Report - aszoran.hr/natus-aut/documents.zip

Report Overview

Submitted URL
aszoran.hr/natus-aut/documents.zip
IP
95.217.76.40
ASN
#24940 Hetzner Online GmbH
Submitted
2022-09-05 14:54:05
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
74

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.35
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	302 B	62 kB	142.250.74.42
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	410 B	17 kB	142.250.74.10
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.187.34.135
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.115
www.aszoran.hr	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.5 kB	1.0 MB	95.217.76.40
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	76 kB	69.16.175.42
platform.linkedin.com	3785	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	267 B	906 B	23.36.76.121
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	50 kB	34.120.237.76
aszoran.hr	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	353 B	588 B	95.217.76.40
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	4.9 kB	142.250.74.3
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	118 kB	142.250.74.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-05	medium	aszoran.hr/natus-aut/documents.zip	Malware
2022-09-05	medium	www.aszoran.hr/natus-aut/documents.zip	Malware
2022-09-05	medium	www.aszoran.hr/hrvatski/naslovnica_1/	Malware
2022-09-05	medium	www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js	Malware
2022-09-05	medium	www.aszoran.hr/addons/js/jquery.classie/classie.js	Malware
2022-09-05	medium	www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js	Malware
2022-09-05	medium	www.aszoran.hr/addons/js/browser-css-fix.php	Malware
2022-09-05	medium	www.aszoran.hr/hrvatski/naslovnica_1/	Malware
2022-09-05	medium	www.aszoran.hr/addons/js/to-top/to-top-script.js	Malware
2022-09-05	medium	www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js	Malware
2022-09-05	medium	www.aszoran.hr/addons/js/jquery.slick.menu/jquery.slicknav.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed
2022-09-05	medium	aszoran.hr	Sinkholed

JavaScript (15)

	URL	Size	First Seen	Last Seen
	www.aszoran.hr/hrvatski/naslovnica_1/	819 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/hrvatski/naslovnica_1/ IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 9e336fc2025388ea1df456d33b7d728a ce27d208496cc2383c45bf7350b41d6e7720755d adbb2dd8c4137985ea7c48647dbcd1bcd2d6c60e675ec3d3ee45dffc4ffd6fe2 Loading...

	www.aszoran.hr/addons/js/jquery.slick.menu/jquery.slicknav.js	16 kB	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/jquery.slick.menu/jquery.slicknav.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 6b76a9cbd9a5d9106bcf23e70642407c 5211149af0c1576db3a0b700f3443ebf8109baed 1745479779e5f1a651548694c615c06cfe617303885cd9a847548c09840855a4 Loading...

	ajax.googleapis.com/ajax/libs/jqueryui/1.10.2/jquery-ui.min.js	228 kB	2023-03-07	2024-04-24
Pretty URL ajax.googleapis.com/ajax/libs/jqueryui/1.10.2/jquery-ui.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2024-04-24 03:10:24 Times Seen378 Hash 3e6acb1e6426ef90d2e786a006a4ea28 326339e0b8ee351a1e706f6b1cba772e64d1ff19 16089a42741acc5fd00ab17da92be9458e8f0029fd645f159e582a7ea0f52ec1 Loading...

	www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js	65 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash a151c4a8ba3d021d279a8e099cfb408a d4a874100c4a05e1b89624f75051db59a2d9d07f acf7351a4a20ca736754d303e9c09227f8190e0f6237716c125bdafb64d66226 Loading...

	www.aszoran.hr/hrvatski/naslovnica_1/	107 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/hrvatski/naslovnica_1/ IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 5742d59195256a6ccf1eb238a5bf5cfe 4f2f01a76a84b8b577286ad2368884eea2bac291 2b7e630251a0b57034ade8c209268a82b91d0739ccf9d51b0c8c024e2b767c6d Loading...

	www.aszoran.hr/hrvatski/naslovnica_1/	107 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/hrvatski/naslovnica_1/ IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash d7e4863afc969e2d536121edd5b70dba 51528407b7ae0ca00f229478470ec9582d3bcbc1 9634394a3e17188a0cbf9017f3f7e176765335c8b8b7adf2876b3d20e52ad45f Loading...

	www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js	1.8 kB	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 7bde2230740c65ea8113e47729df9e66 74333d17f24820fce5c96ba5514077c0a4eb3736 cf60081a30151ca8117c55e29eac8e9e27d24af74119081a2763e88b6212762b Loading...

	www.aszoran.hr/hrvatski/naslovnica_1/	504 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/hrvatski/naslovnica_1/ IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 148c688c710b13cf5f2ac9ff872bb2cb 4802be36150fbb3882c520d2319b0d25160b4118 150740aa8d8a42c4c83ac22cdf6f0a371d0659326d1bdea9a19fd5df27dc66ec Loading...

	www.aszoran.hr/addons/js/browser-css-fix.php	10 kB	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/browser-css-fix.php IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 4117917bbdde7cef416654714b777b0d 8335f70435cf6d4adf91b3607ad4af08c1cb645d e8bd473ff1690816a139e944ccb9cbda61b6e98ee005c28cc4b2e86b9bbea58b Loading...

	www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js	1.3 kB	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash fd8856a4304962506fdf9af710391d1d 3b3584d0d647d9f7a172817528813f0c9abda9c4 8c265e202dac21911f007c0ed2d751b915ed012ecf2dd53f27ebaf3d13269364 Loading...

	www.aszoran.hr/addons/js/to-top/to-top-script.js	294 B	2023-03-07	2023-03-17
Pretty URL www.aszoran.hr/addons/js/to-top/to-top-script.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2023-03-17 09:24:46 Times Seen1 Hash 4098892a03fe0a069248944c28307cc2 4beb1d8e2c45512792d52581d56b03dd40c16024 97031164e39800c0e097d93c9bf249fba012fd34dece0f716b05e581024eb530 Loading...

	www.aszoran.hr/addons/js/jquery.classie/classie.js	1.9 kB	2023-03-07	2024-03-29
Pretty URL www.aszoran.hr/addons/js/jquery.classie/classie.js IP 95.217.76.40 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2024-03-29 11:18:49 Times Seen126 Hash d3c2ce47c4784c4cd4740ab047371f85 7eafb00a912e475500ac1a5ec6f8ead5299c4ebb 469273fc70486fd947d2f8822ef14108d6219ca26b4e0306769e6ae8473259ba Loading...

	code.jquery.com/jquery-migrate-3.0.0.js	15 kB	2023-03-07	2024-03-04
Pretty URL code.jquery.com/jquery-migrate-3.0.0.js IP 69.16.175.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:52 Last Seen2024-03-04 03:44:58 Times Seen68 Hash 3a465b249cb5f68e904c94a47d3da683 33723207fcd0f514433521b035d421ced655de70 96c54e07edd8866e877b93244cedc1c3f5f0e0d5caef06184e2d58f8cff63eb3 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 21:09:25 Times Seen37100956 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	code.jquery.com/jquery-3.2.1.min.js	87 kB	2023-03-07	2024-04-26
Pretty URL code.jquery.com/jquery-3.2.1.min.js IP 69.16.175.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-26 21:09:25 Times Seen62816 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

HTTP Transactions (66)

URL IP Response Size

aszoran.hr/natus-aut/documents.zip

95.217.76.40

301 Moved Permanently

253 B

URL HTTP/1.1
aszoran.hr/natus-aut/documents.zip
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
253 B (253 bytes)
Hash
9cb05f149124f011fbc674399945e42a
8b89246fd56a5f5afdf6cc708f3f9698573bdb25
76f71bc8ae0aaea1d35ef9a3edd5c587919ac08980ce2a1fc49c83ab0b3b9947

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /natus-aut/documents.zip HTTP/1.1
Host: aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Sep 2022 14:53:54 GMT
Server: Apache
Location: http://www.aszoran.hr/natus-aut/documents.zip
Cache-Control: max-age=172800
Expires: Wed, 07 Sep 2022 14:53:54 GMT
Content-Length: 253
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12370
Expires: Mon, 05 Sep 2022 18:20:04 GMT
Date: Mon, 05 Sep 2022 14:53:54 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 05 Sep 2022 14:39:38 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vBQ87d0m7uMZD1F6rG32uivmmJMCPxMtlreiKrfqGg0G9SUJx7X6ug==
Age: 856

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.35

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 01:15:19 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Lk-XnKJVVwVEwS6BNlpRDeDLvy7P-w0QtGVtKjUIVB7b3Z2Fn7si_w==
age: 49117
X-Firefox-Spdy: h2

www.aszoran.hr/natus-aut/documents.zip

95.217.76.40

302 Found

0 B

URL HTTP/1.1
www.aszoran.hr/natus-aut/documents.zip
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /natus-aut/documents.zip HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Date: Mon, 05 Sep 2022 14:53:54 GMT
Server: Apache
Pragma: no-cache
Set-Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92; path=/
Location: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0, max-age=300, public, no-cache, no-store, must-revalidate
Expires: Mon, 12 Dec 1982 06:00:00 GMT, 0
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 14:53:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.aszoran.hr/hrvatski/naslovnica_1/

95.217.76.40

200 OK

10 kB

URL HTTP/1.1
www.aszoran.hr/hrvatski/naslovnica_1/
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size
10 kB (10317 bytes)
Hash
4117917bbdde7cef416654714b777b0d
8335f70435cf6d4adf91b3607ad4af08c1cb645d
e8bd473ff1690816a139e944ccb9cbda61b6e98ee005c28cc4b2e86b9bbea58b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /hrvatski/naslovnica_1/ HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:54 GMT
Server: Apache
Pragma: no-cache
Cache-Control: max-age=300, must-revalidate, max-age=300, public, no-cache, no-store, must-revalidate
Expires: Mon, 12 Dec 1982 06:00:00 GMT, 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

www.aszoran.hr/addons/css/reset.css

95.217.76.40

200 OK

568 B

URL HTTP/1.1
www.aszoran.hr/addons/css/reset.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (438)
Size
568 B (568 bytes)
Hash
f3625005c5c910b8f7c334ef92a85c9d
f297489dcd385187db3dcad5badad120a1e4c704
f4dbb920fd66facb0156b415e60afe568ffb39907c8535a6db6d28a9efee7034

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /addons/css/reset.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:54 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 568
Cache-Control: max-age=2592000
Expires: Wed, 05 Oct 2022 14:53:54 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

code.jquery.com/jquery-migrate-3.0.0.js

69.16.175.42

200 OK

5.0 kB

URL HTTP/1.1
code.jquery.com/jquery-migrate-3.0.0.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text
Size
5.0 kB (4960 bytes)
Hash
a1ab44f15ae27f50bd5432a0d8a9c41a
da6cac4b271724aff3d13efd17a3154824aeaf20
cbf744382777029fa06a71bcd98055902ad3f94ba40e31d69e381b501813e23b

HTTP Headers

GET /jquery-migrate-3.0.0.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:54 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 4960
Content-Type: application/javascript; charset=utf-8
Last-Modified: Fri, 20 Aug 2021 17:47:53 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"611feac9-3a4b"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1662389634.dop208.sk1.t,1662389634.cds220.sk1.c

code.jquery.com/ui/1.10.1/themes/base/jquery-ui.css

69.16.175.42

200 OK

5.9 kB

URL HTTP/1.1
code.jquery.com/ui/1.10.1/themes/base/jquery-ui.css
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (339)
Size
5.9 kB (5903 bytes)
Hash
ff960b5f26bc3f99c208134bd3d25bc5
bd71bfee058ccecf5b3d9cdc26258e6f4166755d
953952aca9c675f4a683ffb2facf35cf062688dafd4d7b50ca95df0732d8f89c

HTTP Headers

GET /ui/1.10.1/themes/base/jquery-ui.css HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:54 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 5903
Content-Type: text/css
Last-Modified: Wed, 16 Feb 2022 10:50:40 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"620cd700-7e0a"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1662389634.dop072.sk1.t,1662389634.cds254.sk1.c

code.jquery.com/jquery-latest.min.js

69.16.175.42

200 OK

33 kB

URL HTTP/1.1
code.jquery.com/jquery-latest.min.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (32086)
Size
33 kB (33202 bytes)
Hash
a39e9fcc2a78d5b1ed25b5f853c17a22
f1d1d30d35146a7adee855becba02b776366f169
a0581d3f2c05cfb302f81d2894c114da758e14a290bd4f240c7b63628469ee8d

HTTP Headers

GET /jquery-latest.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:54 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 33202
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 16 Feb 2022 10:50:39 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"620cd6ff-1762a"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1662389634.dop026.sk1.t,1662389634.cds256.sk1.c

www.aszoran.hr/addons/css/basic.css

95.217.76.40

200 OK

2.1 kB

URL HTTP/1.1
www.aszoran.hr/addons/css/basic.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
2.1 kB (2071 bytes)
Hash
41ea52392bc72cad4e5f02834d86636d
567685f6c84205c22fdf3f1a7596fdcdca05f90a
5b505e0e4b7d93f86dea60203c27f26d11b30959888d5321ac15c48331b59cf5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /addons/css/basic.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:54 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 13:20:28 GMT
Accept-Ranges: bytes
Content-Length: 2071
Cache-Control: max-age=2592000
Expires: Wed, 05 Oct 2022 14:53:54 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.aszoran.hr/addons/js/jquery.slick.menu/slicknav.css

95.217.76.40

200 OK

3.6 kB

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.slick.menu/slicknav.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
3.6 kB (3563 bytes)
Hash
6dcddef83a29e58a1ec3b596a3b82fd8
e332e5e86f611d6d532442e4eb84bd1c9462ea67
b1cea6545db4ecfb440481a06d69a2ca7b44b8bc61d7012a973f84b11c04976b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.slick.menu/slicknav.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:54 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 3563
Cache-Control: max-age=2592000
Expires: Wed, 05 Oct 2022 14:53:54 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.css

95.217.76.40

200 OK

519 B

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
519 B (519 bytes)
Hash
710811976ad0030b32af6178727192fa
04143d9251564a91c3caa3a3d5189642f0a4a1c8
5d453293ab8cc49e609e72b5bb242b62b2021c825f52625d518415cf94156deb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.social/jquery.social.custom.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:54 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 519
Cache-Control: max-age=2592000
Expires: Wed, 05 Oct 2022 14:53:54 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js

95.217.76.40

200 OK

1.3 kB

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.social/jquery.social.custom.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
1.3 kB (1256 bytes)
Hash
fd8856a4304962506fdf9af710391d1d
3b3584d0d647d9f7a172817528813f0c9abda9c4
8c265e202dac21911f007c0ed2d751b915ed012ecf2dd53f27ebaf3d13269364

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.social/jquery.social.custom.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:54 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 1256
Cache-Control: max-age=172800
Expires: Wed, 07 Sep 2022 14:53:54 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.aszoran.hr/addons/js/jquery.classie/classie.js

95.217.76.40

200 OK

1.9 kB

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.classie/classie.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
1.9 kB (1872 bytes)
Hash
d3c2ce47c4784c4cd4740ab047371f85
7eafb00a912e475500ac1a5ec6f8ead5299c4ebb
469273fc70486fd947d2f8822ef14108d6219ca26b4e0306769e6ae8473259ba

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.classie/classie.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:54 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 1872
Cache-Control: max-age=172800
Expires: Wed, 07 Sep 2022 14:53:54 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.aszoran.hr/addons/js/to-top/ui.totop.css

95.217.76.40

200 OK

762 B

URL HTTP/1.1
www.aszoran.hr/addons/js/to-top/ui.totop.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
762 B (762 bytes)
Hash
ca7a1a5fc8651a6031fcda2d2c02c1fa
aaaad4310be94423d593c1f15c88f5dde9c9850f
e9218adb87f90d04920f9c858101bcaa80c40226f68cf3a7763242d09b266050

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /addons/js/to-top/ui.totop.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:54 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 762
Cache-Control: max-age=2592000
Expires: Wed, 05 Oct 2022 14:53:54 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

ajax.googleapis.com/ajax/libs/jqueryui/1.10.2/jquery-ui.min.js

142.250.74.42

200 OK

61 kB

URL HTTP/1.1
ajax.googleapis.com/ajax/libs/jqueryui/1.10.2/jquery-ui.min.js
IP
142.250.74.42:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32127)
Size
61 kB (60637 bytes)
Hash
a4fae3bd93aeeff434297afd1aee71fa
fc48093eea0f31043d6e4b863d74c001ebba7688
c425c0431c3199eaa90590fcf017a18f35226445bd531ffcf0aa7dd0d100e42d

HTTP Headers

GET /ajax/libs/jqueryui/1.10.2/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 60637
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 30 Aug 2022 13:11:58 GMT
Expires: Wed, 30 Aug 2023 13:11:58 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 524516
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8

www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js

95.217.76.40

200 OK

65 B

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.slick.menu/nav-slick-custom.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
65 B (65 bytes)
Hash
a151c4a8ba3d021d279a8e099cfb408a
d4a874100c4a05e1b89624f75051db59a2d9d07f
acf7351a4a20ca736754d303e9c09227f8190e0f6237716c125bdafb64d66226

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.slick.menu/nav-slick-custom.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 65
Cache-Control: max-age=172800
Expires: Wed, 07 Sep 2022 14:53:55 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

code.jquery.com/jquery-3.2.1.min.js

69.16.175.42

200 OK

30 kB

URL HTTP/2
code.jquery.com/jquery-3.2.1.min.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (32058)
Size
30 kB (30125 bytes)
Hash
148f8d3ffd9cc02048c5f4d1cc83c407
9f2b89cfd151be6a29b4d43ad64d164fb8471046
4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e

HTTP Headers

GET /jquery-3.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.aszoran.hr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Sep 2022 14:53:55 GMT
content-encoding: gzip
content-length: 30125
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1662389635.dop218.sk1.t,1662389635.cds236.sk1.hn,1662389635.cds222.sk1.c
X-Firefox-Spdy: h2

www.aszoran.hr/addons/js/browser-css-fix.php

95.217.76.40

302 Found

0 B

URL HTTP/1.1
www.aszoran.hr/addons/js/browser-css-fix.php
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/browser-css-fix.php HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 302 Found
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Pragma: no-cache
Location: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0, max-age=300, public, no-cache, no-store, must-revalidate
Expires: Mon, 12 Dec 1982 06:00:00 GMT, 0
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

www.aszoran.hr/templates/css/media_queries.css

95.217.76.40

200 OK

5.1 kB

URL HTTP/1.1
www.aszoran.hr/templates/css/media_queries.css
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with CRLF line terminators
Size
5.1 kB (5132 bytes)
Hash
19924c037517e6e34d4786c2a88a9c76
f5e8023769faf48a507a55686547a51471d40e0d
2d629d118001a924f0bc0a02ad63f46c18ceeb4359ea9bb10b5b3c080cb9407a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/css/media_queries.css HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Last-Modified: Thu, 20 Jul 2017 14:12:42 GMT
Accept-Ranges: bytes
Content-Length: 5132
Cache-Control: max-age=2592000
Expires: Wed, 05 Oct 2022 14:53:55 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

platform.linkedin.com/in.js

23.36.76.121

200 OK

471 B

URL HTTP/1.1
platform.linkedin.com/in.js
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

File type
data
Size
471 B (471 bytes)
Hash
a73c40e0fed317f31e35a24d5b5e2d0d
fb19e9d403e37956762ebb527260576860161872
4a38f2cc8997dada402e2cce06bbd8776cbad2075b00696d00efa59ad5388644

HTTP Headers

GET /in.js HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/

HTTP/1.1 200 OK
Server: Play
Expires: Mon, 5 Sep 2022 15:16:18 GMT
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Content-Type: text/javascript; charset=UTF-8
Content-Length: 162500
X-Li-Fabric: prod-lva1
X-Li-Pop: prod-lva1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAXn7rko5MZlSPjRf2clxg==
Date: Mon, 05 Sep 2022 14:53:54 GMT
Connection: keep-alive
Vary: Accept-Encoding
X-CDN-CLIENT-IP-VERSION: IPV4
X-CDN: AKAM

www.aszoran.hr/hrvatski/naslovnica_1/

95.217.76.40

200 OK

10 kB

URL HTTP/1.1
www.aszoran.hr/hrvatski/naslovnica_1/
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size
10 kB (10317 bytes)
Hash
4117917bbdde7cef416654714b777b0d
8335f70435cf6d4adf91b3607ad4af08c1cb645d
e8bd473ff1690816a139e944ccb9cbda61b6e98ee005c28cc4b2e86b9bbea58b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /hrvatski/naslovnica_1/ HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Connection: keep-alive
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Pragma: no-cache
Cache-Control: max-age=300, must-revalidate, max-age=300, public, no-cache, no-store, must-revalidate
Expires: Mon, 12 Dec 1982 06:00:00 GMT, 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

www.aszoran.hr/addons/js/to-top/to-top-script.js

95.217.76.40

200 OK

294 B

URL HTTP/1.1
www.aszoran.hr/addons/js/to-top/to-top-script.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text
Size
294 B (294 bytes)
Hash
4098892a03fe0a069248944c28307cc2
4beb1d8e2c45512792d52581d56b03dd40c16024
97031164e39800c0e097d93c9bf249fba012fd34dece0f716b05e581024eb530

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/to-top/to-top-script.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 294
Cache-Control: max-age=172800
Expires: Wed, 07 Sep 2022 14:53:55 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js

95.217.76.40

200 OK

1.8 kB

URL HTTP/1.1
www.aszoran.hr/addons/js/to-top/jquery.ui.totop.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document, ASCII text
Size
1.8 kB (1797 bytes)
Hash
7bde2230740c65ea8113e47729df9e66
74333d17f24820fce5c96ba5514077c0a4eb3736
cf60081a30151ca8117c55e29eac8e9e27d24af74119081a2763e88b6212762b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/to-top/jquery.ui.totop.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 1797
Cache-Control: max-age=172800
Expires: Wed, 07 Sep 2022 14:53:55 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a73c40e0fed317f31e35a24d5b5e2d0d
fb19e9d403e37956762ebb527260576860161872
4a38f2cc8997dada402e2cce06bbd8776cbad2075b00696d00efa59ad5388644

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 14:53:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.aszoran.hr/upload/images/site/-logo.png

95.217.76.40

200 OK

5.8 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/site/-logo.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 216 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size
5.8 kB (5847 bytes)
Hash
45aa653360c1307a1045909d5691d443
a4956f170245b13f50dad649edfbfcf29377fc2a
cbd9cd6d6b6b0065364601031d22e61f5f380509fd1cc12eeabaabaf210a321c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/site/-logo.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 11:23:02 GMT
Accept-Ranges: bytes
Content-Length: 5847
Cache-Control: max-age=31536000
Expires: Tue, 05 Sep 2023 14:53:55 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/templates/img/phone-call-icon.png

95.217.76.40

200 OK

3.0 kB

URL HTTP/1.1
www.aszoran.hr/templates/img/phone-call-icon.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (2979 bytes)
Hash
e52e9613bebf6e9ef646c42183ece3bb
276422b1fcfe9a0f04441990913c067c5b38143e
7f89a16a7925d29f9bb125f33437400ad85a41bc90e1b607b2fb62cf1d4bdd1c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/img/phone-call-icon.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2017 11:35:48 GMT
Accept-Ranges: bytes
Content-Length: 2979
Cache-Control: max-age=31536000
Expires: Tue, 05 Sep 2023 14:53:55 GMT
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/upload/images/contents/thumbs/64x64-8-lageri-kotaca.png

95.217.76.40

200 OK

3.9 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/contents/thumbs/64x64-8-lageri-kotaca.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3912 bytes)
Hash
1a0116f856f5e2a0fa3ea22428652f01
28b06e1c11aff7e9ec60698874b72676dbdb7479
b481845f23a1155f94b6cd3124da55653be12d9bb7dd23ab59abf1ff15976ffa

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/contents/thumbs/64x64-8-lageri-kotaca.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Last-Modified: Tue, 13 Jun 2017 07:22:00 GMT
Accept-Ranges: bytes
Content-Length: 3912
Cache-Control: max-age=31536000
Expires: Tue, 05 Sep 2023 14:53:55 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/upload/images/contents/thumbs/64x64-5-servis-i-odrzavanje-korisnika.png

95.217.76.40

200 OK

2.5 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/contents/thumbs/64x64-5-servis-i-odrzavanje-korisnika.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2456 bytes)
Hash
628c67564db567121bb01704670e8658
36db5a5c0a25556992b6f41e65046e0762e78cbd
19ad4a4d6b0e0b51680a373d290d6402f95041f888a3821eed3f0e247816dd39

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/contents/thumbs/64x64-5-servis-i-odrzavanje-korisnika.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Last-Modified: Tue, 13 Jun 2017 07:25:10 GMT
Accept-Ranges: bytes
Content-Length: 2456
Cache-Control: max-age=31536000
Expires: Tue, 05 Sep 2023 14:53:55 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/upload/images/contents/thumbs/64x64-4-autoelektrika.png

95.217.76.40

200 OK

1.4 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/contents/thumbs/64x64-4-autoelektrika.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1439 bytes)
Hash
0fc908ab4c3dcb4e20f862bce9a5b1be
64581289e8a0117ce056fa7eca2af4c5fbcd5ad6
f2699d17a3d4e7a5ff4f1daf775acf72f95ea803598f6cfddeb18a2490afe3b4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/contents/thumbs/64x64-4-autoelektrika.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Last-Modified: Fri, 25 Aug 2017 07:43:30 GMT
Accept-Ranges: bytes
Content-Length: 1439
Cache-Control: max-age=31536000
Expires: Tue, 05 Sep 2023 14:53:55 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/upload/images/contents/thumbs/64x64-7-gume.png

95.217.76.40

200 OK

4.6 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/contents/thumbs/64x64-7-gume.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
4.6 kB (4587 bytes)
Hash
a4c33ea6246d63f6e550ae60361918c4
cd57f10d70000320f52c038676a7ab9d5fe9964a
e4d2068641095c15bef9f544bfdf746ae790f2f7ada818a8fd3eb6858fe928ef

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/contents/thumbs/64x64-7-gume.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Last-Modified: Tue, 13 Jun 2017 07:24:52 GMT
Accept-Ranges: bytes
Content-Length: 4587
Cache-Control: max-age=31536000
Expires: Tue, 05 Sep 2023 14:53:55 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/upload/images/pages/1-naslovnica.png

95.217.76.40

200 OK

978 kB

URL HTTP/1.1
www.aszoran.hr/upload/images/pages/1-naslovnica.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 1600 x 583, 8-bit/color RGBA, non-interlaced\012- data
Size
978 kB (977514 bytes)
Hash
fcbea2a330efc7b53549cd46e6e0e069
306ab0a3f76927c3da5d8df7625d5e3ae02bac55
286eaee156ade3bbca028767ed092766ba647702524b1ab277376d034e297ccc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /upload/images/pages/1-naslovnica.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 13:21:34 GMT
Accept-Ranges: bytes
Content-Length: 977514
Cache-Control: max-age=31536000
Expires: Tue, 05 Sep 2023 14:53:55 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/templates/img/icon-arrow.png

95.217.76.40

200 OK

273 B

URL HTTP/1.1
www.aszoran.hr/templates/img/icon-arrow.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size
273 B (273 bytes)
Hash
a2f48256fff35fa463a2e569e87c79bb
43b281a0e6c57c3647e5b80934e341bb8bb02c26
716f578043e4896d1e879288439a4cf6ff91ef0bc34eb1823a53706392c67ef3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/img/icon-arrow.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/templates/css/style.css
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2017 09:19:38 GMT
Accept-Ranges: bytes
Content-Length: 273
Cache-Control: max-age=31536000
Expires: Tue, 05 Sep 2023 14:53:55 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

www.aszoran.hr/addons/js/jquery.slick.menu/jquery.slicknav.js

95.217.76.40

200 OK

146 B

URL HTTP/1.1
www.aszoran.hr/addons/js/jquery.slick.menu/jquery.slicknav.js
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 15 x 14, 8-bit/color RGBA, non-interlaced\012- data
Size
146 B (146 bytes)
Hash
bd3556e8365ee2058986ffed97786dd3
6c37b012abb126e8f5b6bb3e58873e66f46ec6d4
dadb798daba1adb44061e31a7325afc32daadcd96641d99a6bf0d77f0cd46fd0

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /addons/js/jquery.slick.menu/jquery.slicknav.js HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Last-Modified: Sun, 03 Jul 2016 17:17:46 GMT
Accept-Ranges: bytes
Content-Length: 15943
Cache-Control: max-age=172800
Expires: Wed, 07 Sep 2022 14:53:55 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3958546039b436bd448017432b45c949
45aadab2339c0718b57200a1b2849073c04f08f5
903f9b9e0ccec46513fb56991790db64f79dd2548f6240c4905cf9f19bdaa783

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 14:53:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3958546039b436bd448017432b45c949
45aadab2339c0718b57200a1b2849073c04f08f5
903f9b9e0ccec46513fb56991790db64f79dd2548f6240c4905cf9f19bdaa783

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 14:53:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3958546039b436bd448017432b45c949
45aadab2339c0718b57200a1b2849073c04f08f5
903f9b9e0ccec46513fb56991790db64f79dd2548f6240c4905cf9f19bdaa783

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 14:53:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size
16 kB (15740 bytes)
Hash
b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:21 GMT
expires: Thu, 31 Aug 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 415174
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3958546039b436bd448017432b45c949
45aadab2339c0718b57200a1b2849073c04f08f5
903f9b9e0ccec46513fb56991790db64f79dd2548f6240c4905cf9f19bdaa783

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 14:53:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 05 Sep 2022 14:38:16 GMT
Expires: Mon, 05 Sep 2022 15:21:40 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NpejyXWmymNNlIAbRbczqsTK2FXPTD2xhmXgWHoZ6N6GPERObAF7Bw==
Age: 939

fonts.googleapis.com/css?family=Roboto:300,400,500,700,900&subset=latin-ext

142.250.74.10

200 OK

16 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,500,700,900&subset=latin-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
16 kB (16474 bytes)
Hash
bea816e839a3c66643cbcac2cbc74aa3
28f502dd2230125c1c3e3dca0f8f52a4a5e90770
5dcb2da7f510e30eb63ced914e2132e0c7bebc8f545bca768953202c5a99f118

HTTP Headers

GET /css?family=Roboto:300,400,500,700,900&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.aszoran.hr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Sep 2022 14:53:55 GMT
date: Mon, 05 Sep 2022 14:53:55 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Size
12 kB (11824 bytes)
Hash
deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:35:18 GMT
expires: Thu, 31 Aug 2023 19:35:18 GMT
cache-control: public, max-age=31536000
age: 415117
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Size
12 kB (11872 bytes)
Hash
87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:35:48 GMT
expires: Thu, 31 Aug 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 415087
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3958546039b436bd448017432b45c949
45aadab2339c0718b57200a1b2849073c04f08f5
903f9b9e0ccec46513fb56991790db64f79dd2548f6240c4905cf9f19bdaa783

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 14:53:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Size
16 kB (15752 bytes)
Hash
b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:40:23 GMT
expires: Thu, 31 Aug 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 414812
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 415187
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Sep 2022 02:02:22 GMT
expires: Sun, 03 Sep 2023 02:02:22 GMT
cache-control: public, max-age=31536000
age: 219093
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11796, version 1.0\012- data
Size
12 kB (11796 bytes)
Hash
716871ec15f054ec158445180fe280e1
d7d746e03e49f7e10ca0b11e598f3d6db5e34a2b
b076e86301cbee8c5c9aef51863a9c0a88e6f6d2aabdffca93e031113c6caa74

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:43:35 GMT
expires: Thu, 31 Aug 2023 19:43:35 GMT
cache-control: public, max-age=31536000
age: 414620
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11800, version 1.0\012- data
Size
12 kB (11800 bytes)
Hash
e36fccd06262bef92e7a9841e2202225
b907dd02819497b3942220e0aa160c167195506b
7f1c829b0c90fd664a03bb714a74f7d35d9e38ee1687104abc8ad5bd9c8ccb6c

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.aszoran.hr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:35:48 GMT
expires: Thu, 31 Aug 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 415087
last-modified: Wed, 11 May 2022 19:25:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3958546039b436bd448017432b45c949
45aadab2339c0718b57200a1b2849073c04f08f5
903f9b9e0ccec46513fb56991790db64f79dd2548f6240c4905cf9f19bdaa783

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 14:53:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.aszoran.hr/templates/css/icon.png

95.217.76.40

200 OK

570 B

URL HTTP/1.1
www.aszoran.hr/templates/css/icon.png
IP
95.217.76.40:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
570 B (570 bytes)
Hash
7cdd0704fa4eed5729a53345a5178aeb
2dca03ac8c7b8058825551a26e6491531923ca4b
9d07aa16033b5954bcd1d9f3d53089c78d2732af3490e7a83fd85617569272ba

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /templates/css/icon.png HTTP/1.1
Host: www.aszoran.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aszoran.hr/hrvatski/naslovnica_1/
Cookie: PHPSESSID=e31569d2307899f96a194f1db59dad92

HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 14:53:55 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2017 09:01:40 GMT
Accept-Ranges: bytes
Content-Length: 570
Cache-Control: max-age=31536000
Expires: Tue, 05 Sep 2023 14:53:55 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b57a9dd04797bf34612c80361f1dffb3
56573166d8b9cd9b8dae19fd905e4f3293af306b
b03552109f1e7d1e482aa14614ffb1e38fb53ae4951152aab307b927674dad98

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2879
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 14:53:55 GMT
Last-Modified: Mon, 05 Sep 2022 14:05:56 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

54.187.34.135

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.187.34.135:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dX4biwDSicclhhK9a2J7/A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8Qdjc8/nnSaHlddxAwzU9ok3q2g=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11969
Expires: Mon, 05 Sep 2022 18:13:26 GMT
Date: Mon, 05 Sep 2022 14:53:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11969
Expires: Mon, 05 Sep 2022 18:13:26 GMT
Date: Mon, 05 Sep 2022 14:53:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11969
Expires: Mon, 05 Sep 2022 18:13:26 GMT
Date: Mon, 05 Sep 2022 14:53:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11969
Expires: Mon, 05 Sep 2022 18:13:26 GMT
Date: Mon, 05 Sep 2022 14:53:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11969
Expires: Mon, 05 Sep 2022 18:13:26 GMT
Date: Mon, 05 Sep 2022 14:53:57 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f567821-8e06-4951-99ce-e4f161bb68b8.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f567821-8e06-4951-99ce-e4f161bb68b8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11529 bytes)
Hash
af2dba4695867af2da0b689832f99393
b33bef0200ea8f8a64df0fdd28e648f36ed177d1
eecc3b2002b85f2f742f97b6fa4a2686c5e22fac3e73f4469357e0cfb554649e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f567821-8e06-4951-99ce-e4f161bb68b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11529
x-amzn-requestid: 5a708c64-a562-4082-bdb0-54a7e7ca4c96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqfLDEa3IAMFg7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630dabe0-50c8bda630d48d5866416a55;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 06:19:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wLCyRpkbM9GuCD0b68O8ttgaDNma8Dc18GetEWkNqo6bQJkuE44gKw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 03:17:24 GMT
age: 41793
etag: "b33bef0200ea8f8a64df0fdd28e648f36ed177d1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5652 bytes)
Hash
10318189f33f071dda64249ab9c8c5bb
e5b5b649a243e5c004d9923d19d4421d1ea96d23
3e775a1990e4d185024faf2fdff7a5eb9063f7ee19784f32fb4f7f10643c8102

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5652
x-amzn-requestid: 05fffcb2-43c0-4acf-81b2-1b914459e1e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wwHErUIAMFmNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c800-47fe166763992ab271a87aa4;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: uz2NbcE4AmOvFQkhJALSpXCGizilya0TuFcczfEwtV09cGXtgVNlpQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:08:58 GMT
age: 60299
etag: "e5b5b649a243e5c004d9923d19d4421d1ea96d23"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8469 bytes)
Hash
30bf854fd3e27e2313a3d26fc43b9990
032acf1bfb0c8e2cbce8f2ff4d2964424b044951
7641be64dd25487edf4f845d1fbb0b07daa80fa8fb58863dd09081d9d169bd13

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: de0e8998-4a52-4651-bcd6-3068c50193b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X9Ey2Eq4oAMFZlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63151b45-15da44d87bf486cb1738fe18;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GuATNx2xnWnEl0cr_2ZWZo_jOWbHlSBYksIeHFDoHAK9o5Tf0PPliQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:03:29 GMT
etag: "032acf1bfb0c8e2cbce8f2ff4d2964424b044951"
content-type: image/jpeg
age: 60628
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.5 kB (5459 bytes)
Hash
7fe061740ad833cfe7ff0fe078d6810d
15d0fc3fdced758b5797361bae0fd53341e0581d
5409b6775bca5afd03901975c61c27f267efe2c8a8e739f05ebc52a938c5a368

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5459
x-amzn-requestid: a75bf8a5-dc96-4a88-9de5-b79d1d62ff21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XxB_bFMFoAMFkEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631049fc-2685c90962d8af5f4a7b5908;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 05:58:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rZh0s85w1Nt6qZdZybNBcQHEXMWQIJvtAyCbF4oWsYUOlIKuNS5Fpg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:38:48 GMT
age: 58509
etag: "15d0fc3fdced758b5797361bae0fd53341e0581d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69b1e092-41e6-4f1e-b330-193f7dd11afc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7830 bytes)
Hash
290f6551c5ac539ea60810b135750f17
3633391a8dd87ef10fcb0d04d7b309738affc4a7
d94d133faaf232cf15b5c3f38f5b45d87d70bce0668d607b5c66a8d3f836540f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69b1e092-41e6-4f1e-b330-193f7dd11afc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7830
x-amzn-requestid: c56af3b5-2c48-4243-b220-d56a9be47990
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X9Ey3H4JoAMFiMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63151b45-23ec24d867e3e5906fffa1a6;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VgP7BDBmd5A5bAmRgO88geep419uZ0TQop4jEmRkx-q9rX4PUJZOCQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:16:55 GMT
age: 59822
etag: "3633391a8dd87ef10fcb0d04d7b309738affc4a7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99b438b1-ec2f-4d02-9da4-cca3c8bdf61b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4260 bytes)
Hash
7877df05329f39350f4907a067f5840e
21f33eca6863c382c216c16799d1bea83e40fbd9
94b943383bbd05d11ac0f9c3672e315c9cfaa5cb2299c3779195f08491969fa8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99b438b1-ec2f-4d02-9da4-cca3c8bdf61b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4260
x-amzn-requestid: 024510ab-0cb7-421e-805b-fa54501d1e99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XpjFQGPVIAMFytQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630d4bbb-4492cd20474c37337f8a5521;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 23:28:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Wk8myA4exuK32he7TlFoJtvtqHb0WcDhvSuo6-aN0dMcxIr7cDkU5Q==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:04:04 GMT
age: 60593
etag: "21f33eca6863c382c216c16799d1bea83e40fbd9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations