unius.hr/doc/iczrz8bevk.zip
91.234.46.71301 Moved Permanently 243 B URL HTTP/1.1 unius.hr/doc/iczrz8bevk.zip
IP 91.234.46.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 116450e10165fadf8ec7f433a065d304
dd319092a3d21f0215a47c75ce15d7c41b4822f5
5bcdd8e9550bed4e025d843bbb7601bf11d3154917d9b4ae45a6ad5ef83dd95a
Analyzer Verdict Alert fortinet Malware
GET /doc/iczrz8bevk.zip HTTP/1.1
Host: unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
date: Thu, 01 Dec 2022 16:24:38 GMT
server: Apache
location: https://unius.hr/doc/iczrz8bevk.zip
content-length: 243
content-type: text/html; charset=iso-8859-1
set-cookie: PH_HPXY_CHECK=s1; path=/
cache-control: private
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4363
Cache-Control: max-age=155957
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:38 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 11:43:55 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 16:19:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 292
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.comodoca.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 09bbc0094ca7db0c0cb79abf008312e5
d84396fcc50e78d5dad282abb99d402655acdb64
e6a3b9dabd70ca835114eae523d8766d57de605e00d60040cb144ce87053c259
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 16:24:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 05:54:23 GMT
Expires: Thu, 08 Dec 2022 05:54:22 GMT
Etag: "d84396fcc50e78d5dad282abb99d402655acdb64"
Cache-Control: max-age=566383,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772d2c9adb8bb500-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 16:08:56 GMT
cache-control: public,max-age=3600
age: 943
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4344
Cache-Control: max-age=150874
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:39 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:19:13 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /0Am0179A9PJY2mLv7tmf6f9bv8IuD0kiNrZ58kVLDP1bPWOqpJ8xP9JFI8VLQKi7KSdJCUy01A=
x-amz-request-id: GHSQ3DQKYQJVH6X9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 15:46:19 GMT
age: 2300
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.208.31.97101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.31.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: p3MD2KKYzrTy8xk370UyIw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: d2s04fUjR6iWAKtqtJVh14HtjtI=
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 16:24:39 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
unius.hr/doc/iczrz8bevk.zip
91.234.46.71301 Moved Permanently 0 B URL HTTP/2 unius.hr/doc/iczrz8bevk.zip
IP 91.234.46.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /doc/iczrz8bevk.zip HTTP/1.1
Host: unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Thu, 01 Dec 2022 16:24:39 GMT
server: Apache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
set-cookie: mc_session_ids[default]=c66fc81a730a0b201972135cd807c9a762c3bddc; expires=Mon, 27-Mar-2023 10:11:19 GMT; Max-Age=10000000; path=/; secure; HttpOnly
mc_session_ids[multi][0]=3f6af35543fe9d5146a4f99bf4173e5687762d60; expires=Mon, 27-Mar-2023 10:11:19 GMT; Max-Age=10000000; path=/
mc_session_ids[multi][1]=8cf32133ed769dc9556b8d33a2725b2a62c449ea; expires=Mon, 27-Mar-2023 10:11:19 GMT; Max-Age=10000000; path=/
mc_session_ids[multi][2]=2871e517dd8fc1af023c8248178269f73817f032; expires=Mon, 27-Mar-2023 10:11:19 GMT; Max-Age=10000000; path=/
mc_session_ids[multi][3]=d23c9fa348a7f78dae15b83696b985c789fd8928; expires=Mon, 27-Mar-2023 10:11:19 GMT; Max-Age=10000000; path=/
mc_session_ids[multi][4]=d65649f5779a2dcd54f4b164f6fee05bc00638d8; expires=Mon, 27-Mar-2023 10:11:19 GMT; Max-Age=10000000; path=/
PH_HPXY_CHECK=s1; path=/
location: https://www.unius.hr/doc/iczrz8bevk.zip
content-length: 0
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kZfRQsF_Fo2UtTqK0ByOPeQK-IzTQO9JtTmxIMlapmsd93SJk_4VYw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:47:30 GMT
age: 67031
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ym_L3s5E6MLy6BxqNkVxok6L6hA4c-ilSsEqt42j2IbiXYPb4c6-VQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:57 GMT
age: 66704
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 328ce221bcf3442f88d09373193ff594
63bfa2ea925aa2c188c664a7bf7af7b0e5417e60
21d5b5ec267430dba91b17f89a557aca5cd2a21535da18eb02ec69ed0e1b7371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13411
x-amzn-requestid: 71f8798f-93e9-4649-8822-7ad3fadeec34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz6vH05oAMF_qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd11-1849aa08463e5c1f3d9b15b9;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QVGFEOePBybOeNxG6eWBffm8Ha_fmBnT8vMIGcI8zv9C7yiBeSncDw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
etag: "63bfa2ea925aa2c188c664a7bf7af7b0e5417e60"
content-type: image/jpeg
age: 66761
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80EHboAMFtmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
age: 66761
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: c6c3e3dc-c9a2-4fda-a83b-cdd6ae81166b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uyE9CoAMF6Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc4-2c8940405044071a082ee678;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qykE_oaoqqPTgqGnfUo74mH29IOS97b5sZb_3VmB9yW7KUiJ1a7dnA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 18:58:06 GMT
age: 77195
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2dd5a4bcfd47db8f38544bf39ce3031
fa2217bae05b7beca2e12597eaad835298276b82
3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: 52b09ca3-705b-4c86-9f56-172637553f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7TVG58oAMFQTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c15-4577a47243ad190672f8ac89;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Y0-NAp2LMMG5TjQQ9ENHwDyKXLObKTYqzPPOWvZhs7Y9WJIC6LoblQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 05:45:16 GMT
age: 38365
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/gsap/1.11.2/TweenMax.min.js
104.17.25.14200 OK 27 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/gsap/1.11.2/TweenMax.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (32033)
Hash 6fc7d7d232455a567501c29632d365f1
59e4133b0a5cc9723b222236af71342049892c98
724f3ee0e11df451de6a029f35af486a6941a42c176cfea462221e3f848b01fb
GET /ajax/libs/gsap/1.11.2/TweenMax.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
content-type: application/javascript; charset=utf-8
content-length: 27294
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e71-16e67"
last-modified: Mon, 04 May 2020 16:10:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 757083
expires: Tue, 21 Nov 2023 16:24:42 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kaNQmreBFfZVAZJu0unhXQIata6YEDgnAbs5VEmxnPw%2BvS3LrfY6kPvBUyPt2i8QCFLE%2FDxohCTyi1G%2F8X06wfLvOTbtjAAssaL4uMgGz%2FNLG4ZmmhHHamLTK0cEe%2FUvpoN5zsJp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 772d2cb35e49b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0773d190524292b6010a09e03854ca92
e459a3b2b38f5379054dd90699748c6da8d84539
0f3aa6aaba40339a198e822d505c5d442afcd39692ecf60d1d4d7c3d395259bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5109
Cache-Control: max-age=130025
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:42 GMT
Etag: "63881a3e-117"
Expires: Sat, 03 Dec 2022 04:31:47 GMT
Last-Modified: Thu, 01 Dec 2022 03:06:38 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.unius.hr/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
91.234.46.71200 OK 83 kB URL HTTP/2 www.unius.hr/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP 91.234.46.71:0
File type ASCII text, with very long lines (39791)
Hash 7e7a1a9e3712cd16dade7c6e811ba28b
45e216af145ea7c3f30099c869482785ad921bc2
cdbdaa122823601390c7dcbdd1afde33c2f1a432b8c5ff025c6137ee99ba541a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 06 Apr 2022 06:45:09 GMT
accept-ranges: bytes
content-length: 83419
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/recent-tweets-widget/tp_twitter_plugin.css?ver=1.0
91.234.46.71200 OK 529 B URL HTTP/2 www.unius.hr/wp-content/plugins/recent-tweets-widget/tp_twitter_plugin.css?ver=1.0
IP 91.234.46.71:0
File type ASCII text, with CRLF line terminators
Hash b655ad4016c052d438708a50654f7957
046aa8f2e76f9f0c7412b5f6e7a52b8ceed20421
3109fef8b2a9ab71fca698483d2bae36d8fed772517c259dacce872e739bb690
GET /wp-content/plugins/recent-tweets-widget/tp_twitter_plugin.css?ver=1.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Mon, 16 Oct 2017 06:51:48 GMT
accept-ranges: bytes
content-length: 529
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/wp-contact-form-7-spam-blocker/frontend/css/spam-protect-for-contact-form7.css?ver=1.0.0
91.234.46.71200 OK 98 B URL HTTP/2 www.unius.hr/wp-content/plugins/wp-contact-form-7-spam-blocker/frontend/css/spam-protect-for-contact-form7.css?ver=1.0.0
IP 91.234.46.71:0
Hash e6094661d8923e95b233019ebff7c8f0
cfd836d385d475baffee45d85cfeb9bb36e70d9e
547dda3c14b284819be511be1e410da94a5efc6ccc4a9afe1c75394f9333191a
GET /wp-content/plugins/wp-contact-form-7-spam-blocker/frontend/css/spam-protect-for-contact-form7.css?ver=1.0.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Sun, 03 Jul 2022 09:26:48 GMT
accept-ranges: bytes
content-length: 98
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/better-file-download/public/css/better-file-download-public.css?ver=1.0.0
91.234.46.71200 OK 3.8 kB URL HTTP/2 www.unius.hr/wp-content/plugins/better-file-download/public/css/better-file-download-public.css?ver=1.0.0
IP 91.234.46.71:0
Hash cfe45793fd73a175dbbca7e7841c8ec1
c8f185f47e313a6f3a3faeec989ec3e60142c7cf
b7201c1a659278ce17a80bf2d31286ea569cd185188b324e87580c64a6e784f8
GET /wp-content/plugins/better-file-download/public/css/better-file-download-public.css?ver=1.0.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 05 Sep 2019 06:04:54 GMT
accept-ranges: bytes
content-length: 3802
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
91.234.46.71200 OK 2.7 kB URL HTTP/2 www.unius.hr/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 91.234.46.71:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Sat, 22 Oct 2022 10:03:07 GMT
accept-ranges: bytes
content-length: 2731
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/wp-math-captcha/css/frontend.css?ver=5.9.5
91.234.46.71200 OK 277 B URL HTTP/2 www.unius.hr/wp-content/plugins/wp-math-captcha/css/frontend.css?ver=5.9.5
IP 91.234.46.71:0
Hash 0e193f8b71d92b5ef8a78d980c0e5e1f
0cc76a46205094223c906a6c01e9de42bedf27c4
b67941a710bc007120fa919bf7feebe922b2e8835ff033cb4ae578745eef93eb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-math-captcha/css/frontend.css?ver=5.9.5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Mon, 01 Apr 2019 10:14:46 GMT
accept-ranges: bytes
content-length: 277
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/uploads/smile_fonts/icomoon-material-24x24/icomoon-material-24x24.css?ver=5.9.5
91.234.46.71200 OK 54 kB URL HTTP/2 www.unius.hr/wp-content/uploads/smile_fonts/icomoon-material-24x24/icomoon-material-24x24.css?ver=5.9.5
IP 91.234.46.71:0
File type ASCII text, with very long lines (53601), with no line terminators
Hash 3b45e6c6c840593ae942c5350f12aaca
13e4d7cf0810c3f0a6055160d8a8d6bcf7dabb28
22ea2da34507e30595e6e794ac065b6a73ba168bf8f989966d36e23e0b89b098
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/smile_fonts/icomoon-material-24x24/icomoon-material-24x24.css?ver=5.9.5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Mon, 26 Jun 2017 14:22:38 GMT
accept-ranges: bytes
content-length: 53601
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=5.9.5
91.234.46.71200 OK 28 kB URL HTTP/2 www.unius.hr/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=5.9.5
IP 91.234.46.71:0
File type ASCII text, with very long lines (27639), with no line terminators
Hash 36ea4805809e6b690c2f5126a0808297
4531470deab3efd0b8499f29a323a1b45f0efced
4354449ab7a164ef5486d12020f3bc403b8ff104a8da73e9f9332106b86b061c
GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=5.9.5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Mon, 26 Jun 2017 11:55:56 GMT
accept-ranges: bytes
content-length: 27639
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/multiline-files-for-contact-form-7/css/style.css?12&ver=5.9.5
91.234.46.71200 OK 846 B URL HTTP/2 www.unius.hr/wp-content/plugins/multiline-files-for-contact-form-7/css/style.css?12&ver=5.9.5
IP 91.234.46.71:0
Hash a4f1e84fdd6819a7c476c13e58146b8d
a04bcf2d08cc87933f5d11cf4edb7c13b7b8dc0b
4abca5d883106b752c8985b6493ef08062a1701cbd71796173a9a36198b86ae7
GET /wp-content/plugins/multiline-files-for-contact-form-7/css/style.css?12&ver=5.9.5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Tue, 23 Aug 2022 12:51:45 GMT
accept-ranges: bytes
content-length: 846
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/uploads/smile_fonts/icomoon-free-social-contact-16x16/icomoon-free-social-contact-16x16.css?ver=5.9.5
91.234.46.71200 OK 8.5 kB URL HTTP/2 www.unius.hr/wp-content/uploads/smile_fonts/icomoon-free-social-contact-16x16/icomoon-free-social-contact-16x16.css?ver=5.9.5
IP 91.234.46.71:0
File type ASCII text, with very long lines (8523), with no line terminators
Hash 06eb646ab6fc029690fdfd37b6f924bb
aadce95fb340f807915f5d1d2ba0e7f8d6933e41
7b70d23fbb5fda2c3126584ade84dbc3c22965e066793e3ee4542f5b5911aa32
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/smile_fonts/icomoon-free-social-contact-16x16/icomoon-free-social-contact-16x16.css?ver=5.9.5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Mon, 26 Jun 2017 14:22:38 GMT
accept-ranges: bytes
content-length: 8523
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/cookie-notice/css/front.min.css?ver=5.9.5
91.234.46.71200 OK 5.3 kB URL HTTP/2 www.unius.hr/wp-content/plugins/cookie-notice/css/front.min.css?ver=5.9.5
IP 91.234.46.71:0
File type ASCII text, with very long lines (5334), with no line terminators
Hash 42d1ded165ef075d4a34f90debfdfc93
9d4f1473e17840cb173e1e2070915e885591426b
f158b8591a08b6c02bb345ae96dd62f0c632f7f635bb4a5f449fce24bdc11789
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=5.9.5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Tue, 08 Nov 2022 08:28:43 GMT
accept-ranges: bytes
content-length: 5334
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/uploads/master-slider/custom.css?ver=3
91.234.46.71200 OK 377 B URL HTTP/2 www.unius.hr/wp-content/uploads/master-slider/custom.css?ver=3
IP 91.234.46.71:0
Hash 37edb4876a966b368cde4b67ff349df7
9c5aaa0bdda808ba85334e7bd75b0749df326dee
e8f504f6544886f853c4df49a03c78c836035b4c755ee1c8c3d30ff3c8863222
GET /wp-content/uploads/master-slider/custom.css?ver=3 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 24 Nov 2022 09:00:12 GMT
accept-ranges: bytes
content-length: 377
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/themes/dt-the7/lib/custom-scrollbar/custom-scrollbar.min.css?ver=10.4.0
91.234.46.71200 OK 11 kB URL HTTP/2 www.unius.hr/wp-content/themes/dt-the7/lib/custom-scrollbar/custom-scrollbar.min.css?ver=10.4.0
IP 91.234.46.71:0
File type ASCII text, with very long lines (10755), with no line terminators
Hash 26421f9c878acb1fd676d5053a2928ae
28bc1fa7e3e1a0901c56e854004d8047629e4b03
e3615fe430b11a0bbd580c5076d0e5edf562597d8a3e851b1aa61280f8ea3897
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/dt-the7/lib/custom-scrollbar/custom-scrollbar.min.css?ver=10.4.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 10 Feb 2022 05:56:32 GMT
accept-ranges: bytes
content-length: 10755
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/uploads/the7-css/post-type-dynamic.css?ver=cc2b7130a202
91.234.46.71200 OK 10 kB URL HTTP/2 www.unius.hr/wp-content/uploads/the7-css/post-type-dynamic.css?ver=cc2b7130a202
IP 91.234.46.71:0
Hash 152db8b4fe074a20df88fecbf4764b91
08155d00b40edb2986dc37ce97f8ba98dab700bb
c1f0310915e1e3e8f1f4fa0830b404d32e287f43336c5b99f456146efe3ba797
GET /wp-content/uploads/the7-css/post-type-dynamic.css?ver=cc2b7130a202 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Fri, 03 Jun 2022 08:06:19 GMT
accept-ranges: bytes
content-length: 10008
content-type: text/css
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js
172.217.21.170200 OK 54 kB URL HTTP/2 maps.googleapis.com/maps/api/js
IP 172.217.21.170:0
File type ASCII text, with very long lines (2590)
Hash 140e05eeae6e966f49db3198046e7b0b
056a171f2cce93e7e7a1ed35be93925998f9e3e6
047c6c3d6e621a3806e66ec6867982abc6b6d3b2c231462fd2040217f1b86f24
GET /maps/api/js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Thu, 01 Dec 2022 16:24:42 GMT
expires: Thu, 01 Dec 2022 16:54:42 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53602
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=13
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.google.com/maps/api/js?key=AIzaSyBUvC8b-i3LWsQsWZaV-7Rl_bhXZ3hZt-0&libraries=geometry%2Cplaces%2Cweather%2Cpanoramio%2Cdrawing&language=en&ver=5.9.5
142.250.74.142200 OK 59 kB URL HTTP/2 maps.google.com/maps/api/js?key=AIzaSyBUvC8b-i3LWsQsWZaV-7Rl_bhXZ3hZt-0&libraries=geometry%2Cplaces%2Cweather%2Cpanoramio%2Cdrawing&language=en&ver=5.9.5
IP 142.250.74.142:0
File type ASCII text, with very long lines (2397)
Hash 57955ce9512204ec2a90676a118a8c18
91afc99913e1b7cae876db92ce94dc7f0e6b1b9c
d0f1b319dfe343689996985588086cc9cddee257c08bc30a14bd12bbcbc4502e
GET /maps/api/js?key=AIzaSyBUvC8b-i3LWsQsWZaV-7Rl_bhXZ3hZt-0&libraries=geometry%2Cplaces%2Cweather%2Cpanoramio%2Cdrawing&language=en&ver=5.9.5 HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Thu, 01 Dec 2022 16:24:42 GMT
expires: Thu, 01 Dec 2022 16:54:42 GMT
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 59173
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=29
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.unius.hr/wp-content/uploads/the7-css/css-vars.css?ver=cc2b7130a202
91.234.46.71200 OK 32 kB URL HTTP/2 www.unius.hr/wp-content/uploads/the7-css/css-vars.css?ver=cc2b7130a202
IP 91.234.46.71:0
Hash 6e9129aee7ffe59ca5a35cb062a61357
4de887af1b460f02d57856b20c93901dd63a6e1f
c4f15b27f08815589457603bd23e7c860f6e32390966cde3d4096fea0107eed8
GET /wp-content/uploads/the7-css/css-vars.css?ver=cc2b7130a202 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Fri, 03 Jun 2022 08:06:18 GMT
accept-ranges: bytes
content-length: 31686
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/go_pricing/assets/css/go_pricing_styles.css?ver=3.3.19
91.234.46.71200 OK 72 kB URL HTTP/2 www.unius.hr/wp-content/plugins/go_pricing/assets/css/go_pricing_styles.css?ver=3.3.19
IP 91.234.46.71:0
Hash d232db15da64d211668d4367a3599dfe
85a0b85481a28640bb4be875a9045ed859509350
98ccb483609855e3a2484010ed9d0324c6c3eee8b921f6259cd669953a295098
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/go_pricing/assets/css/go_pricing_styles.css?ver=3.3.19 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Fri, 18 Mar 2022 06:55:50 GMT
accept-ranges: bytes
content-length: 71989
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/master-slider/public/assets/css/masterslider.main.css?ver=3.8.5
91.234.46.71200 OK 65 kB URL HTTP/2 www.unius.hr/wp-content/plugins/master-slider/public/assets/css/masterslider.main.css?ver=3.8.5
IP 91.234.46.71:0
Hash b451a096ff889c758f0337968beedbf2
2df45aec75d4d2335017789b14b8436d723ec88c
811883d8ada0d5fc173c61f5bb44a7e10da4591ce76eff605f94dd781eb2c208
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/master-slider/public/assets/css/masterslider.main.css?ver=3.8.5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 24 Nov 2022 08:57:32 GMT
accept-ranges: bytes
content-length: 64689
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/uploads/smile_fonts/icomoon-font-awesome-14x14/icomoon-font-awesome-14x14.css?ver=5.9.5
91.234.46.71200 OK 51 kB URL HTTP/2 www.unius.hr/wp-content/uploads/smile_fonts/icomoon-font-awesome-14x14/icomoon-font-awesome-14x14.css?ver=5.9.5
IP 91.234.46.71:0
File type ASCII text, with very long lines (51198), with no line terminators
Hash 241da26dfe41adea872458235c7a0281
725308b2c041feac37860f9d87ab1ea43d4ca3c1
25b9eff85ce7163c86aaf484585e289c56b12bc80125e798810a3f8a4f633e50
GET /wp-content/uploads/smile_fonts/icomoon-font-awesome-14x14/icomoon-font-awesome-14x14.css?ver=5.9.5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Tue, 27 Jun 2017 07:32:06 GMT
accept-ranges: bytes
content-length: 51198
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/themes/dt-the7/fonts/FontAwesome/css/all.min.css?ver=10.4.0
91.234.46.71200 OK 59 kB URL HTTP/2 www.unius.hr/wp-content/themes/dt-the7/fonts/FontAwesome/css/all.min.css?ver=10.4.0
IP 91.234.46.71:0
File type ASCII text, with very long lines (58975)
Hash 18681a2fa4d4386c058c40149603eb8f
74d0687546f116bd451e048309509b0e9379c348
e0a7c774c6a0080dc3cb538eaa5fe7e01c17b1ae7cbf948201c22e4c941b6a19
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/dt-the7/fonts/FontAwesome/css/all.min.css?ver=10.4.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 10 Feb 2022 05:56:37 GMT
accept-ranges: bytes
content-length: 59162
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/uploads/the7-css/media.css?ver=cc2b7130a202
91.234.46.71200 OK 77 kB URL HTTP/2 www.unius.hr/wp-content/uploads/the7-css/media.css?ver=cc2b7130a202
IP 91.234.46.71:0
Hash 7bbc46b670973decfb1b344300bba62a
9829755290c5e0a142679ddda1d43e12ed9e28e1
4bf38c2915211ce94c1f56f7d0395e1a5820834d4ef76fbbeb886cb0947035ed
GET /wp-content/uploads/the7-css/media.css?ver=cc2b7130a202 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Fri, 03 Jun 2022 08:06:18 GMT
accept-ranges: bytes
content-length: 77064
content-type: text/css
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.unius.hr/wp-content/uploads/the7-css/custom.css?ver=cc2b7130a202
91.234.46.71200 OK 263 kB URL HTTP/2 www.unius.hr/wp-content/uploads/the7-css/custom.css?ver=cc2b7130a202
IP 91.234.46.71:0
Size 263 kB (263380 bytes)
Hash e98df312f0675606b819f32296ed26f9
a724a6ca88c607ffa834e17a4574780560724b20
72df51e127a7290077ca2b6ecac7d19ccd68d5d091152dfbfb6abcfec31331cb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/the7-css/custom.css?ver=cc2b7130a202 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Fri, 03 Jun 2022 08:06:18 GMT
accept-ranges: bytes
content-length: 263380
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/themes/dt-the7/css/main.min.css?ver=10.4.0
91.234.46.71200 OK 246 kB URL HTTP/2 www.unius.hr/wp-content/themes/dt-the7/css/main.min.css?ver=10.4.0
IP 91.234.46.71:0
File type Unicode text, UTF-8 text, with very long lines (38672)
Size 246 kB (246397 bytes)
Hash 114761f7e569dc13c365ab4e65e29117
640be58a50a5b66940427759e0f5c497ddb9b453
29fc678e084681c79e24c66206e3c1cdc31c921788d185bee344cb7290a5a4e1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/dt-the7/css/main.min.css?ver=10.4.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 10 Feb 2022 05:56:31 GMT
accept-ranges: bytes
content-length: 246397
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/css/icons.css?ver=3.19.12
91.234.46.71200 OK 1.5 kB URL HTTP/2 www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/css/icons.css?ver=3.19.12
IP 91.234.46.71:0
Hash 9709d276c0f452511b97226a924c895a
6c8b80b09b4a3d09a8ce17faaf89a68eea4dd949
9197a79f58f1343c9a771ac7da15e05cbfe0977db49935f25d49ec119efbf4c2
GET /wp-content/plugins/Ultimate_VC_Addons/assets/css/icons.css?ver=3.19.12 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 28 Sep 2022 09:46:10 GMT
accept-ranges: bytes
content-length: 1523
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.min.css?ver=10.4.0
91.234.46.71200 OK 20 kB URL HTTP/2 www.unius.hr/wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.min.css?ver=10.4.0
IP 91.234.46.71:0
File type ASCII text, with very long lines (20019), with no line terminators
Hash 6f5f1dc770b7d6b4d1b2d09c04e3b2e4
7bcd7dca4830bd031d41aceb3ec80837f428dc44
a17ad60491df641c2e86700ab73143eb57a71f008a495c922c02be00cdf33789
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.min.css?ver=10.4.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 10 Feb 2022 05:56:37 GMT
accept-ranges: bytes
content-length: 20019
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/themes/dt-the7/style.css?ver=10.4.0
91.234.46.71200 OK 1.4 kB URL HTTP/2 www.unius.hr/wp-content/themes/dt-the7/style.css?ver=10.4.0
IP 91.234.46.71:0
File type ASCII text, with very long lines (521)
Hash 95eb3e2c454830a2547962a7400fb09f
fc67f92157f2be86386df1122f19f33a81c4b746
0659f97802c04e74fb3f601d0b51cc0c23f237bb0ed7bdc95543de6e939ab397
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/dt-the7/style.css?ver=10.4.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 10 Feb 2022 05:56:30 GMT
accept-ranges: bytes
content-length: 1420
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/wp-contact-form-7-spam-blocker/frontend/js/spam-protect-for-contact-form7.js?ver=1.0.0
91.234.46.71200 OK 838 B URL HTTP/2 www.unius.hr/wp-content/plugins/wp-contact-form-7-spam-blocker/frontend/js/spam-protect-for-contact-form7.js?ver=1.0.0
IP 91.234.46.71:0
Hash 49cea0a781874a962879c2caca9bc322
72c1650de2b93ef320d2db873fbb473fe360269c
57a50c99a31ef4e89e86664e96f6dfbdde163a2eb96e88b3b492c49aa4be2f37
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-contact-form-7-spam-blocker/frontend/js/spam-protect-for-contact-form7.js?ver=1.0.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Sun, 03 Jul 2022 09:26:48 GMT
accept-ranges: bytes
content-length: 838
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/wp-google-map-plugin/assets/css/frontend.css?ver=5.9.5
91.234.46.71200 OK 4.2 kB URL HTTP/2 www.unius.hr/wp-content/plugins/wp-google-map-plugin/assets/css/frontend.css?ver=5.9.5
IP 91.234.46.71:0
File type ASCII text, with CRLF line terminators
Hash bad8534a65980c82285b650f02403bd0
19327faa38b54034e825287e621af06a007413ed
297ebb311b8eeff8d8d1fa4bfe26a420ffdd7694b83119aef5ce799189fedc7d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-google-map-plugin/assets/css/frontend.css?ver=5.9.5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Mon, 19 Sep 2022 08:33:39 GMT
accept-ranges: bytes
content-length: 4181
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/themes/dt-the7/css/wpbakery.min.css?ver=10.4.0
91.234.46.71200 OK 26 kB URL HTTP/2 www.unius.hr/wp-content/themes/dt-the7/css/wpbakery.min.css?ver=10.4.0
IP 91.234.46.71:0
File type ASCII text, with very long lines (25435)
Hash cda0a400aa127035d059c121e16cd467
c6ca6638c00fcc68ca38915779e04bd66f1aaea2
75535d674802c5ce8fecc6a261e1c9debf17eef60d06a1f9569dccf0bf7069ad
GET /wp-content/themes/dt-the7/css/wpbakery.min.css?ver=10.4.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 10 Feb 2022 05:56:32 GMT
accept-ranges: bytes
content-length: 25701
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/themes/dt-the7/fonts/FontAwesome/back-compat.min.css?ver=10.4.0
91.234.46.71200 OK 19 kB URL HTTP/2 www.unius.hr/wp-content/themes/dt-the7/fonts/FontAwesome/back-compat.min.css?ver=10.4.0
IP 91.234.46.71:0
File type ASCII text, with very long lines (19124), with no line terminators
Hash 2241b1dc3785271d2db8ce8c7971567c
16c419b69b436608d6d2ef669398946be2ea292f
c61978e3a428c41f5082c3da1d3cfe3c83c04b78a6a62b8dd879fb67b6b04953
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/dt-the7/fonts/FontAwesome/back-compat.min.css?ver=10.4.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 10 Feb 2022 05:56:37 GMT
accept-ranges: bytes
content-length: 19124
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/fonts/vidcons.css?ver=3.19.12
91.234.46.71200 OK 792 B URL HTTP/2 www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/fonts/vidcons.css?ver=3.19.12
IP 91.234.46.71:0
Hash 956459c45013db79feac40131a1a6f58
fff96466a232223789cea6115c70260013646f92
6e24595efd1eec4315912f833515980e647463c76e806334202d260e153ac96c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/fonts/vidcons.css?ver=3.19.12 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 28 Sep 2022 09:46:10 GMT
accept-ranges: bytes
content-length: 792
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/dt-the7-core/assets/css/post-type.min.css?ver=2.7.1
91.234.46.71200 OK 43 kB URL HTTP/2 www.unius.hr/wp-content/plugins/dt-the7-core/assets/css/post-type.min.css?ver=2.7.1
IP 91.234.46.71:0
File type ASCII text, with very long lines (42763)
Hash b56acc93d0aa6ec25dd35d634e78a71d
5052c13c5396c069534411f82750c2b29b144b15
9349f4165642ed216bcb4982eccb977b86f95b2813ffe172afdf6aab317925a2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/dt-the7-core/assets/css/post-type.min.css?ver=2.7.1 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Tue, 08 Nov 2022 08:29:01 GMT
accept-ranges: bytes
content-length: 42851
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1
91.234.46.71200 OK 3.4 kB URL HTTP/2 www.unius.hr/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1
IP 91.234.46.71:0
File type ASCII text, with very long lines (3228)
Hash f0a6215645c0c08e11eb34b62d75fc17
4cada97302f25735f6bd8c23cb43ca50d154ba56
37a579a050da890dfcb8e3e018834926e61e759f35923bc961bc995514a4b000
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Tue, 22 Feb 2022 18:38:32 GMT
accept-ranges: bytes
content-length: 3406
content-type: application/javascript
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.unius.hr/wp-content/plugins/multiline-files-for-contact-form-7/js/zl-multine-files.js?ver=5.9.5
91.234.46.71200 OK 3.6 kB URL HTTP/2 www.unius.hr/wp-content/plugins/multiline-files-for-contact-form-7/js/zl-multine-files.js?ver=5.9.5
IP 91.234.46.71:0
Hash af45c10ece0e61b4f3a0ee9a52e6650b
5c31f163881ed0d2e70c088ae01a408ae40716f0
561bc19c144f7dcca87c7ed1978bf3fb6d05631e22d0b59484a5003e630b97e8
GET /wp-content/plugins/multiline-files-for-contact-form-7/js/zl-multine-files.js?ver=5.9.5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Tue, 23 Aug 2022 12:51:45 GMT
accept-ranges: bytes
content-length: 3556
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/themes/dt-the7/js/above-the-fold.min.js?ver=10.4.0
91.234.46.71200 OK 13 kB URL HTTP/2 www.unius.hr/wp-content/themes/dt-the7/js/above-the-fold.min.js?ver=10.4.0
IP 91.234.46.71:0
File type Unicode text, UTF-8 text, with very long lines (2772)
Hash c651c9d189aec3025648ab5a4a143702
29cb8cfbc901402ac6b0d2f45d3683bc358e08f3
fb7fbfb50310397a5df8716772c7938bc765eaf1bd8108c5225f78b14581eb22
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/dt-the7/js/above-the-fold.min.js?ver=10.4.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 10 Feb 2022 05:56:32 GMT
accept-ranges: bytes
content-length: 12713
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1
91.234.46.71200 OK 11 kB URL HTTP/2 www.unius.hr/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1
IP 91.234.46.71:0
File type ASCII text, with very long lines (10571)
Hash 49cde5e6fac6c9450b87e3a4b7beb3a0
7035ed9cb54c0f65c75f32e24926f486e845850a
45ad602a77364ffb8bb717c9b1dd8431d8fcf91bfdeba4d2fbba3968f83de1d9
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Tue, 22 Feb 2022 18:38:32 GMT
accept-ranges: bytes
content-length: 10750
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/uploads/the7-css/mega-menu.css?ver=cc2b7130a202
91.234.46.71200 OK 19 kB URL HTTP/2 www.unius.hr/wp-content/uploads/the7-css/mega-menu.css?ver=cc2b7130a202
IP 91.234.46.71:0
Hash 7fd99d14bd150cf71c5584acfe313b97
54937161a3e1bdd900ea7be0b6c273ba07b4953d
1e178130dcc650143cb7682207d5df12635a841f1131d1351cbffe51d283b984
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/the7-css/mega-menu.css?ver=cc2b7130a202 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Fri, 03 Jun 2022 08:06:18 GMT
accept-ranges: bytes
content-length: 19153
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
91.234.46.71200 OK 21 kB URL HTTP/2 www.unius.hr/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 91.234.46.71:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash e77ef4006bb97c97c8407f4a8abf4e3d
1a27436ff6ef47ca5c3e352b792e50901ebb705e
9d7da1b980a95ff3d31d0bb8733cbabd1d210ec601d15a1aac2b67394a33191d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Tue, 22 Feb 2022 18:38:32 GMT
accept-ranges: bytes
content-length: 20714
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.5
91.234.46.71200 OK 407 kB URL HTTP/2 www.unius.hr/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.5
IP 91.234.46.71:0
File type ASCII text, with very long lines (64288)
Size 407 kB (407331 bytes)
Hash b0ac07a6918661e5116d67cb7d7a1c2b
94e6f307e5605d36dda6db9abfbb7b740cfadaa6
7b7d5a7040c734484063484276d1643c07c1d8a88c2e4c54818bb6d5fedfd18d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Tue, 08 Nov 2022 08:28:59 GMT
accept-ranges: bytes
content-length: 407331
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/modal-all.min.js?ver=3.19.12
91.234.46.71200 OK 84 kB URL HTTP/2 www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/modal-all.min.js?ver=3.19.12
IP 91.234.46.71:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (65499), with no line terminators
Hash e3ec8c4fd71a0e2e5fdbc6f23631a083
f25b0f9f4a09811442b97390ed7a088f9a19875d
96176d5a40fb6961c5d49b2d5a2eae523ea5d3a5e35a0ac06b97b863c2eff468
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/modal-all.min.js?ver=3.19.12 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 28 Sep 2022 09:46:10 GMT
accept-ranges: bytes
content-length: 83704
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ultimate.min.css?ver=3.19.12
91.234.46.71200 OK 460 kB URL HTTP/2 www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ultimate.min.css?ver=3.19.12
IP 91.234.46.71:0
File type ASCII text, with very long lines (33492)
Size 460 kB (459949 bytes)
Hash 8b8afcf8803b1aeb5c7b655c9ded86b7
901e6fb51ad9cee9888e31e7d19f8988407ca540
956741fc7d3e2f4b42ae1ee94cb46d872bcc60c090b7fa4152205fd4574b21f8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ultimate.min.css?ver=3.19.12 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 28 Sep 2022 09:46:10 GMT
accept-ranges: bytes
content-length: 459949
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
91.234.46.71200 OK 12 kB URL HTTP/2 www.unius.hr/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 91.234.46.71:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 1f9968a7c7a2a02491393fb9d4103dae
0032c8a6a692e6f072b2cef20828449402fdd57d
f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Sat, 22 Oct 2022 10:03:07 GMT
accept-ranges: bytes
content-length: 12310
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/vhparallax.min.js?ver=3.19.12
91.234.46.71200 OK 3.3 kB URL HTTP/2 www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/vhparallax.min.js?ver=3.19.12
IP 91.234.46.71:0
File type ASCII text, with very long lines (3293), with no line terminators
Hash ba4fa169f82cf782e0f2a4f3509931aa
b8a28aa1eb9241147a9fb1aae16c9c4509deed14
f67047f60e0267eb1c463f3ae947a10e56374ab6b22e2ca4b482617e0e0a28de
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/vhparallax.min.js?ver=3.19.12 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 28 Sep 2022 09:46:10 GMT
accept-ranges: bytes
content-length: 3293
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
91.234.46.71200 OK 11 kB URL HTTP/2 www.unius.hr/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 91.234.46.71:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Sun, 13 Dec 2020 11:20:48 GMT
accept-ranges: bytes
content-length: 11224
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-ui.min.js?ver=3.19.12
91.234.46.71200 OK 90 kB URL HTTP/2 www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-ui.min.js?ver=3.19.12
IP 91.234.46.71:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5c991aaf6e0b7ed52e587ee4530532ed
03ade5a5c70546ccc01f6b1b13d7a4118bedc606
11696a612c9365c1be820d6504af5369e89c9b24849708f99aebbce710e27643
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-ui.min.js?ver=3.19.12 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 28 Sep 2022 09:46:10 GMT
accept-ranges: bytes
content-length: 90243
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate.min.js?ver=3.19.12
91.234.46.71200 OK 214 kB URL HTTP/2 www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate.min.js?ver=3.19.12
IP 91.234.46.71:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 214 kB (214347 bytes)
Hash 31138e77e5630d8f3326fa33e99a6fae
639509d3579de8171f7dd307e6201e5e9bc33929
41dcc73d17ba6777b6c48664c427e17c935b69d7e1da3d84947e3436f85bc616
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate.min.js?ver=3.19.12 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 28 Sep 2022 09:46:10 GMT
accept-ranges: bytes
content-length: 214347
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/themes/dt-the7/lib/jquery-mousewheel/jquery-mousewheel.min.js?ver=10.4.0
91.234.46.71200 OK 2.7 kB URL HTTP/2 www.unius.hr/wp-content/themes/dt-the7/lib/jquery-mousewheel/jquery-mousewheel.min.js?ver=10.4.0
IP 91.234.46.71:0
File type ASCII text, with very long lines (2615)
Hash ca4fc18d3aa41a0e4ca31c875b1f93c6
57f848a86bdfddffe192f1049f1a3400d55c0e28
9c7f5f11ea09af1edcc1a9033075fc3de8d28a1675503169f857b2211c8d8545
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/dt-the7/lib/jquery-mousewheel/jquery-mousewheel.min.js?ver=10.4.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 10 Feb 2022 05:56:32 GMT
accept-ranges: bytes
content-length: 2705
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/modernizr-custom.min.js?ver=3.19.12
91.234.46.71200 OK 7.9 kB URL HTTP/2 www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/modernizr-custom.min.js?ver=3.19.12
IP 91.234.46.71:0
File type HTML document, ASCII text, with very long lines (7859), with no line terminators
Hash d815e97ea84cb680bfd979eda0ef1f9f
95e430e76736c428736d8af4c9723e4188dac4dc
5d8ce2630181a7740a950e96b7a9cf92eee0c324bdbaf0ad0e3785cefa569954
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/modernizr-custom.min.js?ver=3.19.12 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 28 Sep 2022 09:46:10 GMT
accept-ranges: bytes
content-length: 7859
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/better-file-download/public/js/better-file-download-public.js?ver=1.0.0
91.234.46.71200 OK 2.6 kB URL HTTP/2 www.unius.hr/wp-content/plugins/better-file-download/public/js/better-file-download-public.js?ver=1.0.0
IP 91.234.46.71:0
Hash c512b0bc726e4f17eb51750f9489d64c
27e5b99a270981f183f2a1a882b99bff4a7e975b
f2b3ebe8d7de10a18cf3c09581be1108731e588ddb687f32f29457c7e139ab17
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/better-file-download/public/js/better-file-download-public.js?ver=1.0.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 05 Sep 2019 06:04:54 GMT
accept-ranges: bytes
content-length: 2583
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-ui-labeledslider.min.js?ver=3.19.12
91.234.46.71200 OK 1.7 kB URL HTTP/2 www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-ui-labeledslider.min.js?ver=3.19.12
IP 91.234.46.71:0
File type ASCII text, with very long lines (1697), with no line terminators
Hash 1d1d31570a23f64d97436aa56512d4f0
7da5643838e15906db1ae24fd80af74ab69dfa32
b78d6ee2da09dc47cbc2b043ed225dfd9a32b646d92e730a1ea2fc06522a04e0
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-ui-labeledslider.min.js?ver=3.19.12 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 28 Sep 2022 09:46:10 GMT
accept-ranges: bytes
content-length: 1697
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jparallax.min.js?ver=3.19.12
91.234.46.71200 OK 7.5 kB URL HTTP/2 www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jparallax.min.js?ver=3.19.12
IP 91.234.46.71:0
File type ASCII text, with very long lines (7460), with no line terminators
Hash 22ddee4f613f4c46ade6cca49656d962
9ae3b52bb3a99b5c531412bb32ec51b32cc32353
b0110f788f87a4417de8315b20467685a263c2a296444dbf5fcb0ceda07f83ac
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jparallax.min.js?ver=3.19.12 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 28 Sep 2022 09:46:10 GMT
accept-ranges: bytes
content-length: 7460
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4
91.234.46.71200 OK 999 B URL HTTP/2 www.unius.hr/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4
IP 91.234.46.71:0
File type ASCII text, with very long lines (999), with no line terminators
Hash 6a0e8318d42803736d2fafcc12238026
c955314a7e0a9a9871329b0f042c8f0b5df49a78
2648a1333fa24d383fd73a6beaac17156ae78f4267ff7407ad60e05a788df44c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Sat, 22 Oct 2022 10:03:07 GMT
accept-ranges: bytes
content-length: 999
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0.1
91.234.46.71200 OK 21 kB URL HTTP/2 www.unius.hr/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0.1
IP 91.234.46.71:0
File type ASCII text, with very long lines (20418)
Hash b00a0fd5e283160549de2c7b36243b7b
f2401243950cd9624002921265e46a518851f12b
314ce6baaa3218eb171fa2c278d7fdf1b9872305dfa667e9cbf2df77c83a9a88
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0.1 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Tue, 16 Mar 2021 12:08:53 GMT
accept-ranges: bytes
content-length: 20637
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/themes/dt-the7/lib/custom-scrollbar/custom-scrollbar.min.js?ver=10.4.0
91.234.46.71200 OK 40 kB URL HTTP/2 www.unius.hr/wp-content/themes/dt-the7/lib/custom-scrollbar/custom-scrollbar.min.js?ver=10.4.0
IP 91.234.46.71:0
File type ASCII text, with very long lines (40061), with no line terminators
Hash 8bd368f3cb42a8bac4bd2883dc64e582
359bc0004dfe2399335e46bb744311d8ecb78c26
baade1f1820c0419a333202b1d40ca674b416b35dd50621375fc2e9bac6b8930
GET /wp-content/themes/dt-the7/lib/custom-scrollbar/custom-scrollbar.min.js?ver=10.4.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 10 Feb 2022 05:56:32 GMT
accept-ranges: bytes
content-length: 40061
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2
91.234.46.71200 OK 8.8 kB URL HTTP/2 www.unius.hr/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2
IP 91.234.46.71:0
File type C source, ASCII text, with very long lines (8750), with no line terminators
Hash 5f7dca83f1cac6295b0d4c72e325ac20
e0aacf1cfd0d8ed4bc37c8ef2be23d46513b71ed
af735813266cdf52a38a6e1583a86066db357469ceded2d7ea8335b298d73d65
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Tue, 08 Nov 2022 08:28:43 GMT
accept-ranges: bytes
content-length: 8750
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/uploads/Unius-logo-mobitel.png
91.234.46.71200 OK 5.8 kB URL HTTP/2 www.unius.hr/wp-content/uploads/Unius-logo-mobitel.png
IP 91.234.46.71:0
File type PNG image data, 176 x 109, 8-bit/color RGBA, non-interlaced\012- data
Hash 228801263a72b22ae7f5098f1366fa2f
9a7111c8344a3ebc6689072e322746dadb5f6cd5
361e7e8c569ab7d4e28724f52c896fc27c20f74f43b8e5b6ae81eaadda90c149
GET /wp-content/uploads/Unius-logo-mobitel.png HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 29 Oct 2020 10:11:40 GMT
accept-ranges: bytes
content-length: 5772
content-type: image/png
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
91.234.46.71200 OK 9.9 kB URL HTTP/2 www.unius.hr/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 91.234.46.71:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash dc74c9954b1944928eca0172c3b8c6b3
e9e00e587e0e28491b69563b4e768945ff2e0ed5
d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Sat, 22 Oct 2022 10:03:07 GMT
accept-ranges: bytes
content-length: 9937
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/uploads/logo.png
91.234.46.71200 OK 10 kB URL HTTP/2 www.unius.hr/wp-content/uploads/logo.png
IP 91.234.46.71:0
File type PNG image data, 943 x 228, 8-bit/color RGBA, non-interlaced\012- data
Hash b9e13f0d9a47a6b19c50ffa9e413a06c
3f1bbe1d92187075617b2bc45484363f1f2f1305
627dfebd9a387dbb1fc3f664e034c0f40eac668a1e8baf660d2c454f4a273f22
GET /wp-content/uploads/logo.png HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 29 Oct 2020 10:11:12 GMT
accept-ranges: bytes
content-length: 10469
content-type: image/png
X-Firefox-Spdy: h2
www.unius.hr/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
91.234.46.71200 OK 6.5 kB URL HTTP/2 www.unius.hr/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 91.234.46.71:0
File type ASCII text, with very long lines (6494), with no line terminators
Hash 64e89b93b02055fb75ea0913089ded0b
9ccf854a6acedb27496725fa7570a670fd7bd572
a3e64300797e8078baa41dbc49e2affc1d2bedd04a470f0c929ed7fac698fbcd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Mon, 31 Jan 2022 06:50:30 GMT
accept-ranges: bytes
content-length: 6494
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-includes/js/imagesloaded.min.js?ver=4.1.4
91.234.46.71200 OK 5.6 kB URL HTTP/2 www.unius.hr/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 91.234.46.71:0
File type ASCII text, with very long lines (5477)
Hash 3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 12 Aug 2020 05:08:11 GMT
accept-ranges: bytes
content-length: 5629
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/go_pricing/assets/js/go_pricing_scripts.js?ver=3.3.19
91.234.46.71200 OK 22 kB URL HTTP/2 www.unius.hr/wp-content/plugins/go_pricing/assets/js/go_pricing_scripts.js?ver=3.3.19
IP 91.234.46.71:0
File type Unicode text, UTF-8 (with BOM) text
Hash 99f2b2a72b592c715a92f92e70c9202f
1237aa1eb98da5b99cc3b14d0afe6929654be603
0734380b08e57bb5bfb7cdd198a9a53c73f16cb73fdde9170d66ec7dfbba5fe3
GET /wp-content/plugins/go_pricing/assets/js/go_pricing_scripts.js?ver=3.3.19 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Fri, 18 Mar 2022 06:55:51 GMT
accept-ranges: bytes
content-length: 21718
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
91.234.46.71200 OK 19 kB URL HTTP/2 www.unius.hr/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 91.234.46.71:0
File type Unicode text, UTF-8 text, with very long lines (19111)
Hash 1b0fe9b37e9e47e0c8919cb618792bf5
5d1c1e03e3e773e572db2ad86f9771caa7286369
e20ddb9ed1fa044cb624f0253bb06b13c92ed9915063bd63a5806440c6b1ce7c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Mon, 31 Jan 2022 06:50:30 GMT
accept-ranges: bytes
content-length: 19261
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.5
91.234.46.71200 OK 58 kB URL HTTP/2 www.unius.hr/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.5
IP 91.234.46.71:0
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash 094ecbb344f63a3ae1bf64fe29d87c7d
4811fbb7511a15d5802978079d8ff4f911484a5e
95f59f9a4a19697496edc01bb55011ea4056f90625cc816a7f18256f056a6258
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Tue, 08 Nov 2022 08:28:59 GMT
accept-ranges: bytes
content-length: 58260
content-type: text/css
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=3.19.12
91.234.46.71200 OK 45 kB URL HTTP/2 www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=3.19.12
IP 91.234.46.71:0
File type ASCII text, with very long lines (45147), with no line terminators
Hash 8fdf996ae43b38c81411b37fd93dc72a
49521baf780cab3a27aa4456e5161e615156e11f
15fb32471635abec89b175dbe1b0446335287b4639a757b28ad2886ced444187
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=3.19.12 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 28 Sep 2022 09:46:10 GMT
accept-ranges: bytes
content-length: 45147
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/mb-YTPlayer.min.js?ver=3.19.12
91.234.46.71200 OK 62 kB URL HTTP/2 www.unius.hr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/mb-YTPlayer.min.js?ver=3.19.12
IP 91.234.46.71:0
File type HTML document, ASCII text, with very long lines (61659), with no line terminators
Hash e291c7722343b33fdefd484229e30112
5761aeed43ac42e8d8d783d7d5821629f4bf252a
8852ada069db4c25cb105e4958aac68d790c39bfb3650f122c19a8600f843aaa
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/mb-YTPlayer.min.js?ver=3.19.12 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 28 Sep 2022 09:46:10 GMT
accept-ranges: bytes
content-length: 61659
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-includes/js/masonry.min.js?ver=4.2.2
91.234.46.71200 OK 24 kB URL HTTP/2 www.unius.hr/wp-includes/js/masonry.min.js?ver=4.2.2
IP 91.234.46.71:0
File type ASCII text, with very long lines (23966)
Hash 3b3fc826e58fc554108e4a651c9c7848
76778fd446e2ff2377588a7b4ac4d79f258427c9
e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Wed, 12 Aug 2020 05:08:10 GMT
accept-ranges: bytes
content-length: 24138
content-type: application/javascript
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/wp-google-map-plugin/assets/js/maps.js?ver=2.3.4
91.234.46.71200 OK 56 kB URL HTTP/2 www.unius.hr/wp-content/plugins/wp-google-map-plugin/assets/js/maps.js?ver=2.3.4
IP 91.234.46.71:0
Hash 040c1f92c67c7ea4346b9c3ad901dfbc
152340f59d4359a5b8d43db8cafba6395b48264a
1b7fc39482d4eb18e8d9db6f596d4699c2f20d9191c727e9545137cd45e6b157
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-google-map-plugin/assets/js/maps.js?ver=2.3.4 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Mon, 19 Sep 2022 08:33:39 GMT
accept-ranges: bytes
content-length: 56069
content-type: application/javascript
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.unius.hr/wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.ttf?wi57p5
91.234.46.71200 OK 48 kB URL HTTP/2 www.unius.hr/wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.ttf?wi57p5
IP 91.234.46.71:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, the7-default-font\012- data
Hash 71f9dfd69c5a3adbbb31a994bffb7b36
97fbd02448d6db534ddfe4bcdc3df7ec5d92af9a
e0394e418d7858c3f9fabb6897f4e9364cf86a23a809127690f467ad111f190d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.ttf?wi57p5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/wp-content/themes/dt-the7/fonts/icomoon-the7-font/icomoon-the7-font.min.css?ver=10.4.0
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:43 GMT
server: Apache
last-modified: Thu, 10 Feb 2022 05:56:37 GMT
accept-ranges: bytes
content-length: 48020
content-type: font/ttf
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
142.250.74.35200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Hash 848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.unius.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 18:32:08 GMT
expires: Wed, 29 Nov 2023 18:32:08 GMT
cache-control: public, max-age=31536000
age: 165156
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.unius.hr/wp-content/themes/dt-the7/js/main.min.js?ver=10.4.0
91.234.46.71200 OK 31 kB URL HTTP/2 www.unius.hr/wp-content/themes/dt-the7/js/main.min.js?ver=10.4.0
IP 91.234.46.71:0
File type Web Open Font Format (Version 2), TrueType, length 31320, version 1.0\012- data
Hash 3fe71527811fbfedd2c07962e1bc49e7
f63e158a0480c5d711b5e268db0e75e57d87a8a5
24c0e724005344165ee0a0ff4c96a914e174bb4caa20c8a533fb194d92853e95
GET /wp-content/themes/dt-the7/js/main.min.js?ver=10.4.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 10 Feb 2022 05:56:32 GMT
accept-ranges: bytes
content-length: 333807
content-type: application/javascript
X-Firefox-Spdy: h2
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 17188, version 1.0\012- data
Hash 393d0ca42a3bfbd34fb5b86f67e426ff
989cf4c13645ec6307b8bf399b448113ab6deaa5
90ebbbbaded0b3957104970c5523090c52c7863ad78cce4f9258f576e154397e
GET /s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.unius.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17188
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 22:02:35 GMT
expires: Tue, 28 Nov 2023 22:02:35 GMT
cache-control: public, max-age=31536000
age: 238929
last-modified: Mon, 18 Jul 2022 19:21:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/spacemono/v12/i7dPIFZifjKcF5UAWdDRYEF8RQ.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/spacemono/v12/i7dPIFZifjKcF5UAWdDRYEF8RQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15788, version 1.0\012- data
Hash 756b5974f5617abf694d2bfc6b15a338
5d05e3417fad965a22ea8f5af58466189b98205e
d459ece356a7aed8b848fae17def65862f04138ddebcc748631f5d323b9c8f1c
GET /s/spacemono/v12/i7dPIFZifjKcF5UAWdDRYEF8RQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.unius.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15788
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 03:57:40 GMT
expires: Thu, 30 Nov 2023 03:57:40 GMT
cache-control: public, max-age=31536000
age: 131224
last-modified: Tue, 30 Aug 2022 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.unius.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 75029
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.unius.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:41 GMT
expires: Tue, 28 Nov 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 250323
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
insights.sitesearch360.com/insights/session?version=14.1
104.18.9.146204 No Content 0 B URL HTTP/2 insights.sitesearch360.com/insights/session?version=14.1
IP 104.18.9.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /insights/session?version=14.1 HTTP/1.1
Host: insights.sitesearch360.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 157
Origin: https://www.unius.hr
Connection: keep-alive
Referer: https://www.unius.hr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 01 Dec 2022 16:24:44 GMT
allow-control-allow-origin: *
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
allow-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 772d2cbc99a71c16-OSL
X-Firefox-Spdy: h2
maps.gstatic.com/maps-api-v3/embed/js/51/2/init_embed.js
142.250.74.3200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/2/init_embed.js
IP 142.250.74.3:0
File type ASCII text, with very long lines (2669)
Hash ed2723b79bc5eab77a130d1494114fc3
868e33258f37face8b5d0fe4420632505c1d25be
4707d296c9f44bffe17c3b0a98ea5ce6f0e83cf700ba691ede674daf6f6b4443
GET /maps-api-v3/embed/js/51/2/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69315
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 21:46:01 GMT
expires: Thu, 30 Nov 2023 21:46:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 22:32:00 GMT
content-type: text/javascript
age: 67123
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
142.250.74.35200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.unius.hr
Connection: keep-alive
Referer: https://www.unius.hr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 19:09:57 GMT
expires: Tue, 28 Nov 2023 19:09:57 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 249287
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.unius.hr/wp-content/uploads/fbrfg/apple-touch-icon.png
91.234.46.71200 OK 17 kB URL HTTP/2 www.unius.hr/wp-content/uploads/fbrfg/apple-touch-icon.png
IP 91.234.46.71:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 3a99a9a4fca19d61d55960a70c1a7b26
0fae1b55e904fed1c38d47211cfa5d1a77e66771
271007528222f8f0168097469eaa76301768a82e97f925e03629e93db2562377
GET /wp-content/uploads/fbrfg/apple-touch-icon.png HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1; ssi--sessionId=2eda1245-1654-c028-2e3e-af300f494a22; ssi--lastInteraction=1669911882701
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:44 GMT
server: Apache
last-modified: Mon, 03 Feb 2020 12:51:26 GMT
accept-ranges: bytes
content-length: 16963
content-type: image/png
X-Firefox-Spdy: h2
www.unius.hr/wp-content/uploads/fbrfg/favicon-16x16.png
91.234.46.71200 OK 943 B URL HTTP/2 www.unius.hr/wp-content/uploads/fbrfg/favicon-16x16.png
IP 91.234.46.71:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 9ef7f502893f0a1f0b2e18081d7debb9
361f10e454f1b73ecf29e57203ca94ec18db1b1f
d05c4222cd7726f3758f92e6628a94bbcc9bf1f947b18af14f2c4007390a64cc
GET /wp-content/uploads/fbrfg/favicon-16x16.png HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1; ssi--sessionId=2eda1245-1654-c028-2e3e-af300f494a22; ssi--lastInteraction=1669911882701
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:44 GMT
server: Apache
last-modified: Mon, 03 Feb 2020 12:51:26 GMT
accept-ranges: bytes
content-length: 943
content-type: image/png
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.unius.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 75051
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
142.250.74.35200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Hash 87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.unius.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:42:24 GMT
expires: Thu, 30 Nov 2023 19:42:24 GMT
cache-control: public, max-age=31536000
age: 74541
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 46f64b2b91b2dccc1b3edd9202459e4e
27476ec1afc3b213e37120feebc6654016260f4b
f417c8f80995e7b022817a5b5900f753ba1dd0c06756cbd1a7f4b40298948c5e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5220
Cache-Control: max-age=120049
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:45 GMT
Etag: "6387f2da-117"
Expires: Sat, 03 Dec 2022 01:45:34 GMT
Last-Modified: Thu, 01 Dec 2022 00:18:34 GMT
Server: ECS (amb/6B90)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d0b0c1d6ff83f92d7ae37f50d1c229d6
b0c67bec85dcbcff8fb328b01f9f67a8cca0339b
dab2a35d931e7d63b09ba19c2369cd8e789bf9eb441b695096436eb6f8b1ff0b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1785
Cache-Control: max-age=125661
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:45 GMT
Etag: "63881631-117"
Expires: Sat, 03 Dec 2022 03:19:06 GMT
Last-Modified: Thu, 01 Dec 2022 02:49:21 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
code.tidio.co/wdwmjtqkduxlbf3xubgp1o5syxwc4gxz.js
104.26.9.183302 Found 16 kB URL HTTP/2 code.tidio.co/wdwmjtqkduxlbf3xubgp1o5syxwc4gxz.js
IP 104.26.9.183:0
Hash f21247b1f77f7ebd99b1b06319baf9ea
abd6f9efd5318c3d601cbc018f0439df10c75944
7e137a5bd86ba3a0224b2859e34e38cc9f2ee61d398ad4700422d083daddf478
GET /wdwmjtqkduxlbf3xubgp1o5syxwc4gxz.js HTTP/1.1
Host: code.tidio.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 01 Dec 2022 16:24:45 GMT
content-type: text/html
location: https://widget-v4.tidiochat.com/1_130_0/static/js/render.1cc153e1b0983c8869e6.js
cache-control: private, no-cache, no-store, must-revalidate
widget-cache-status: HIT
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wQRzv9XapeudkJ2u9S73qpxSNwvjvszADvpbJyHh3XUWmV1BS%2BekPFdfA4Ovvr81hyOOYIqm0sBlEmBvTBzaDez%2B4pWGs%2FnJ05HunaGj2KdmutM%2Fl2oYniA%2BdlwhiwM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772d2cc39f871c06-OSL
X-Firefox-Spdy: h2
www.unius.hr/wp-json/contact-form-7/v1/contact-forms/1537/feedback/schema
91.234.46.71200 OK 19 kB URL HTTP/2 www.unius.hr/wp-json/contact-form-7/v1/contact-forms/1537/feedback/schema
IP 91.234.46.71:0
Hash 1c3c3dfdab8517706c2ab40591071c46
0ac3107e081fd55ba8cfb6aeeb59767105e03b15
9b28926bc6255dd02e7f350c9887a5a93584b54b365856f2f1171a947dfd3b27
Analyzer Verdict Alert fortinet Malware
GET /wp-json/contact-form-7/v1/contact-forms/1537/feedback/schema HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Connection: keep-alive
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1; ssi--sessionId=2eda1245-1654-c028-2e3e-af300f494a22; ssi--lastInteraction=1669911882701
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:44 GMT
server: Apache
x-wp-doingitwrong: register_rest_route (od 5.5.0; Definiciji REST API rute za <code>wpgmza/v1/decompress/base64[A-Za-z0-9+\- ]+(={0,3})?(\/[A-Za-z0-9+\- ]+(={0,3})?)?</code> nedostaje neophodni argument <code>permission_callback</code>. Za REST API rute koje su namijenjene javnosti, koristite <code>__return_true</code> kao povratni poziv.)
x-robots-tag: noindex
link: <https://www.unius.hr/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
vary: Origin
content-type: application/json; charset=UTF-8
X-Firefox-Spdy: h2
widget-v4.tidiochat.com//tururu.mp3
104.26.8.139206 Partial Content 7.2 kB URL HTTP/2 widget-v4.tidiochat.com//tururu.mp3
IP 104.26.8.139:0
File type MPEG ADTS, layer III, v1, 64 kbps, 44.1 kHz, Monaural\012- data
Hash 5061b4d134a7b4d5d744f9a127b757a8
c5e240ac60d3914cb3836ba6652105c67720b845
12c7687514ca85ba2157ed61914ac526bb9dd15cb5a2a2d9e4d88f919349284f
GET //tururu.mp3 HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Thu, 01 Dec 2022 16:24:45 GMT
content-type: audio/mpeg
content-length: 7224
last-modified: Mon, 07 Nov 2022 08:15:48 GMT
etag: "6368beb4-1c38"
expires: Thu, 24 Nov 2022 02:08:23 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 1865782
content-range: bytes 0-7223/7224
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xfBRvRFU%2B6lbb9KYQgm1lHnFMa%2B7Kx8lDnZoCG2iyiWUsQwQecSgJu7CM%2BFROi68aL5SHZ0VxqdsB%2BeWFET7j0c5J1hOCI9EzXtZyKKubms%2FMn5U2hTPi1uMK6JdCWNtsjpBbCdSj%2BaV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 772d2cc61dddb505-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 4749ecec33c31d2d68ee07f00dd9453e
d832199798a74a903541398c12050d5c80d54d5b
e6e008b15d324565b257aa34295a5f73fa6d290b81dbe02c90a4b849a76ff306
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 01 Dec 2022 16:24:46 GMT
Last-Modified: Thu, 01 Dec 2022 15:19:38 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3SqmsSqsbQWK8EzA7rXA5Z-4Ht1ZrZeU9QCjHC2tC_s8koUExINgbw==
Age: 3908
socket.tidio.co/socket.io/?ppk=wdwmjtqkduxlbf3xubgp1o5syxwc4gxz&device=desktop&EIO=3&transport=websocket
54.171.235.156101 Switching Protocols 0 B URL HTTP/1.1 socket.tidio.co/socket.io/?ppk=wdwmjtqkduxlbf3xubgp1o5syxwc4gxz&device=desktop&EIO=3&transport=websocket
IP 54.171.235.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?ppk=wdwmjtqkduxlbf3xubgp1o5syxwc4gxz&device=desktop&EIO=3&transport=websocket HTTP/1.1
Host: socket.tidio.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.unius.hr
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qhq+eKr1lwIJiqJ1h5e+ag==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Thu, 01 Dec 2022 16:24:46 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Rd9Y0eVi2yXCsIhkahQ4BtQE1tQ=
Sec-WebSocket-Extensions: permessage-deflate
fonts.gstatic.com/s/mulish/v12/1Ptvg83HX_SGhgqk3wot.woff2
142.250.74.35200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/mulish/v12/1Ptvg83HX_SGhgqk3wot.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 27428, version 1.0\012- data
Hash e6d08c334958c128b793b570a7dce066
081111500e97a7663ff936f847e050fee6b8be2b
8da72dacca3725d500bc789e5f506c76367804eecc46c4249ce0ff822d7a147e
GET /s/mulish/v12/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.unius.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27428
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 06:53:39 GMT
expires: Sat, 25 Nov 2023 06:53:39 GMT
cache-control: public, max-age=31536000
age: 552668
last-modified: Mon, 11 Jul 2022 18:57:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/mulish/v12/1Ptvg83HX_SGhgqk0QotcqA.woff2
142.250.74.35200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/mulish/v12/1Ptvg83HX_SGhgqk0QotcqA.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 24316, version 1.0\012- data
Hash 318a2ae8b82183cd78b947d0042c7e10
f690c11fe3c8ff360672da95dcfaf0073a8fdc37
2bde8ca32e52ee96dc3d6ddd52240b115f3a2ca527c7697899aa21ed9cba3a5b
GET /s/mulish/v12/1Ptvg83HX_SGhgqk0QotcqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.unius.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 06:25:28 GMT
expires: Wed, 29 Nov 2023 06:25:28 GMT
cache-control: public, max-age=31536000
age: 208759
last-modified: Mon, 11 Jul 2022 19:02:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 1.3 kB IP 93.184.220.29:0
File type gzip compressed data, max compression\012- data
Hash 72f732fdd083aaae0e06e68e0d616fe0
3d5a2621ead2c599369e16de1e02c073d683e1d2
7b38d5fa438a1e4de492062791cc2cbb86ff3393892a17ef8cc00a073bbe6947
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3701
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 16:24:47 GMT
Last-Modified: Thu, 01 Dec 2022 15:23:07 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 727
fonts.googleapis.com/css?family=Montserrat:normal,700
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:normal,700
IP 142.250.74.74:0
GET /css?family=Montserrat:normal,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 16:24:42 GMT
date: Thu, 01 Dec 2022 16:24:42 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.unius.hr/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.5
91.234.46.71200 OK 0 B URL HTTP/2 www.unius.hr/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.5
IP 91.234.46.71:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.5 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Tue, 08 Nov 2022 08:28:59 GMT
accept-ranges: bytes
content-length: 165339
content-type: application/javascript
X-Firefox-Spdy: h2
widget-v4.tidiochat.com/1_130_0/static/js/widget.1cc153e1b0983c8869e6.js
104.26.8.139200 OK 0 B URL HTTP/2 widget-v4.tidiochat.com/1_130_0/static/js/widget.1cc153e1b0983c8869e6.js
IP 104.26.8.139:0
GET /1_130_0/static/js/widget.1cc153e1b0983c8869e6.js HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:45 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 13:58:11 GMT
vary: Accept-Encoding
etag: W/"637f7873-83636"
cache-control: max-age=691200
cf-cache-status: HIT
age: 2307
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G6%2FVgsGUfCBTIqYnGJ45xiLzKJQtjB7mg4WZjqUHJT2jYaWIbl3WpywGqD5Qib7THWb17PtuqItR99W9RpDbbxQ09Wn74sgErf%2BGeCoGjDmU7KCsI4kYQVFF7LnKl6YQl8sf8Yhc0Bqr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 772d2cc6ce8fb505-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.unius.hr/doc/iczrz8bevk.zip
91.234.46.71404 Not Found 0 B URL HTTP/2 www.unius.hr/doc/iczrz8bevk.zip
IP 91.234.46.71:0
Analyzer Verdict Alert fortinet Malware
GET /doc/iczrz8bevk.zip HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
date: Thu, 01 Dec 2022 16:24:40 GMT
server: Apache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.unius.hr/wp-json/>; rel="https://api.w.org/"
set-cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; expires=Mon, 27-Mar-2023 10:11:21 GMT; Max-Age=10000000; path=/; secure; HttpOnly
mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; expires=Mon, 27-Mar-2023 10:11:21 GMT; Max-Age=10000000; path=/
mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; expires=Mon, 27-Mar-2023 10:11:21 GMT; Max-Age=10000000; path=/
mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; expires=Mon, 27-Mar-2023 10:11:21 GMT; Max-Age=10000000; path=/
mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; expires=Mon, 27-Mar-2023 10:11:21 GMT; Max-Age=10000000; path=/
mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; expires=Mon, 27-Mar-2023 10:11:21 GMT; Max-Age=10000000; path=/
PH_HPXY_CHECK=s1; path=/
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
www.unius.hr/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
91.234.46.71200 OK 0 B URL HTTP/2 www.unius.hr/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 91.234.46.71:0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Mon, 16 Aug 2021 12:34:09 GMT
accept-ranges: bytes
content-length: 89521
content-type: application/javascript
X-Firefox-Spdy: h2
widget-v4.tidiochat.com/1_130_0/static/js/render.1cc153e1b0983c8869e6.js
104.26.8.139200 OK 0 B URL HTTP/2 widget-v4.tidiochat.com/1_130_0/static/js/render.1cc153e1b0983c8869e6.js
IP 104.26.8.139:0
GET /1_130_0/static/js/render.1cc153e1b0983c8869e6.js HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.unius.hr/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:45 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 13:58:11 GMT
vary: Accept-Encoding
etag: W/"637f7873-5713"
cache-control: max-age=691200
cf-cache-status: HIT
age: 2398
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RVvnqRbp8pE8VhuyPo5NERvGApBW4LYR1dDUN6xKAd0G8cMF7BRWTUDJvnXbOYFRtqyCnnjL2jPO16PxZh5dw4sm0eVXSxeIhbDyk%2BBLqGD6TiSqGg2J5%2F9%2BcIYMxtq4iv32CaW4tefQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 772d2cc55cf8b505-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,600,700%7CRubik:400,500,600,700%7CSpace+Mono:400,600,700%7COpen+Sans:400,600,700
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,600,700%7CRubik:400,500,600,700%7CSpace+Mono:400,600,700%7COpen+Sans:400,600,700
IP 142.250.74.74:0
GET /css?family=Roboto:400,600,700%7CRubik:400,500,600,700%7CSpace+Mono:400,600,700%7COpen+Sans:400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 16:24:42 GMT
date: Thu, 01 Dec 2022 16:24:42 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.sitesearch360.com/v14/ss360-styles-v14.chunk.facbab7fe6ce37080fdd.js
104.18.8.146200 OK 0 B URL HTTP/2 cdn.sitesearch360.com/v14/ss360-styles-v14.chunk.facbab7fe6ce37080fdd.js
IP 104.18.8.146:0
GET /v14/ss360-styles-v14.chunk.facbab7fe6ce37080fdd.js HTTP/1.1
Host: cdn.sitesearch360.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.unius.hr
Connection: keep-alive
Referer: https://www.unius.hr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:44 GMT
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 10:18:08 GMT
etag: W/"a8ae-5eec1899a8efe-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: MISS
expires: Fri, 01 Dec 2023 16:24:44 GMT
cache-control: public, max-age=31536000
server: cloudflare
cf-ray: 772d2cbc59761c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.sitesearch360.com/v14/ss360-unibox-v14.chunk.347fa1a9c133964b36a9.js
104.18.8.146200 OK 0 B URL HTTP/2 cdn.sitesearch360.com/v14/ss360-unibox-v14.chunk.347fa1a9c133964b36a9.js
IP 104.18.8.146:0
GET /v14/ss360-unibox-v14.chunk.347fa1a9c133964b36a9.js HTTP/1.1
Host: cdn.sitesearch360.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.unius.hr
Connection: keep-alive
Referer: https://www.unius.hr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:44 GMT
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 10:18:08 GMT
etag: W/"c742-5eec189a404de-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: MISS
expires: Fri, 01 Dec 2023 16:24:44 GMT
cache-control: public, max-age=31536000
server: cloudflare
cf-ray: 772d2cbc59701c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
widget-v4.tidiochat.com/1_130_0/static/js/chunk-WidgetIframe-1cc153e1b0983c8869e6.js
104.26.8.139200 OK 0 B URL HTTP/2 widget-v4.tidiochat.com/1_130_0/static/js/chunk-WidgetIframe-1cc153e1b0983c8869e6.js
IP 104.26.8.139:0
GET /1_130_0/static/js/chunk-WidgetIframe-1cc153e1b0983c8869e6.js HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:45 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 13:58:11 GMT
vary: Accept-Encoding
etag: W/"637f7873-556da"
cache-control: max-age=691200
cf-cache-status: HIT
age: 2335
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wibWp2hh6j4rVNrHxrRBKwsBQ4DmtZjORm8tQQtcNvrTgcrd4Y4ChGDy2dVwLM6d40mXUKev8L4qJOYVtiQg4%2FAXwUY9xZtH%2BA%2B2BpU2C4SnCE3OvN3EARNcXWNkAcmD9IsT%2BFYIGlR7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 772d2cc5bd76b505-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.unius.hr/wp-content/themes/dt-the7/js/legacy.min.js?ver=10.4.0
91.234.46.71200 OK 0 B URL HTTP/2 www.unius.hr/wp-content/themes/dt-the7/js/legacy.min.js?ver=10.4.0
IP 91.234.46.71:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/dt-the7/js/legacy.min.js?ver=10.4.0 HTTP/1.1
Host: www.unius.hr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/doc/iczrz8bevk.zip
Cookie: mc_session_ids[default]=185a6025068f85a2ce4443ceebc885dd34cf4ee5; mc_session_ids[multi][0]=bfd270aba8e818ca5c63ed2c8472d33d1d8f662c; mc_session_ids[multi][1]=ec300826eabef7fd613c49b7748836fa744dea0c; mc_session_ids[multi][2]=d3b00b126c3df3c063c29aec51ab3ee44e189eed; mc_session_ids[multi][3]=f6384a9d3529506c99a138ada7adf2676b819b04; mc_session_ids[multi][4]=b3912cf356435053bd2bd6bbdadc102ae6ff29fe; PH_HPXY_CHECK=s1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:42 GMT
server: Apache
last-modified: Thu, 10 Feb 2022 05:56:32 GMT
accept-ranges: bytes
content-length: 1368
content-type: application/javascript
X-Firefox-Spdy: h2
js.sitesearch360.com/plugin/bundle/7898.js?integration=wordpress&integrationMode=full
104.18.8.146200 OK 0 B URL HTTP/2 js.sitesearch360.com/plugin/bundle/7898.js?integration=wordpress&integrationMode=full
IP 104.18.8.146:0
GET /plugin/bundle/7898.js?integration=wordpress&integrationMode=full HTTP/1.1
Host: js.sitesearch360.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:43 GMT
content-type: application/javascript;charset=UTF-8
allow-control-allow-origin: *
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
allow-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
last-modified: Thu, 01 Dec 2022 16:24:43 GMT
cf-cache-status: MISS
expires: Fri, 02 Dec 2022 08:24:43 GMT
cache-control: public, max-age=57600
vary: Accept-Encoding
server: cloudflare
cf-ray: 772d2cb3c94c1c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.sitesearch360.com/v14/sitesearch360-v14.frozen.bab21844879106aaf449a37e764174e2.js
104.18.8.146200 OK 0 B URL HTTP/2 cdn.sitesearch360.com/v14/sitesearch360-v14.frozen.bab21844879106aaf449a37e764174e2.js
IP 104.18.8.146:0
GET /v14/sitesearch360-v14.frozen.bab21844879106aaf449a37e764174e2.js HTTP/1.1
Host: cdn.sitesearch360.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.unius.hr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 16:24:43 GMT
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 10:18:05 GMT
etag: W/"4299e-5eec18977769f-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 21934
expires: Fri, 01 Dec 2023 16:24:43 GMT
cache-control: public, max-age=31536000
server: cloudflare
cf-ray: 772d2cba7f8c1c16-OSL
content-encoding: br
X-Firefox-Spdy: h2