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	56 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-10	medium	aszoran.hr/natus-aut/documents.zip	Malware
2022-09-10	medium	www.aszoran.hr/natus-aut/documents.zip	Malware
2022-09-10	medium	www.aszoran.hr/hrvatski/naslovnica_1/	Malware
2022-09-10	medium	www.aszoran.hr/addons/js/jquery.classie/classie.js	Malware
2022-09-10	medium	www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js	Malware
2022-09-10	medium	www.aszoran.hr/addons/js/to-top/to-top-script.js	Malware
2022-09-10	medium	www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js	Malware
2022-09-10	medium	www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js	Malware
2022-09-10	medium	www.aszoran.hr/hrvatski/naslovnica_1/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed
2022-09-10	medium	aszoran.hr	Sinkholed

JavaScript (15)

	URL	Size	First Seen	Last Seen
	code.jquery.com/jquery-3.2.1.min.js	87 kB	2023-03-07	2024-04-19
Pretty URL code.jquery.com/jquery-3.2.1.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 11:40:16 Times Seen60857 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	www.aszoran.hr/addons/js/to-top/to-top-script.js	294 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/to-top/to-top-script.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 4098892a03fe0a069248944c28307cc2 4beb1d8e2c45512792d52581d56b03dd40c16024 97031164e39800c0e097d93c9bf249fba012fd34dece0f716b05e581024eb530 Loading...

	www.aszoran.hr/hrvatski/naslovnica_1/	819 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/hrvatski/naslovnica_1/ IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 9e336fc2025388ea1df456d33b7d728a ce27d208496cc2383c45bf7350b41d6e7720755d adbb2dd8c4137985ea7c48647dbcd1bcd2d6c60e675ec3d3ee45dffc4ffd6fe2 Loading...

	code.jquery.com/jquery-migrate-3.0.0.js	15 kB	2023-03-07	2024-03-04
Pretty URL code.jquery.com/jquery-migrate-3.0.0.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2024-03-04 03:44:58 Times Seen68 Hash 3a465b249cb5f68e904c94a47d3da683 33723207fcd0f514433521b035d421ced655de70 96c54e07edd8866e877b93244cedc1c3f5f0e0d5caef06184e2d58f8cff63eb3 Loading...

	www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js	1.3 kB	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash fd8856a4304962506fdf9af710391d1d 3b3584d0d647d9f7a172817528813f0c9abda9c4 8c265e202dac21911f007c0ed2d751b915ed012ecf2dd53f27ebaf3d13269364 Loading...

	www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js	1.8 kB	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 7bde2230740c65ea8113e47729df9e66 74333d17f24820fce5c96ba5514077c0a4eb3736 cf60081a30151ca8117c55e29eac8e9e27d24af74119081a2763e88b6212762b Loading...

	www.aszoran.hr/addons/js/jquery.slick.menu/jquery.slicknav.js	16 kB	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/jquery.slick.menu/jquery.slicknav.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 6b76a9cbd9a5d9106bcf23e70642407c 5211149af0c1576db3a0b700f3443ebf8109baed 1745479779e5f1a651548694c615c06cfe617303885cd9a847548c09840855a4 Loading...

	www.aszoran.hr/addons/js/browser-css-fix.php	10 kB	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/browser-css-fix.php IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 4117917bbdde7cef416654714b777b0d 8335f70435cf6d4adf91b3607ad4af08c1cb645d e8bd473ff1690816a139e944ccb9cbda61b6e98ee005c28cc4b2e86b9bbea58b Loading...

	platform.linkedin.com/in.js	521 kB	2023-03-07	2023-03-07
Pretty URL platform.linkedin.com/in.js IP 2.22.244.90 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:24:25 Last Seen2023-03-07 15:44:55 Times Seen1 Hash ef831f91fe07c25dbbb23de1d0b398c3 a28559d2588dd0b360294e7cfb1c1c2b3490fb5f f17199457dbd337b6489ac80396d3adb4036a07bcf482eeadca5ef96a94236fe Loading...

	www.aszoran.hr/hrvatski/naslovnica_1/	107 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/hrvatski/naslovnica_1/ IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash d7e4863afc969e2d536121edd5b70dba 51528407b7ae0ca00f229478470ec9582d3bcbc1 9634394a3e17188a0cbf9017f3f7e176765335c8b8b7adf2876b3d20e52ad45f Loading...

	www.aszoran.hr/addons/js/jquery.classie/classie.js	1.9 kB	2023-03-07	2024-03-29
Pretty URL www.aszoran.hr/addons/js/jquery.classie/classie.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2024-03-29 11:18:49 Times Seen126 Hash d3c2ce47c4784c4cd4740ab047371f85 7eafb00a912e475500ac1a5ec6f8ead5299c4ebb 469273fc70486fd947d2f8822ef14108d6219ca26b4e0306769e6ae8473259ba Loading...

	www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js	65 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash a151c4a8ba3d021d279a8e099cfb408a d4a874100c4a05e1b89624f75051db59a2d9d07f acf7351a4a20ca736754d303e9c09227f8190e0f6237716c125bdafb64d66226 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 12:14:49 Times Seen36958935 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.aszoran.hr/hrvatski/naslovnica_1/	504 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/hrvatski/naslovnica_1/ IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 148c688c710b13cf5f2ac9ff872bb2cb 4802be36150fbb3882c520d2319b0d25160b4118 150740aa8d8a42c4c83ac22cdf6f0a371d0659326d1bdea9a19fd5df27dc66ec Loading...

	www.aszoran.hr/hrvatski/naslovnica_1/	107 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/hrvatski/naslovnica_1/ IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 5742d59195256a6ccf1eb238a5bf5cfe 4f2f01a76a84b8b577286ad2368884eea2bac291 2b7e630251a0b57034ade8c209268a82b91d0739ccf9d51b0c8c024e2b767c6d Loading...

HTTP Transactions (65)

URL IP Response Size

aszoran.hr/natus-aut/documents.zip

95.217.76.40

301 Moved Permanently

253 B

URL HTTP/1.1
aszoran.hr/natus-aut/documents.zip
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
253 B (253 bytes)
Hash
9cb05f149124f011fbc674399945e42a
8b89246fd56a5f5afdf6cc708f3f9698573bdb25
76f71bc8ae0aaea1d35ef9a3edd5c587919ac08980ce2a1fc49c83ab0b3b9947

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /natus-aut/documents.zip HTTP/1.1
Host: aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sat, 10 Sep 2022 17:53:05 GMT
Server: Apache
Location: http://www.aszoran.hr/natus-aut/documents.zip
Cache-Control: max-age=172800
Expires: Mon, 12 Sep 2022 17:53:05 GMT
Content-Length: 253
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 10 Sep 2022 17:06:45 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XwgbPCG2gPyLWL7fVjfMNiJ0OHt4lH0zhAsmkUN8t2V3ND5nmKZiRg==
Age: 2780

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f55e483f32b3fd50b1a2414aaada9b61
9d6b22edb98866e002e3b1ace44dfb0f8d00935f
4b09e1d2b887ded061e4ec5f82ec70ce699eeed428acc6b4fd3ef10ed9233c89

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B09E1D2B887DED061E4EC5F82EC70CE699EEED428ACC6B4FD3EF10ED9233C89"
Last-Modified: Thu, 08 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5927
Expires: Sat, 10 Sep 2022 19:31:53 GMT
Date: Sat, 10 Sep 2022 17:53:06 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.25

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.25:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 10 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KgK_ns-epGA2dW01ct8ZltAUXDtUhTimMJISH-ld_eYb3X03HVVl2Q==
age: 38154
X-Firefox-Spdy: h2

www.aszoran.hr/natus-aut/documents.zip

95.217.76.40

302 Found

0 B

URL HTTP/1.1
www.aszoran.hr/natus-aut/documents.zip
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /natus-aut/documents.zip HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Pragma: no-cache
Set-Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf; path=/
Location: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0, max-age=300, public, no-cache, no-store, must-revalidate
Expires: Mon, 12 Dec 1982 06:00:00 GMT, 0
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.aszoran.hr/hrvatski/naslovnica_1/

95.217.76.40

200 OK

10 kB

URL HTTP/1.1
www.aszoran.hr/hrvatski/naslovnica_1/
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size
10 kB (10317 bytes)
Hash
4117917bbdde7cef416654714b777b0d
8335f70435cf6d4adf91b3607ad4af08c1cb645d
e8bd473ff1690816a139e944ccb9cbda61b6e98ee005c28cc4b2e86b9bbea58b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /hrvatski/naslovnica_1/ HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Pragma: no-cache
Cache-Control: max-age=300, must-revalidate, max-age=300, public, no-cache, no-store, must-revalidate
Expires: Mon, 12 Dec 1982 06:00:00 GMT, 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:53:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.aszoran.hr/addons/css/reset.css

95.217.76.40

200 OK

568 B

URL HTTP/1.1
www.aszoran.hr/addons/css/reset.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (438)
Size
568 B (568 bytes)
Hash
f3625005c5c910b8f7c334ef92a85c9d
f297489dcd385187db3dcad5badad120a1e4c704
f4dbb920fd66facb0156b415e60afe568ffb39907c8535a6db6d28a9efee7034

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /addons/css/reset.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 568
Cache-Control: max-age=2592000
Expires: Mon, 10 Oct 2022 17:53:06 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.aszoran.hr/addons/js/jquery.classie/classie.js

95.217.76.40

200 OK

1.9 kB

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.classie/classie.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
1.9 kB (1872 bytes)
Hash
d3c2ce47c4784c4cd4740ab047371f85
7eafb00a912e475500ac1a5ec6f8ead5299c4ebb
469273fc70486fd947d2f8822ef14108d6219ca26b4e0306769e6ae8473259ba

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.classie/classie.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 1872
Cache-Control: max-age=172800
Expires: Mon, 12 Sep 2022 17:53:06 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.aszoran.hr/addons/css/basic.css

95.217.76.40

200 OK

2.1 kB

URL HTTP/1.1
www.aszoran.hr/addons/css/basic.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
2.1 kB (2071 bytes)
Hash
41ea52392bc72cad4e5f02834d86636d
567685f6c84205c22fdf3f1a7596fdcdca05f90a
5b505e0e4b7d93f86dea60203c27f26d11b30959888d5321ac15c48331b59cf5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /addons/css/basic.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 13:20:28 GMT
Accept-Ranges: bytes
Content-Length: 2071
Cache-Control: max-age=2592000
Expires: Mon, 10 Oct 2022 17:53:06 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

code.jquery.com/jquery-migrate-3.0.0.js

69.16.175.10

200 OK

5.0 kB

URL HTTP/1.1
code.jquery.com/jquery-migrate-3.0.0.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text
Size
5.0 kB (4960 bytes)
Hash
a1ab44f15ae27f50bd5432a0d8a9c41a
da6cac4b271724aff3d13efd17a3154824aeaf20
cbf744382777029fa06a71bcd98055902ad3f94ba40e31d69e381b501813e23b

HTTP Headers

GET /jquery-migrate-3.0.0.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 4960
Content-Type: application/javascript; charset=utf-8
Last-Modified: Fri, 20 Aug 2021 17:47:53 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"611feac9-3a4b"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1662832386.dop229.sk1.t,1662832386.cds220.sk1.c

code.jquery.com/ui/1.10.1/themes/base/jquery-ui.css

69.16.175.10

200 OK

5.9 kB

URL HTTP/1.1
code.jquery.com/ui/1.10.1/themes/base/jquery-ui.css
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (339)
Size
5.9 kB (5903 bytes)
Hash
ff960b5f26bc3f99c208134bd3d25bc5
bd71bfee058ccecf5b3d9cdc26258e6f4166755d
953952aca9c675f4a683ffb2facf35cf062688dafd4d7b50ca95df0732d8f89c

HTTP Headers

GET /ui/1.10.1/themes/base/jquery-ui.css HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 5903
Content-Type: text/css
Last-Modified: Wed, 16 Feb 2022 10:50:40 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"620cd700-7e0a"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1662832386.dop017.sk1.t,1662832386.cds254.sk1.c

www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.css

95.217.76.40

200 OK

519 B

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
519 B (519 bytes)
Hash
710811976ad0030b32af6178727192fa
04143d9251564a91c3caa3a3d5189642f0a4a1c8
5d453293ab8cc49e609e72b5bb242b62b2021c825f52625d518415cf94156deb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.social/jquery.social.custom.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 519
Cache-Control: max-age=2592000
Expires: Mon, 10 Oct 2022 17:53:06 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js

95.217.76.40

200 OK

1.3 kB

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
1.3 kB (1256 bytes)
Hash
fd8856a4304962506fdf9af710391d1d
3b3584d0d647d9f7a172817528813f0c9abda9c4
8c265e202dac21911f007c0ed2d751b915ed012ecf2dd53f27ebaf3d13269364

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.social/jquery.social.custom.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 1256
Cache-Control: max-age=172800
Expires: Mon, 12 Sep 2022 17:53:06 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.aszoran.hr/addons/js/to-top/to-top-script.js

95.217.76.40

200 OK

294 B

URL HTTP/1.1
www.aszoran.hr/addons/js/to-top/to-top-script.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
294 B (294 bytes)
Hash
4098892a03fe0a069248944c28307cc2
4beb1d8e2c45512792d52581d56b03dd40c16024
97031164e39800c0e097d93c9bf249fba012fd34dece0f716b05e581024eb530

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/to-top/to-top-script.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 294
Cache-Control: max-age=172800
Expires: Mon, 12 Sep 2022 17:53:06 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

ajax.googleapis.com/ajax/libs/jqueryui/1.10.2/jquery-ui.min.js

142.250.74.170

200 OK

61 kB

URL HTTP/1.1
ajax.googleapis.com/ajax/libs/jqueryui/1.10.2/jquery-ui.min.js
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32127)
Size
61 kB (60637 bytes)
Hash
a4fae3bd93aeeff434297afd1aee71fa
fc48093eea0f31043d6e4b863d74c001ebba7688
c425c0431c3199eaa90590fcf017a18f35226445bd531ffcf0aa7dd0d100e42d

HTTP Headers

GET /ajax/libs/jqueryui/1.10.2/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 60637
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 08 Sep 2022 10:41:25 GMT
Expires: Fri, 08 Sep 2023 10:41:25 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 198701
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8

www.aszoran.hr/addons/js/to-top/ui.totop.css

95.217.76.40

200 OK

762 B

URL HTTP/1.1
www.aszoran.hr/addons/js/to-top/ui.totop.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
762 B (762 bytes)
Hash
ca7a1a5fc8651a6031fcda2d2c02c1fa
aaaad4310be94423d593c1f15c88f5dde9c9850f
e9218adb87f90d04920f9c858101bcaa80c40226f68cf3a7763242d09b266050

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /addons/js/to-top/ui.totop.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 762
Cache-Control: max-age=2592000
Expires: Mon, 10 Oct 2022 17:53:06 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

www.aszoran.hr/addons/js/jquery.slick.menu/slicknav.css

95.217.76.40

200 OK

3.6 kB

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.slick.menu/slicknav.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
3.6 kB (3563 bytes)
Hash
6dcddef83a29e58a1ec3b596a3b82fd8
e332e5e86f611d6d532442e4eb84bd1c9462ea67
b1cea6545db4ecfb440481a06d69a2ca7b44b8bc61d7012a973f84b11c04976b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.slick.menu/slicknav.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 3563
Cache-Control: max-age=2592000
Expires: Mon, 10 Oct 2022 17:53:06 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js

95.217.76.40

200 OK

1.8 kB

URL HTTP/1.1
www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document, ASCII text
Size
1.8 kB (1797 bytes)
Hash
7bde2230740c65ea8113e47729df9e66
74333d17f24820fce5c96ba5514077c0a4eb3736
cf60081a30151ca8117c55e29eac8e9e27d24af74119081a2763e88b6212762b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/to-top/jquery.ui.totop.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 1797
Cache-Control: max-age=172800
Expires: Mon, 12 Sep 2022 17:53:06 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

code.jquery.com/jquery-latest.min.js

69.16.175.10

200 OK

33 kB

URL HTTP/1.1
code.jquery.com/jquery-latest.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (32086)
Size
33 kB (33202 bytes)
Hash
a39e9fcc2a78d5b1ed25b5f853c17a22
f1d1d30d35146a7adee855becba02b776366f169
a0581d3f2c05cfb302f81d2894c114da758e14a290bd4f240c7b63628469ee8d

HTTP Headers

GET /jquery-latest.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 33202
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 16 Feb 2022 10:50:39 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"620cd6ff-1762a"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1662832386.dop216.sk1.t,1662832386.cds256.sk1.c

www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js

95.217.76.40

200 OK

65 B

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
65 B (65 bytes)
Hash
a151c4a8ba3d021d279a8e099cfb408a
d4a874100c4a05e1b89624f75051db59a2d9d07f
acf7351a4a20ca736754d303e9c09227f8190e0f6237716c125bdafb64d66226

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.slick.menu/nav-slick-custom.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 65
Cache-Control: max-age=172800
Expires: Mon, 12 Sep 2022 17:53:06 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.aszoran.hr/templates/css/style.css

95.217.76.40

200 OK

27 kB

URL HTTP/1.1
www.aszoran.hr/templates/css/style.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
27 kB (26944 bytes)
Hash
0d5f9869e3c2a97c1ca08feb99716f19
d83c097811151e64a11ae89b6969e415368f3539
9d21aea4c50ba6cf4e8b64f5ed4eca45624f3a96dace62bcc0fab26c42f627db

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/css/style.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Fri, 27 Oct 2017 08:55:52 GMT
Accept-Ranges: bytes
Content-Length: 26944
Cache-Control: max-age=2592000
Expires: Mon, 10 Oct 2022 17:53:06 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.aszoran.hr/templates/css/media_queries.css

95.217.76.40

200 OK

5.1 kB

URL HTTP/1.1
www.aszoran.hr/templates/css/media_queries.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
5.1 kB (5132 bytes)
Hash
19924c037517e6e34d4786c2a88a9c76
f5e8023769faf48a507a55686547a51471d40e0d
2d629d118001a924f0bc0a02ad63f46c18ceeb4359ea9bb10b5b3c080cb9407a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/css/media_queries.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Thu, 20 Jul 2017 14:12:42 GMT
Accept-Ranges: bytes
Content-Length: 5132
Cache-Control: max-age=2592000
Expires: Mon, 10 Oct 2022 17:53:06 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

code.jquery.com/jquery-3.2.1.min.js

69.16.175.10

200 OK

30 kB

URL HTTP/2
code.jquery.com/jquery-3.2.1.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (32058)
Size
30 kB (30125 bytes)
Hash
148f8d3ffd9cc02048c5f4d1cc83c407
9f2b89cfd151be6a29b4d43ad64d164fb8471046
4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e

HTTP Headers

GET /jquery-3.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.aszoran.hr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 10 Sep 2022 17:53:06 GMT
content-encoding: gzip
content-length: 30125
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1662832386.dop222.sk1.t,1662832386.cds072.sk1.hn,1662832386.cds222.sk1.c
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f1fa8224847ea7d9b4dc8e598fae4142
cb703a2944e58d97dd48a7e56ee9f4510ced78b4
920094aad2886535e2ba9e38d4731f63fbde93038d92b38f0030b0a0f47c2ac8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:53:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.aszoran.hr/hrvatski/naslovnica_1/

95.217.76.40

200 OK

10 kB

URL HTTP/1.1
www.aszoran.hr/hrvatski/naslovnica_1/
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size
10 kB (10317 bytes)
Hash
4117917bbdde7cef416654714b777b0d
8335f70435cf6d4adf91b3607ad4af08c1cb645d
e8bd473ff1690816a139e944ccb9cbda61b6e98ee005c28cc4b2e86b9bbea58b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /hrvatski/naslovnica_1/ HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Connection: keep-alive
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Pragma: no-cache
Cache-Control: max-age=300, must-revalidate, max-age=300, public, no-cache, no-store, must-revalidate
Expires: Mon, 12 Dec 1982 06:00:00 GMT, 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

platform.linkedin.com/in.js

2.22.244.90

200 OK

163 kB

URL HTTP/1.1
platform.linkedin.com/in.js
IP
2.22.244.90:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (41594)
Size
163 kB (163280 bytes)
Hash
948247d5be08b1e6014218f0e423c67f
4f00f1a66bf6721c83b475ef2f9077a9bb5e1678
95c2e5c81363c4fb336f29f5fb74dc4eaaaba9aa6a6cccbbe3df5f8fcddc0a94

HTTP Headers

GET /in.js HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Server: Play
Expires: Sat, 10 Sep 2022 18:01:14 GMT
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Content-Type: text/javascript; charset=UTF-8
Content-Length: 163280
X-Li-Fabric: prod-lva1
X-Li-Pop: prod-lva1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAXoVZw71tfGnTroYAy3wA==
Date: Sat, 10 Sep 2022 17:53:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
X-CDN-CLIENT-IP-VERSION: IPV4
X-CDN: AKAM

www.aszoran.hr/upload/images/contents/thumbs/64x64-4-autoelektrika.png

95.217.76.40

200 OK

1.4 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/contents/thumbs/64x64-4-autoelektrika.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1439 bytes)
Hash
0fc908ab4c3dcb4e20f862bce9a5b1be
64581289e8a0117ce056fa7eca2af4c5fbcd5ad6
f2699d17a3d4e7a5ff4f1daf775acf72f95ea803598f6cfddeb18a2490afe3b4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/contents/thumbs/64x64-4-autoelektrika.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Fri, 25 Aug 2017 07:43:30 GMT
Accept-Ranges: bytes
Content-Length: 1439
Cache-Control: max-age=31536000
Expires: Sun, 10 Sep 2023 17:53:06 GMT
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/upload/images/contents/thumbs/64x64-7-gume.png

95.217.76.40

200 OK

4.6 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/contents/thumbs/64x64-7-gume.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
4.6 kB (4587 bytes)
Hash
a4c33ea6246d63f6e550ae60361918c4
cd57f10d70000320f52c038676a7ab9d5fe9964a
e4d2068641095c15bef9f544bfdf746ae790f2f7ada818a8fd3eb6858fe928ef

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/contents/thumbs/64x64-7-gume.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Tue, 13 Jun 2017 07:24:52 GMT
Accept-Ranges: bytes
Content-Length: 4587
Cache-Control: max-age=31536000
Expires: Sun, 10 Sep 2023 17:53:06 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/upload/images/site/-logo.png

95.217.76.40

200 OK

5.8 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/site/-logo.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 216 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size
5.8 kB (5847 bytes)
Hash
45aa653360c1307a1045909d5691d443
a4956f170245b13f50dad649edfbfcf29377fc2a
cbd9cd6d6b6b0065364601031d22e61f5f380509fd1cc12eeabaabaf210a321c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/site/-logo.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 11:23:02 GMT
Accept-Ranges: bytes
Content-Length: 5847
Cache-Control: max-age=31536000
Expires: Sun, 10 Sep 2023 17:53:06 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/upload/images/contents/thumbs/64x64-8-lageri-kotaca.png

95.217.76.40

200 OK

3.9 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/contents/thumbs/64x64-8-lageri-kotaca.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3912 bytes)
Hash
1a0116f856f5e2a0fa3ea22428652f01
28b06e1c11aff7e9ec60698874b72676dbdb7479
b481845f23a1155f94b6cd3124da55653be12d9bb7dd23ab59abf1ff15976ffa

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/contents/thumbs/64x64-8-lageri-kotaca.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Tue, 13 Jun 2017 07:22:00 GMT
Accept-Ranges: bytes
Content-Length: 3912
Cache-Control: max-age=31536000
Expires: Sun, 10 Sep 2023 17:53:06 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/templates/img/phone-call-icon.png

95.217.76.40

200 OK

3.0 kB

URL HTTP/1.1
www.aszoran.hr/templates/img/phone-call-icon.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (2979 bytes)
Hash
e52e9613bebf6e9ef646c42183ece3bb
276422b1fcfe9a0f04441990913c067c5b38143e
7f89a16a7925d29f9bb125f33437400ad85a41bc90e1b607b2fb62cf1d4bdd1c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/img/phone-call-icon.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2017 11:35:48 GMT
Accept-Ranges: bytes
Content-Length: 2979
Cache-Control: max-age=31536000
Expires: Sun, 10 Sep 2023 17:53:06 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/upload/images/contents/thumbs/64x64-5-servis-i-odrzavanje-korisnika.png

95.217.76.40

200 OK

2.5 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/contents/thumbs/64x64-5-servis-i-odrzavanje-korisnika.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2456 bytes)
Hash
628c67564db567121bb01704670e8658
36db5a5c0a25556992b6f41e65046e0762e78cbd
19ad4a4d6b0e0b51680a373d290d6402f95041f888a3821eed3f0e247816dd39

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/contents/thumbs/64x64-5-servis-i-odrzavanje-korisnika.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Tue, 13 Jun 2017 07:25:10 GMT
Accept-Ranges: bytes
Content-Length: 2456
Cache-Control: max-age=31536000
Expires: Sun, 10 Sep 2023 17:53:06 GMT
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f1fa8224847ea7d9b4dc8e598fae4142
cb703a2944e58d97dd48a7e56ee9f4510ced78b4
920094aad2886535e2ba9e38d4731f63fbde93038d92b38f0030b0a0f47c2ac8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:53:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.aszoran.hr/upload/images/pages/1-naslovnica.png

95.217.76.40

200 OK

978 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/pages/1-naslovnica.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 1600 x 583, 8-bit/color RGBA, non-interlaced\012- data
Size
978 kB (977514 bytes)
Hash
fcbea2a330efc7b53549cd46e6e0e069
306ab0a3f76927c3da5d8df7625d5e3ae02bac55
286eaee156ade3bbca028767ed092766ba647702524b1ab277376d034e297ccc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/pages/1-naslovnica.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 13:21:34 GMT
Accept-Ranges: bytes
Content-Length: 977514
Cache-Control: max-age=31536000
Expires: Sun, 10 Sep 2023 17:53:06 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 10 Sep 2022 16:56:07 GMT
Expires: Sat, 10 Sep 2022 17:02:47 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FzKSBlwPFrArgs_L7gCpcLi-pcN8hNRM05KThpbiaWVRhaZO8b8z5A==
Age: 3419

www.aszoran.hr/templates/img/icon-arrow.png

95.217.76.40

200 OK

273 B

URL HTTP/1.1
www.aszoran.hr/templates/img/icon-arrow.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size
273 B (273 bytes)
Hash
a2f48256fff35fa463a2e569e87c79bb
43b281a0e6c57c3647e5b80934e341bb8bb02c26
716f578043e4896d1e879288439a4cf6ff91ef0bc34eb1823a53706392c67ef3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/img/icon-arrow.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/templates/css/style.css
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2017 09:19:38 GMT
Accept-Ranges: bytes
Content-Length: 273
Cache-Control: max-age=31536000
Expires: Sun, 10 Sep 2023 17:53:06 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/templates/img/menu-icons.png

95.217.76.40

200 OK

146 B

URL HTTP/1.1
www.aszoran.hr/templates/img/menu-icons.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 15 x 14, 8-bit/color RGBA, non-interlaced\012- data
Size
146 B (146 bytes)
Hash
bd3556e8365ee2058986ffed97786dd3
6c37b012abb126e8f5b6bb3e58873e66f46ec6d4
dadb798daba1adb44061e31a7325afc32daadcd96641d99a6bf0d77f0cd46fd0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/img/menu-icons.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/templates/css/style.css
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2017 08:58:06 GMT
Accept-Ranges: bytes
Content-Length: 146
Cache-Control: max-age=31536000
Expires: Sun, 10 Sep 2023 17:53:06 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:53:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ebc205cf750164c31d1fce2318d1636b
9309949107d69193b1c5156d45fbcc91e20a0fe4
4ab7f53d17c5d642e17a3e78aa93dc133c4713e44ccccb849f04fdcca62be8b6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:53:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ebc205cf750164c31d1fce2318d1636b
9309949107d69193b1c5156d45fbcc91e20a0fe4
4ab7f53d17c5d642e17a3e78aa93dc133c4713e44ccccb849f04fdcca62be8b6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:53:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size
16 kB (15740 bytes)
Hash
b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:21 GMT
expires: Thu, 07 Sep 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 253125
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ebc205cf750164c31d1fce2318d1636b
9309949107d69193b1c5156d45fbcc91e20a0fe4
4ab7f53d17c5d642e17a3e78aa93dc133c4713e44ccccb849f04fdcca62be8b6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:53:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ebc205cf750164c31d1fce2318d1636b
9309949107d69193b1c5156d45fbcc91e20a0fe4
4ab7f53d17c5d642e17a3e78aa93dc133c4713e44ccccb849f04fdcca62be8b6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:53:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Size
12 kB (11824 bytes)
Hash
deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:35:18 GMT
expires: Thu, 07 Sep 2023 19:35:18 GMT
cache-control: public, max-age=31536000
age: 253068
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 253138
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Size
12 kB (11872 bytes)
Hash
87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:35:48 GMT
expires: Thu, 07 Sep 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 253038
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Size
16 kB (15752 bytes)
Hash
b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:40:23 GMT
expires: Thu, 07 Sep 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 252763
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11796, version 1.0\012- data
Size
12 kB (11796 bytes)
Hash
716871ec15f054ec158445180fe280e1
d7d746e03e49f7e10ca0b11e598f3d6db5e34a2b
b076e86301cbee8c5c9aef51863a9c0a88e6f6d2aabdffca93e031113c6caa74

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:43:35 GMT
expires: Thu, 07 Sep 2023 19:43:35 GMT
cache-control: public, max-age=31536000
age: 252571
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11800, version 1.0\012- data
Size
12 kB (11800 bytes)
Hash
e36fccd06262bef92e7a9841e2202225
b907dd02819497b3942220e0aa160c167195506b
7f1c829b0c90fd664a03bb714a74f7d35d9e38ee1687104abc8ad5bd9c8ccb6c

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:35:48 GMT
expires: Thu, 07 Sep 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 253038
last-modified: Wed, 11 May 2022 19:25:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 253138
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 02:02:22 GMT
expires: Sun, 10 Sep 2023 02:02:22 GMT
cache-control: public, max-age=31536000
age: 57044
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ebc205cf750164c31d1fce2318d1636b
9309949107d69193b1c5156d45fbcc91e20a0fe4
4ab7f53d17c5d642e17a3e78aa93dc133c4713e44ccccb849f04fdcca62be8b6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:53:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.aszoran.hr/templates/css/icon.png

95.217.76.40

200 OK

570 B

URL HTTP/1.1
www.aszoran.hr/templates/css/icon.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
570 B (570 bytes)
Hash
7cdd0704fa4eed5729a53345a5178aeb
2dca03ac8c7b8058825551a26e6491531923ca4b
9d07aa16033b5954bcd1d9f3d53089c78d2732af3490e7a83fd85617569272ba

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/css/icon.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=b266442b63ef86e50a10fbaad64708cf

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:53:06 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2017 09:01:40 GMT
Accept-Ranges: bytes
Content-Length: 570
Cache-Control: max-age=31536000
Expires: Sun, 10 Sep 2023 17:53:06 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
36fe04277220227ba5ecfe7d2ff1d9d9
2eb9f6560336248cc45c1cd66d87505b5ebdf5d4
94f8f2f8f3b67db18825ea48740ff0ce218d7156fe851d6b023ef43b6bee4f7f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5800
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:53:06 GMT
Last-Modified: Sat, 10 Sep 2022 16:16:26 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.80.131.74

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.80.131.74:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Xe3OhECp+QCX3ittEELZcg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: p//s8w7mftiPQcrAIniTx/LP6ro=

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4591
Expires: Sat, 10 Sep 2022 19:09:39 GMT
Date: Sat, 10 Sep 2022 17:53:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4591
Expires: Sat, 10 Sep 2022 19:09:39 GMT
Date: Sat, 10 Sep 2022 17:53:08 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe535d149-d5c6-4543-8a5b-a5a98be48b9e.jpeg

34.120.237.76

200 OK

6.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe535d149-d5c6-4543-8a5b-a5a98be48b9e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.7 kB (6676 bytes)
Hash
362d0931425ffa11f3287246f0480cc8
cc0f8bf63d11aeb3ea780af092523833f3b1abd3
75619cdf413b35451f109180e084a3630d0665a24b29e45510fed938d381db75

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe535d149-d5c6-4543-8a5b-a5a98be48b9e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6676
x-amzn-requestid: 97140273-f327-4ec8-b076-cea440ce1d29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNi34HNxoAMF9Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb1cb-6356b02944a048db1be05d1c;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:36:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2s35YFxVMMVFBVoSTyoCp0w0ivNRYerua-rmRWXdbvtP2UHafYwUmw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:10:25 GMT
age: 70963
etag: "cc0f8bf63d11aeb3ea780af092523833f3b1abd3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb150ddb5-18a6-405d-8041-cdea0c0e6a85.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8266 bytes)
Hash
d21a3e07583d9fad4104b6457f7915e7
fdc9453562f993e2545ca99731a7741e748b6082
8ea38264c82c6b544447079cc92eae70d0968a070ba39022af0e18c498916338

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb150ddb5-18a6-405d-8041-cdea0c0e6a85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8266
x-amzn-requestid: 3411ec4b-ac18-4b4e-8876-c99b94d3a4a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNitWEjhIAMFWpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb188-4d9e496e7ff141b46748d850;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:35:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: vyV1_onImxuLNGp4UI1W5grcuVW3LHJFJjvmO0VXU-OYorF6RVcoDw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:50:11 GMT
age: 72177
etag: "fdc9453562f993e2545ca99731a7741e748b6082"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdde1c872-426a-4aec-b295-a2cac8b36edf.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4477 bytes)
Hash
71bafbee3867c04c3712ff98a123d52c
ccf471cd30f5aa96f4e5fdb9e0fbbcdbb475a0bf
58ff1700e0b125caefb73719e2b3d734b2fbcc5ed1aabe5a11bb73b43edab831

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdde1c872-426a-4aec-b295-a2cac8b36edf.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4477
x-amzn-requestid: bbdca46e-5628-4faf-a0fe-ea1b5b39ac2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNjzaHrIoAMF-iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb348-567e946e7cf77f2e11c17c97;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:42:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: a0AyKhmYA7WPwciU2nTXwyChZV_riw1QsqI_giBIcdZhi3Nz4jM0Sw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:59:11 GMT
age: 71637
etag: "ccf471cd30f5aa96f4e5fdb9e0fbbcdbb475a0bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c7c5434-1873-4130-a7ce-78209ce54bf0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10950 bytes)
Hash
15249f3dafdd1690bc87ebb4fa6d518d
f930fcb22325e28592bc39b0b1974f5197c19afd
a0b9e88c78e85a037363e0b0e4e03478718f8715fe69e72bfd159922eca28301

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c7c5434-1873-4130-a7ce-78209ce54bf0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10950
x-amzn-requestid: 435fc2f4-fbcb-4eec-81d8-a23154dcec61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YFUwZEfvIAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63186802-2348a4000430702d4e9ea132;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 09:44:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ORlM8dFTc_iThvJghFakY86D3ToJ5TCmP8Ip2PcvXCCkSKKHpWQ0Zw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:12:29 GMT
age: 70839
etag: "f930fcb22325e28592bc39b0b1974f5197c19afd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9766 bytes)
Hash
7ade70e6dbcfb3ca1765f95112671e69
3768753be084c0e0fc268be5b192d02d769114b6
9670a3bf2476ba193cfeb3153c1254bdcfc980a28503dda0d9b398a3a59f53f4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9766
x-amzn-requestid: 720a4111-91de-4672-88c8-f40db517c07d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YHsjRE13oAMFbCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63195ae1-288f1f5456bf4d146dcf774c;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 03:00:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HwwG0Hjf8uZn1AtbLU_wKs3w9lict3tRP31XQY6tIxDz9KDNaBMAqw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 04:00:05 GMT
age: 49983
etag: "3768753be084c0e0fc268be5b192d02d769114b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9610 bytes)
Hash
1abac18a85802f38f08561ac64020b55
afbc7666fa0b2093ef0c5d9a955d54d139c09b30
eae7f28dd178293939ecd81082ab68ae6098bb3cb1f1fe9411c38314ddb0f944

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9610
x-amzn-requestid: 34102145-abda-4987-a68d-9069496366ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNj0oF7loAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb350-52aee64214c814812c03262e;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:42:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 91AsC8-zVFCOPHFb2qnlTev2aXzdCEDYtc68JtYYsQSKS7OFF4QzgQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:59:50 GMT
age: 71598
etag: "afbc7666fa0b2093ef0c5d9a955d54d139c09b30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,500,700,900&subset=latin-ext

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,500,700,900&subset=latin-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:300,400,500,700,900&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.aszoran.hr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 10 Sep 2022 17:53:06 GMT
date: Sat, 10 Sep 2022 17:53:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations