Report - www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html

Report Overview

Visited public
2023-12-05 17:23:10
Tags
URL
www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Finishing URL
www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
IP / ASN
192.185.106.252
#46606 UNIFIEDLAYER-AS-1
Title
Šampion ponovo posustao: Nikola Jokić nezadrživ ali Denver upisuje novi poraz - Vugla

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
futmillionaire.com	236797	2012-07-22	2012-11-28 13:10:35	2023-11-18 20:09:10	45 kB	3.8 MB	172.67.208.25
www.profitabledisplaycontent.com	138390	2020-10-14	2020-10-16 04:07:47	2023-12-01 16:49:53	3.0 kB	6.0 kB	192.243.59.20
pl15560907.passtechusa.com	unknown	2020-02-27	2022-10-27 15:33:11	2023-11-25 04:22:29	455 B	16 kB	192.243.59.12
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-12-05 05:10:23	1.8 kB	868 B	216.239.32.36
ssl.gstatic.com	unknown	2008-02-11	2012-05-23 08:57:57	2023-12-05 16:22:26	446 B	6.1 kB	64.233.162.94
accounts.google.com	81	1997-09-15	2016-03-20 13:44:49	2023-12-05 09:21:53	1.4 kB	2.4 kB	64.233.161.84
amunfezanttor.com	unknown	2023-03-31	2023-03-31 14:42:42	2023-12-04 22:29:16	1.5 kB	1.5 kB	139.45.197.250
dragnag.com	unknown	2023-11-28	2023-11-28 12:52:23	2023-11-29 05:37:34	4.9 kB	7.5 kB	192.243.59.20
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15 17:46:22	2023-12-04 23:03:56	3.1 kB	365 kB	172.64.109.10
www.vugla.com	unknown	2013-09-24	2015-02-06 16:22:31	2023-12-04 01:33:49	42 kB	1.5 MB	192.185.106.252
prod.cbstatic.net	108120	2013-11-19	2018-07-06 00:30:53	2023-12-05 08:00:42	1.9 kB	201 kB	143.204.55.24
unseenreport.com	unknown	2022-03-30	2022-03-30 16:33:17	2023-12-05 07:43:32	1.5 kB	847 B	192.243.59.12
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-12-05 05:09:20	918 B	176 kB	151.101.66.137
f.vimeocdn.com	3234	2010-04-21	2014-04-09 20:24:34	2023-12-05 06:54:19	7.1 kB	1.7 MB	151.101.86.109
tharbadir.com	670354	2018-04-25	2018-05-21 22:07:02	2023-11-20 17:43:39	6.7 kB	461 kB	139.45.197.238
cdn.yourwebbars.com	62037	2020-08-21	2021-01-29 18:47:27	2023-12-04 17:44:16	501 B	88 kB	172.67.74.218
fleraprt.com	unknown	2022-01-14	2022-01-14 23:55:14	2023-12-05 13:04:41	537 B	483 B	139.45.195.254
proftrafficcounter.com	unknown	2023-11-16	2023-11-21 09:55:14	2023-12-04 18:39:56	892 B	840 B	18.184.210.76
pl16411290.alternativecpmgate.com	unknown	2021-07-01	2023-05-22 08:21:17	2023-12-01 20:01:56	460 B	10 kB	192.243.59.20
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12 17:15:41	2023-12-05 11:19:54	1.9 kB	142 kB	45.133.44.10
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-12-05 05:55:22	580 B	580 B	142.250.74.35
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-05 07:37:50	1.4 kB	31 kB	173.194.222.95
my.rtmark.net	9054	2014-10-29	2015-02-04 10:54:57	2023-12-05 05:52:37	1.0 kB	1.5 kB	139.45.195.8
b6f71hwqomrafu683pz507uj2g.hop.clickbank.net	unknown	1997-07-11	2022-11-05 00:45:01	2023-11-19 19:16:46	544 B	1.3 kB	54.148.50.178
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-05 06:14:20	8.9 kB	563 kB	216.58.207.227
www.kursnalista.co	unknown	2019-01-14	2015-04-30 23:56:04	2023-12-02 16:08:25	900 B	124 kB	192.185.106.47
www.variouscreativeformats.com	408415	2021-06-09	2021-06-13 08:53:26	2023-12-03 22:15:10	457 B	12 kB	192.243.61.227
shineinternalindolent.com	unknown	2023-11-28	2023-11-28 14:49:22	2023-12-02 00:23:14	6.4 kB	40 kB	173.233.137.36
groorsoa.net	unknown	2023-10-23	2023-10-24 03:50:52	2023-11-23 17:21:26	1.6 kB	33 kB	139.45.197.245
seal-boise.bbb.org	116015	1995-05-16	2015-07-24 20:24:24	2023-12-04 13:51:24	483 B	4.9 kB	82.102.27.18
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-05 06:24:59	2.3 kB	504 kB	142.250.74.168
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21 01:06:24	2023-12-05 11:45:58	350 B	942 B	143.204.53.97
eehuzaih.com	unknown	2022-02-21	2022-02-21 12:12:25	2023-12-05 14:05:44	3.3 kB	181 kB	139.45.197.237
offerimage.com	304078	2019-06-10	2019-06-10 13:11:53	2023-12-05 10:17:54	1.4 kB	59 kB	172.67.22.216
divedresign.com	unknown	2023-11-28	2023-11-28 10:19:52	2023-12-02 11:35:45	492 B	467 B	173.233.137.60
i.vimeocdn.com	3126	2010-04-21	2014-03-27 23:24:57	2023-12-05 06:54:20	9.5 kB	160 kB	151.101.192.217
apis.google.com	105	1997-09-15	2013-05-06 22:20:21	2023-12-05 05:34:08	4.3 kB	149 kB	142.250.74.78
boltepse.com	unknown	2023-02-06	2023-02-06 21:28:07	2023-11-19 12:44:00	3.4 kB	117 kB	139.45.197.250
friendshipmale.com	unknown	2022-10-21	2022-10-21 14:15:25	2023-12-04 19:07:45	409 B	29 kB	172.64.172.31
cbtb.clickbank.net	103233	1997-07-11	2015-11-12 09:51:45	2023-12-05 08:00:41	426 B	1.5 kB	52.12.196.171
player.vimeo.com	1858	2004-12-15	2013-09-26 05:16:08	2023-12-05 05:32:29	3.9 kB	83 kB	162.159.138.60
tzegilo.com	unknown	2022-01-14	2022-01-14 16:27:15	2023-12-03 15:47:48	406 B	8.2 kB	104.21.11.245

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-05	medium	boltepse.com	Sinkholed
2023-12-05	medium	boltepse.com	Sinkholed
2023-12-05	medium	shineinternalindolent.com	Sinkholed
2023-12-05	medium	groorsoa.net	Sinkholed
2023-12-05	medium	boltepse.com	Sinkholed
2023-12-05	medium	amunfezanttor.com	Sinkholed
2023-12-05	medium	amunfezanttor.com	Sinkholed
2023-12-05	medium	shineinternalindolent.com	Sinkholed
2023-12-05	medium	shineinternalindolent.com	Sinkholed
2023-12-05	medium	dragnag.com	Sinkholed
2023-12-05	medium	amunfezanttor.com	Sinkholed
2023-12-05	medium	groorsoa.net	Sinkholed
2023-12-05	medium	shineinternalindolent.com	Sinkholed
2023-12-05	medium	dragnag.com	Sinkholed
2023-12-05	medium	divedresign.com	Sinkholed
2023-12-05	medium	dragnag.com	Sinkholed
2023-12-05	medium	boltepse.com	Sinkholed
2023-12-05	medium	boltepse.com	Sinkholed
2023-12-05	medium	unseenreport.com	Sinkholed
2023-12-05	medium	dragnag.com	Sinkholed
2023-12-05	medium	boltepse.com	Sinkholed
2023-12-05	medium	unseenreport.com	Sinkholed
2023-12-05	medium	shineinternalindolent.com	Sinkholed
2023-12-05	medium	fleraprt.com	Sinkholed
2023-12-05	medium	boltepse.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (122)

	URL	From	Size	First Seen	Last Seen
	www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html	ScriptElement	3.3 kB	2023-11-13	2024-08-20
Pretty URL www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-13 23:13 Last Seen2024-08-20 19:42 Times Seen77 Hash d13d41a1b861ef9aa0e02b02b0f7d642 2054927fbb35d426ca430a809cd4ba350f2ddec2 84b675950434bdf327774b6e23b2a2737f07135d842888d8b99be08475d9be94 Loading...

	www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1	ScriptElement	23 kB	2023-03-07	2025-05-08
Pretty URL www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33 Last Seen2025-05-08 18:22 Times Seen693 Hash 3229aa93c44fa4628707e80959a97bc1 5a2d4dbc4d1df02e7a386489e7b5c5a9e22dd40f 095834cc86bd018fdb4a9e31c99f9f96904b819be2b9dc16b3390383288d4d90 Loading...

	www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html	ScriptElement	233 B	2024-08-20	2024-08-20
Pretty URL www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:40 Last Seen2024-08-20 16:40 Times Seen1 Hash ae8e5d14587156b66110a1e8a3eccb12 0ffb9041a444492ce381dd6fb936bf0bf934eda9 3e824f68c727344b7bb40ab66c7755321f25b4b48af0613d8e30988118ac32c7 Loading...

	futmillionaire.com/wp-content/themes/OptimizePress/js/slick.js	ScriptElement	89 kB	2023-03-07	2025-05-08
Pretty URL futmillionaire.com/wp-content/themes/OptimizePress/js/slick.js IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-05-08 23:45 Times Seen9412 Hash 5f8f4aed010e1afe499184d8197309f9 097f6a1b4f115e9b6ebefa70d76d830733bcc9ba 0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4 Loading...

	player.vimeo.com/video/107782773?title=0&byline=0&portrait=0	ScriptElement	877 B	2023-05-30	2025-05-08
Pretty URL player.vimeo.com/video/107782773?title=0&byline=0&portrait=0 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-30 16:19 Last Seen2025-05-08 16:47 Times Seen6751 Hash 1a5b4d5d3e4b011a5ab11c586f797d44 648e005b908e068c567f5236736ea923480a8c08 49653c792dd94bb881bb47fde59c3036d1009d19d8151b3894b09419eb4bc8e3 Loading...

	player.vimeo.com/video/107782773?title=0&byline=0&portrait=0	ScriptElement	183 B	2023-10-30	2024-08-20
Pretty URL player.vimeo.com/video/107782773?title=0&byline=0&portrait=0 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-30 14:01 Last Seen2024-08-20 21:48 Times Seen29 Hash af1bb8745ae564038d567609cf5ed512 1d21f5d315e60db94902096fad14a5a0426046ad 85090e9947568701e6f1700c92b33a3f7709930503ecacbef608098a9f5eb709 Loading...

	f.vimeocdn.com/p/4.26.8/js/player.module.js	ScriptElement	555 kB	2023-12-02	2023-12-08
Pretty URL f.vimeocdn.com/p/4.26.8/js/player.module.js IP 151.101.86.109 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 00:14 Last Seen2023-12-08 17:10 Times Seen152 Hash 96cb066b3f07e96fd6152b1f57de31ab 20282177194b73c18ac5792822c5f1d297e2ccc8 b174a29e99b9afda8575f9ce18e03efcb7b61f225bebeace1be7ae22d939a794 Loading...

	unknown	ScriptElement	26 kB	2023-03-07	2025-01-30
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18 Last Seen2025-01-30 15:49 Times Seen1752 Hash a912e7afe74b51fdd03b28bf67e7d409 85004dfe087af5a730261c85262661d89b3d2516 706b3882753d8f81cfcf35aa2623303b1b380c8106686a4ad12a1fae23cf4650 Loading...

	www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html	ScriptElement	459 B	2024-08-20	2024-08-20
Pretty URL www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:40 Last Seen2024-08-20 16:40 Times Seen1 Hash 0cc5f52643bd769ce374c3e4fa122935 18c345afdb5c0d3a728a9a38887af7562a02179a 085aea69160a63e719a4ec21754c19e97cef817e095059b8e53b097405e5c640 Loading...

	www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1	ScriptElement	95 B	2023-05-22	2024-08-21
Pretty URL www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen222 Hash 64829824ee643f09fb3821dc49b3089a 446608ff9f4128b9503476135a8c28599f8d5c2e 0b967c52b8e899c4266110c97fa50018d61ccf1365144d16f09f901523d48c95 Loading...

	www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-05-09
Pretty URL www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-05-09 04:58 Times Seen105629 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html	ScriptElement	130 B	2023-05-22	2024-08-21
Pretty URL www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen180 Hash 071769b9151182dafbb83441dc6fd6e8 2d0debcc38211b79d10eb26c1f233ab0bb385666 cb6b201c1fe09a074a97d8a5f952a0b246e9d4cab3c890cdd66fc72267c8814b Loading...

	unknown	ScriptElement	196 B	2023-11-17	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-17 15:46 Last Seen2024-08-20 19:05 Times Seen39 Hash 43603cd222cb16c705b5e2d8ea8b85ea 8b6753fa36c7c328d0035594638d67b6af1611fc 760b2727afb68b6edfe1f97a3c2df60fda81477a451f3913b2b15d72e29c4ffb Loading...

	futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/op-jquery-base-all.min.js?ver=2.5.18	ScriptElement	53 kB	2023-03-07	2024-12-26
Pretty URL futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/op-jquery-base-all.min.js?ver=2.5.18 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42 Last Seen2024-12-26 08:15 Times Seen90 Hash 205efe9b5a59f92d25c23e298d9f2b81 25184b5918a6f38b7c7bd8f68b0fc2e6cc440114 fee229982b7fc656f15dcd65b57a0ad868d5a4aef350eff7828a92de4044ef05 Loading...

	friendshipmale.com/sfp.js	ScriptElement	86 kB	2023-11-23	2024-08-20
Pretty URL friendshipmale.com/sfp.js IP 172.64.172.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-23 18:35 Last Seen2024-08-20 18:08 Times Seen6307 Hash 924e967bca1d599992556a8d139b1c5a 222b09dbf164ddc03d39100fd0524a22018d28b2 ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95 Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	639 B	2023-03-10	2024-08-21
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 21:41 Last Seen2024-08-21 08:08 Times Seen34 Hash 10019cd145c9118f092e39a3ea3cc3cc 0673892cfbd739d1912e516d0916b9002ff737ad 6c17e0d2bd3746e16cc11f67e191866d94f1456f26c797060c449b0676efeb26 Loading...

	www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html	ScriptElement	153 B	2023-10-28	2024-08-20
Pretty URL www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-28 22:45 Last Seen2024-08-20 22:01 Times Seen131 Hash 378b048db9feb942a4873575f1b0a66b 6d87c4a103cb5fffe86ff758571eae39a1237c35 bc4c36697eee6b442da5b8f9faa8b7686e2d148ca08be69e1312ba734c5e9de8 Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	18 B	2023-03-07	2024-12-27
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 15:43 Last Seen2024-12-27 03:17 Times Seen70 Hash b7fb67dc8f909eb33fe23370ff5ab26d 594eb89fa070ca0e6f2a558f14a23a0fe89660aa 2c31ca8cf6d02eac2353f57ea1b8e922edc47ccb725caea6c28124b54291ca5f Loading...

	futmillionaire.com/wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79	ScriptElement	9.9 kB	2023-03-07	2025-04-25
Pretty URL futmillionaire.com/wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20 Last Seen2025-04-25 12:14 Times Seen367 Hash cbad4ec75d85df02210165d43d02461b 5c05cfb56bfc7334715f063d596761bab76aa91a dceda745a0fb58233a95eff6d10796026df6792cb960cdf675eb7b8a6750a2d2 Loading...

	futmillionaire.com/wp-content/plugins/optimizeMember/optimizeMember-o.php?ws_plugin__optimizemember_js_w_globals=1&qcABC=1&ver=1.2.9-1.2.9-4022997467	ScriptElement	24 kB	2023-12-05	2023-12-05
Pretty URL futmillionaire.com/wp-content/plugins/optimizeMember/optimizeMember-o.php?ws_plugin__optimizemember_js_w_globals=1&qcABC=1&ver=1.2.9-1.2.9-4022997467 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:23 Last Seen2023-12-05 18:23 Times Seen1 Hash d7d0ef1f7173a7683f524f1296cf39ee 64e885a6d02204aa3e1fe8b98c241d8166ca6bba 7ee814ddee9a32b1c030d8688d493e7b9af861b239690d109b6cac7be7b24361 Loading...

	player.vimeo.com/video/107782922?title=0&byline=0&portrait=0	ScriptElement	183 B	2023-10-30	2024-08-20
Pretty URL player.vimeo.com/video/107782922?title=0&byline=0&portrait=0 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-30 14:01 Last Seen2024-08-20 21:48 Times Seen28 Hash 28dacf6bed5576615dbdd7942909958f 51ca393c042c8cb88543f469b9c665c55f8a7e78 b1c2f1a6db8ffa3aeb3025060a32f73049e26f727520fad05707152f2732bfc3 Loading...

	player.vimeo.com/video/107782922?title=0&byline=0&portrait=0	ScriptElement	12 kB	2024-08-20	2024-08-20
Pretty URL player.vimeo.com/video/107782922?title=0&byline=0&portrait=0 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:40 Last Seen2024-08-20 16:40 Times Seen1 Hash 7f6d78438e7def45934767a2698742ad 7ba208072af0e5b6af15ab06e80e53ad4610ccea 6c8b9b0da047771ac2a316c6631fce11995b77c96014195da50507845bc1ae4b Loading...

	moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js		1.7 kB	2023-05-05	2025-05-09
Pretty URL moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 22:33 Last Seen2025-05-09 05:34 Times Seen54720 Hash 865f01cbb34eb505834e826380d7dc2e c239ccc37191f1be78dfaa6bb3f1da5d314fdf9e 30ed6392b8de4590bd974a4a797ee0b12b382f2141738115bfd2d692cfa6ec17 Loading...

	pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js	ScriptElement	25 kB	2023-12-02	2023-12-05
Pretty URL pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 03:58 Last Seen2023-12-05 18:23 Times Seen2 Hash e6c7ad7d254bb6f8b3f067f4c623769b 061092d0cc1c3f1eafa56fe85efbfee2260fc945 2337884cac3b9111d226fb23241fcab427771b7c218a79916a245a17ba7bc931 Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	144 B	2023-03-10	2024-08-21
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 21:41 Last Seen2024-08-21 08:08 Times Seen34 Hash 2c5c91a0756d76555e26c57e9c2eee19 320cee75a5bd9dc4ddb3d85209d430ce84013436 9b47bb458c4c3f1d97d8b333ad5668fb073eae4175f44efecb6f1598d83d6865 Loading...

	player.vimeo.com/video/107782773?title=0&byline=0&portrait=0	ScriptElement	12 kB	2024-08-20	2024-08-20
Pretty URL player.vimeo.com/video/107782773?title=0&byline=0&portrait=0 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:40 Last Seen2024-08-20 16:40 Times Seen1 Hash 7cac0547d3722c0323522f5a23f52650 e3ea8365a9de0dc51b58a25bf953a97763e91f29 7d34430a9e9dcef693063700d262c75e73c7598c8919f7c24494fcf9bc568cff Loading...

	player.vimeo.com/video/107782773?title=0&byline=0&portrait=0	ScriptElement	2.6 kB	2023-05-30	2025-05-08
Pretty URL player.vimeo.com/video/107782773?title=0&byline=0&portrait=0 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-30 16:19 Last Seen2025-05-08 16:47 Times Seen6715 Hash 7d70ffccf91ab1fa16c1ff5679defe00 652e57ea3052e22b0b856f12d1a3fcc7078215a5 343e9afe006e5a64f2aedc9a4330d6e97de7a014b84e9be2d8a55d3111f3f190 Loading...

	player.vimeo.com/video/107782922?title=0&byline=0&portrait=0	ScriptElement	129 B	2023-05-30	2025-05-08
Pretty URL player.vimeo.com/video/107782922?title=0&byline=0&portrait=0 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-30 16:19 Last Seen2025-05-08 16:47 Times Seen6705 Hash 8e500be2456c7adccd83f363e52ef5bd 327c9f69248844f40f89b9ade646394c825f2a28 95c35c2edce177114158dda90aa3f769080a60b08e437651df026a422da4c17d Loading...

	player.vimeo.com/video/107782922?title=0&byline=0&portrait=0	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL player.vimeo.com/video/107782922?title=0&byline=0&portrait=0 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 05:36 Times Seen4634210 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	f.vimeocdn.com/p/4.26.8/js/vendor.module.js	ImportedModule	420 kB	2023-12-02	2023-12-08
Pretty URL f.vimeocdn.com/p/4.26.8/js/vendor.module.js IP 151.101.86.109 ASN #54113 FASTLY Introduced by importedModule Embedded in HTML false Observations First Seen2023-12-02 00:14 Last Seen2023-12-08 17:10 Times Seen151 Hash 4cc5aef932ea66a7e42d1a660577754d 4ec581a4137e64ba92c23ee63bb9db0635722086 c96f86de9f83e60dade89361a648f65d9336be20731e88d694c859c9387f71e1 Loading...

	apis.google.com/js/plusone.js	ScriptElement	58 kB	2023-11-28	2023-12-18
Pretty URL apis.google.com/js/plusone.js IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 16:18 Last Seen2023-12-18 14:18 Times Seen259 Hash 12476fdc6b8599d03eac729748337611 7a15dc04ad6e77026bf45927b78247411e3e0466 c5be6532f19ca90fb5966ed89be694f2bc2cded1e443d3489467cb28cd69af43 Loading...

	unknown	ScriptElement	88 kB	2023-11-02	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 10:05 Last Seen2024-08-20 21:23 Times Seen2914 Hash d46d2997ab218d1dba1ab614422ed53f 3f1f6b9847c8ad209835db366c62fcb209b83a67 09e8ce2dfeac0ad09cd24788931b38ea7e7592f2c28eecc324b2dd1cd69d1b42 Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	440 B	2023-03-10	2024-08-21
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 21:41 Last Seen2024-08-21 08:08 Times Seen47 Hash 88801dd0641eb1e68c1df7ce8c164a77 6f4d0034c2ab768f1b757444213514366d2a4993 00e552b958de67ae0320d89a9a98d04aa1de944f7382894f75a3edbca20c5f78 Loading...

	futmillionaire.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	ScriptElement	16 kB	2023-04-05	2025-05-08
Pretty URL futmillionaire.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 09:20 Last Seen2025-05-08 14:14 Times Seen1327 Hash 762d59fdeee92ef4463539c532d5888a de8bf80d48ad6a0deb338be442df963691ecd18f da81a69ebb55f38c50b06ba18862edfc60a98904cf7ab25a1ee654166a8adfcf Loading...

	code.jquery.com/jquery-3.6.1.min.js	ScriptElement	90 kB	2023-03-07	2025-05-09
Pretty URL code.jquery.com/jquery-3.6.1.min.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28 Last Seen2025-05-09 05:10 Times Seen14357 Hash 00727d1d5d9c90f7de826f1a4a9cc632 ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2 a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74 Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	2.1 kB	2023-10-13	2024-08-21
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-13 07:37 Last Seen2024-08-21 04:54 Times Seen38 Hash 7657b39d9ab73a4f14662df081470495 51cfbc1b6a5a34dd24eb1f6fe221b9c7ded7c33d 8d091848e91ea56d08e009b4ec16fb7b6f88066e99c4cd5539b5dcad6bf7382f Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	2.0 kB	2023-03-10	2024-08-21
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 21:41 Last Seen2024-08-21 08:08 Times Seen33 Hash 812eff2cf156d8eadf2f27187bc943b1 2ad9644a3c8154051295b3b7a7f0ea45682abb41 955b57ec98834ee4faf82ab07b5ae47829cb189fb167e229e5c5c87cd1c61e27 Loading...

	player.vimeo.com/video/107782774?title=0&byline=0&portrait=0	ScriptElement	183 B	2023-10-30	2024-08-20
Pretty URL player.vimeo.com/video/107782774?title=0&byline=0&portrait=0 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-30 14:01 Last Seen2024-08-20 21:48 Times Seen29 Hash 98729a39562e861f48d44d86ec79b037 a66b001d1179a2ca75e8c28224c10d70525c8c26 4a64bf1b04ab3cbdaad6b6c326ee43be05a86ce9e27f91409acc4e02ce23e60e Loading...

	apis.google.com/js/rpc:shindig_random.js?onload=init	ScriptElement	18 kB	2023-11-28	2023-12-18
Pretty URL apis.google.com/js/rpc:shindig_random.js?onload=init IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 06:17 Last Seen2023-12-18 09:03 Times Seen200 Hash 84a5ff7df274c2aa0f5db3d0db8deb60 fe9d4e60961ea15195134fa043256585a3956984 0d3c50c1af81534edee9a430edb5d09c6068348173496657982a4546ff2ee231 Loading...

	futmillionaire.com/wp-admin/js/password-strength-meter.min.js?ver=5.8.8	ScriptElement	1.1 kB	0001-01-01	2025-05-09
Pretty URL futmillionaire.com/wp-admin/js/password-strength-meter.min.js?ver=5.8.8 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 02:50 Times Seen4442 Hash b2e45ac2d733c572ee0b3b5dd53c7cc0 f0d35678945439784d91ded2f48936c0396095dc fcbe9e9ff2d1c20cab10bf43dc49914e188b44ae21f34257b4a0ef5cae90f7ac Loading...

	player.vimeo.com/video/107782774?title=0&byline=0&portrait=0	ScriptElement	12 kB	2024-08-20	2024-08-20
Pretty URL player.vimeo.com/video/107782774?title=0&byline=0&portrait=0 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:40 Last Seen2024-08-20 16:40 Times Seen1 Hash 7f1b2d93b40794f0a413c50495a9b3c0 f5890a41deb05116e398c460289d7c70bf6a876c 869d44788c7fa704c420a8f2edff53d99015cdf25d7eded79efd079f6e69913b Loading...

	futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/op-video-all.min.js?ver=2.5.18	ScriptElement	78 kB	2023-03-08	2024-12-11
Pretty URL futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/op-video-all.min.js?ver=2.5.18 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:57 Last Seen2024-12-11 20:01 Times Seen46 Hash 8b5ca292fe428462a64cb76515472f2e b2a9b7e79828743056382a62bf4fa18f7caa7481 e8644cbf656efae1c6683425d6a7ad875f48f01927a3744e403f59f1fb9d831c Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	599 B	2023-03-10	2024-08-21
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 21:41 Last Seen2024-08-21 08:08 Times Seen46 Hash 5413b7f2545342feae78921c4af230be 516831c6ec637d76cd07c61daa8d547e5c78103d a2a2d68c479fc04f7fe6a31219eeb376d8b37f34095fd81c86d68bb3be83109f Loading...

	futmillionaire.com/wp-includes/js/zxcvbn.min.js	ScriptElement	822 kB	2023-03-07	2025-05-09
Pretty URL futmillionaire.com/wp-includes/js/zxcvbn.min.js IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19 Last Seen2025-05-09 02:50 Times Seen4880 Hash 027c098ebca6235056092f7b954dfc5f 1ea18e5e6ece74f6f3a7c1a57d2ac2462c9c666b daa6634ed8d6376bfd22d8f68942d00e1b56db0fa8c9f90ba2af52734dd5593b Loading...

	unknown	ScriptElement	4.1 kB	2023-11-26	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-26 22:07 Last Seen2024-08-20 17:49 Times Seen21 Hash 457a363a3f8319e1ef6a374db2436088 1d407b11b40fdea73d4b56b445b7b3a4cd5efec9 e76d709f1992bf5c7b8a234d65019ca1269b6d9f1ffae7555e6873aa901df91a Loading...

	code.jquery.com/jquery-2.2.4.min.js	ScriptElement	86 kB	2023-03-07	2025-05-09
Pretty URL code.jquery.com/jquery-2.2.4.min.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 05:23 Times Seen173859 Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e Loading...

	futmillionaire.com/wp-content/themes/optimizePressTheme/lib/modules/blog/video/flowplayer/flowplayer.min.js?ver=2.5.18	ScriptElement	150 kB	2023-03-08	2024-12-11
Pretty URL futmillionaire.com/wp-content/themes/optimizePressTheme/lib/modules/blog/video/flowplayer/flowplayer.min.js?ver=2.5.18 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:57 Last Seen2024-12-11 20:01 Times Seen44 Hash 01babc219c65867bba1f46db4ae8f617 c3523ac7371bd59eea037a2c06a0fe968be424b0 d96606ab0f5f5514c6a04e1e7959640d6851a62e495688b648ab2e9d1347b755 Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	1.1 kB	2024-08-20	2024-08-20
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:40 Last Seen2024-08-20 16:40 Times Seen1 Hash 7be1c96444cfc57f251b3f8f8a4088d3 d6e18a234c8e181206cbd847ece167f546433d7b 47e745025c6c91b90a35b8590646ec25b67f1360366a50a87a395e1e805b7b18 Loading...

	futmillionaire.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	ScriptElement	11 kB	2023-03-07	2025-05-08
Pretty URL futmillionaire.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-08 21:53 Times Seen21645 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	121 B	2023-03-10	2024-08-21
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 21:41 Last Seen2024-08-21 08:08 Times Seen46 Hash e2f3e6018d8f18bb792470100954c6aa 94e74e650487bbad286ac6da96da1faa4f75bce8 9738dcda4bed0f1a01fd33f92727fc78bce65eb2aaf75c9bc5f4165d530fcd7c Loading...

	futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/js/script.js?ver=2.2.4	ScriptElement	3.4 kB	2023-06-15	2025-01-21
Pretty URL futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/js/script.js?ver=2.2.4 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-15 08:58 Last Seen2025-01-21 16:57 Times Seen36 Hash 5348130b6852175f95ea80e00856effd f443347a21285460ba56534f7b12953afdcd39af 56be3b9a3b31c843b748ce7e39b7b3e1b17f18f5f02ad5d460dbc14d5838de8c Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	68 B	2023-03-07	2025-05-09
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 04:52 Times Seen24181 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	player.vimeo.com/video/242400713?autoplay=0&title=0&byline=0&portrait=0	ScriptElement	184 B	2023-10-30	2024-08-20
Pretty URL player.vimeo.com/video/242400713?autoplay=0&title=0&byline=0&portrait=0 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-30 14:01 Last Seen2024-08-20 21:48 Times Seen29 Hash bea553b7b05129b8252b9658dff590f1 2a0388d71d0431120a356401c1903be854829bae 95014ed78d7b36c3e7308f500ea7d86376e71d01e03cf63e81cbada558506e37 Loading...

	www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html	ScriptElement	63 kB	2023-05-22	2024-08-21
Pretty URL www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen197 Hash be4906ea1de45e4a62febac1060e305a cac55e3d64f37ecd4c069a10277c888e27fedce4 6b95ca3aa5c2c38a6db46a8a40b9b30a248a35f815d619c7e86fb5e569b0d224 Loading...

	www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1	ScriptElement	3.4 kB	2023-03-07	2025-05-08
Pretty URL www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32 Last Seen2025-05-08 00:34 Times Seen715 Hash 6755415003869bd599c3fae8e9792027 57946a22c79654014eb00fb548f727d302221873 07f79fbda35a2bf03f2940978670a2a53cf21e490ecce887bf92fc2e3f359293 Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	171 B	2023-03-07	2025-05-09
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 01:36 Times Seen1249 Hash c32aa77a529b98d09f633823e17b98d0 3b19228e265ee66caf31e4f7628b3bbf7b3899f8 84b370ed717643f59f4b407442e92facd66ff2648138381f43527c6b1093e622 Loading...

	futmillionaire.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	ScriptElement	90 kB	2023-03-07	2025-05-08
Pretty URL futmillionaire.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-08 19:04 Times Seen13558 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	273 B	2023-03-07	2025-05-09
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 01:36 Times Seen920 Hash d3a02e46275700d59240518abb63072c 400fa38d32b2f72f1c9dd4d3d62a5e7f230595dc f76c4a011d1dd8a45522a147c8a681e6bbbc9587ba01ea56601421e15a761613 Loading...

	futmillionaire.com/wp-content/plugins/page-scroll-to-id/js/page-scroll-to-id.min.js?ver=1.7.8	ScriptElement	26 kB	2023-08-25	2025-05-08
Pretty URL futmillionaire.com/wp-content/plugins/page-scroll-to-id/js/page-scroll-to-id.min.js?ver=1.7.8 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 21:10 Last Seen2025-05-08 06:42 Times Seen772 Hash a16497dbdf081c2bffe0645b52275fa4 589d0bd2ea7ee7e2a5b0968a3bae300fc345423d 683194a1ccdbff2ccb1d049dbead875f871f0916266d3cb01e92023303aba203 Loading...

	futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/op-front-all.min.js?ver=2.5.18	ScriptElement	65 kB	2023-03-07	2025-04-27
Pretty URL futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/op-front-all.min.js?ver=2.5.18 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39 Last Seen2025-04-27 07:29 Times Seen119 Hash 3e4b825028c95bda986175ffb3ea530e 9ced884cee2f258dc10482c9995929f73b799e64 819fc7cf6950a71ed92dd0620f5edf8c0d3d2179a6b55415ef653703b0e8ff6a Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs	ScriptElement	161 kB	2023-11-28	2023-12-18
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 16:18 Last Seen2023-12-18 14:18 Times Seen255 Hash 4a256001cbbe7af37c71afbd89ba1656 4760f1dee9f6ff6db6f33eeee3dc7ec76155f7dd 5b683a525a2a814b27fc09152ee8030b6d542cd24a61de371bbe5e8815e9d0b1 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs	ScriptElement	66 kB	2023-11-28	2024-08-20
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 11:17 Last Seen2024-08-20 17:36 Times Seen195 Hash 009832d077d8fc42d725066c2b774fd6 0994f8575917c4eeb66f6bdb0a65609aa8902cac b1e012aaab4e65462b456ff6a07a6512c7b11d1682d228531d66b132dcf3d364 Loading...

	futmillionaire.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7	ScriptElement	6.4 kB	2023-03-07	2025-05-08
Pretty URL futmillionaire.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-08 14:14 Times Seen1413 Hash 8fe2803a01c9fa77cb1a2618c3552dce 2230dd8f0604e4328e7c2a3f9437a6bf2986f592 e87a1c5e24f9a7c7dcb437417f0b05b0a3c12947ce32d65c990c988a8b5ed4d7 Loading...

	futmillionaire.com/wp-includes/js/comment-reply.min.js?ver=5.8.8	ScriptElement	3.0 kB	2023-03-07	2025-05-02
Pretty URL futmillionaire.com/wp-includes/js/comment-reply.min.js?ver=5.8.8 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-02 11:46 Times Seen1219 Hash 3b59c3b33879d70b46063089ec505e03 4054dbf1c08e09d8514df72dbe137d02efae907a 143ce443c390db3b8598f951de20bd04623859a581a15b8cde43ebfa1f8ec103 Loading...

	eehuzaih.com/400/5005565	ScriptElement	89 kB	2023-12-05	2023-12-05
Pretty URL eehuzaih.com/400/5005565 IP 139.45.197.237 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:23 Last Seen2023-12-05 18:23 Times Seen1 Hash b420a7ee06da3d8e61da8aa479906f56 e81d61a90df73bad6776dc2da1597c133e8ee786 98940dd61c42961c8c0f155306c685dbaf7780ad362dab719d10f74ee55999b5 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_1?le=scs	ScriptElement	100 kB	2023-11-28	2023-12-18
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_1?le=scs IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 16:18 Last Seen2023-12-18 03:57 Times Seen144 Hash e0fbc84518a1bab9c8bad9f76463d338 ecce9ef563bc5170ebcfcfd35e0dd5b17bc0b874 d99dd3891be0d37edbcc13fdaad780f164a758be5d0c8a71f66596e6cda04f70 Loading...

	www.googletagmanager.com/gtag/js?id=UA-22315760-20	ScriptElement	191 kB	2023-12-05	2023-12-05
Pretty URL www.googletagmanager.com/gtag/js?id=UA-22315760-20 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:23 Last Seen2023-12-05 18:23 Times Seen1 Hash 8c005205f7b3105c6e11cc11d01432b1 6c91929781f42a501f393be60968998cee277225 e43d95fc5d5446ffbb701aa167d35b04d2a25be06cc4bacfad424ce54a2dceb7 Loading...

	futmillionaire.com/wp-includes/js/zxcvbn-async.min.js?ver=1.0	ScriptElement	351 B	2023-03-07	2025-05-09
Pretty URL futmillionaire.com/wp-includes/js/zxcvbn-async.min.js?ver=1.0 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19 Last Seen2025-05-09 02:50 Times Seen4498 Hash c6f045d5e79f0a4f5ce90419ca598162 45d70af2ab1d5d4ff738afc052758a0242f31a00 e93e18f2f34a865e27d2d839eaccca6bec750d357f1c937980026d6d25507c2c Loading...

	futmillionaire.com/wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de	ScriptElement	5.4 kB	2023-03-07	2025-04-25
Pretty URL futmillionaire.com/wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20 Last Seen2025-04-25 12:14 Times Seen393 Hash 10eb2a823cb3051e10c7395768745f5b d1002d92d3b59802d22742cd8172a4ec8918ffad 04e6fb814fccce3a0aecb83be0bc24665cf3e6a5e993f296471a63708f63e138 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-09
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 05:32 Times Seen340558 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	connect.facebook.net/en_US/all.js#xfbml=1	ScriptElement	17 kB	2023-05-05	2025-05-09
Pretty URL connect.facebook.net/en_US/all.js#xfbml=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 22:33 Last Seen2025-05-09 05:34 Times Seen54121 Hash b938e0b835c600209bdaae9d8ccda6d7 d5ee79d277057e05f002a18381722b5eb75d3883 d1b95aeb57c3285042e1e24c00cc56a8560d16daf7ee5cdfd5c75296b21ac91b Loading...

	www.googletagmanager.com/gtag/js?id=AW-610794078	ScriptElement	199 kB	2023-12-05	2023-12-05
Pretty URL www.googletagmanager.com/gtag/js?id=AW-610794078 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:23 Last Seen2023-12-05 18:23 Times Seen1 Hash 4d1352b6976facad31562bac58a97c10 ef84def684f8e4ec845195d34bb2767c55976371 f9b78539e802982937918494106df4390cf57647ecdb4043df7b60f21bbe849d Loading...

	www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6	ScriptElement	28 kB	2023-04-14	2025-04-17
Pretty URL www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-14 15:15 Last Seen2025-04-17 03:23 Times Seen362 Hash 68f8af044f685b84c7d49ac2356acabf 585889874b36224e980f4d285044ec0fb478dc7c 9fe6a07f596d507305d1480e6bb301d04cbf5ef8660b24b9fa411e39607a7ab5 Loading...

	www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html	ScriptElement	231 B	2023-05-22	2024-08-21
Pretty URL www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen197 Hash 8eb49f7b6efd94cdd86e86cb6fb64ab1 556d6d9c3502c6c9e0a4fafb3e6d35244fbef674 43544840429e505afe1d466f749f47712d8213c4c1d14772e7e879ccc9b09cbf Loading...

	boltepse.com/pfe/current/tag.min.js?z=1548391	ScriptElement	13 kB	2023-11-02	2024-08-20
Pretty URL boltepse.com/pfe/current/tag.min.js?z=1548391 IP 139.45.197.250 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 10:05 Last Seen2024-08-20 21:23 Times Seen2697 Hash 258578af3c107ccb907f73c3a2f4c25f 7a192edea829968fb7f57f2a2fc4cb5b612598be 1f945c9c46c47a2b0e867b0d09c3e4559cd768a2d3747abf28d1d65667733b75 Loading...

	tharbadir.com/27/b7af9eee900df9a8aa2af9ad8ee46174	ScriptElement	413 kB	2023-11-24	2024-08-20
Pretty URL tharbadir.com/27/b7af9eee900df9a8aa2af9ad8ee46174 IP 139.45.197.238 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-24 13:48 Last Seen2024-08-20 18:04 Times Seen548 Hash 1dc3ebe1459db3cde0597b21156f2665 0e5a8c7b79a34f4fffaeab7c7eb4f3a19b0d75f6 1a3f7f2cfe5fba958e9df1a38c0980aab5bb21225601ea849f9e6df4afe09f2e Loading...

	www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1	ScriptElement	571 kB	2023-03-07	2025-04-24
Pretty URL www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:33 Last Seen2025-04-24 02:06 Times Seen295 Hash 6d53ab10ac8d6c3be0ee1df6b4bdc00f a5b0990fbcaf8b5f73085d9c02236e68b02f113e 0e12b6aea62f8d1c2e29e27393e231a8a17472728b303b586e2d4fb3ff5b481f Loading...

	unknown	ScriptElement	3.3 kB	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 16:40 Last Seen2024-08-20 16:40 Times Seen1 Hash d4047aa656b5144aa2dbc71e6a48af0b 1146c0f953061df043bf8260ec0c3fd3cd102b72 52432fdf172ca4860d628aff10ed642c441b608b5e7ab53ee8944c1cc43ee164 Loading...

	cbtb.clickbank.net/?vendor=futmillion	ScriptElement	941 B	2023-03-10	2024-08-21
Pretty URL cbtb.clickbank.net/?vendor=futmillion IP 52.12.196.171 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 21:41 Last Seen2024-08-21 08:08 Times Seen37 Hash f5a3bb4d77b742cc2f5b428433fad91c beb18a96e30c1dd8724e463b21202b3b62943e36 ce80f6b051fb306f0ff9fed39f04002e672a38c328473a98b74d73e16117be03 Loading...

	futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/js/collapse.min.js?ver=2.2.4	ScriptElement	10 kB	2023-03-07	2025-04-26
Pretty URL futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/js/collapse.min.js?ver=2.2.4 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06 Last Seen2025-04-26 14:42 Times Seen65 Hash fd24407580f43304a716438b444741a2 a87c9a3c0565a8c9d49528a5093538184376fa84 24b4e5b4ff6e7169a3bd73f859f615a3d6e6b785542c8fc080e73b0102ebf4b5 Loading...

	player.vimeo.com/video/242400713?autoplay=0&title=0&byline=0&portrait=0	ScriptElement	12 kB	2024-08-20	2024-08-20
Pretty URL player.vimeo.com/video/242400713?autoplay=0&title=0&byline=0&portrait=0 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:40 Last Seen2024-08-20 16:40 Times Seen1 Hash fc5fe262dfaeee1a47da7f796ce72802 d5a23c1dc66dff4f0cc4289888c4c1aabb98ece8 46a5de993c5050b91e00d37856e936aa5ac778bfb108e94e018fcfca4a1c9336 Loading...

	www.vugla.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	ScriptElement	88 kB	2023-11-03	2025-05-09
Pretty URL www.vugla.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-05-09 04:58 Times Seen91852 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	tharbadir.com/2?z=1347951	ScriptElement	43 kB	2023-12-05	2023-12-05
Pretty URL tharbadir.com/2?z=1347951 IP 139.45.197.238 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:23 Last Seen2023-12-05 18:23 Times Seen1 Hash 61e566a705bf613c3bccb9ad0eb210bb 19aff8e6424c7a5b3c821556784e60be04fe11fd b6c063ff9602828556b2b75334daedd7de69e9956eac7efea8dc64e2ab4844d9 Loading...

	futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/menus.min.js?ver=2.5.18	ScriptElement	352 B	2023-03-07	2025-04-27
Pretty URL futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/menus.min.js?ver=2.5.18 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39 Last Seen2025-04-27 07:29 Times Seen111 Hash a9a6479c07cef90c78ace84ac39fc819 bc594be52212c47059283cd563abfe844ba531f0 0a9fb050b2e7f402613dfeaa848cc13162dc0cb709b2ab983442b9d9893bec6e Loading...

	www.googletagmanager.com/gtag/js?id=UA-22315760-20&l=dataLayer&cx=c	ScriptElement	191 kB	2023-12-05	2023-12-05
Pretty URL www.googletagmanager.com/gtag/js?id=UA-22315760-20&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:23 Last Seen2023-12-05 18:23 Times Seen1 Hash 496f30b19265efcb71e58052e4a8b828 a4a43ec2604fab5631880276010efc8e83b56fbe a4b5ef06b260c15a3e0fe8acc22da5d42421a90d48bee6942aaa3ae92f767dc3 Loading...

	eehuzaih.com/400/5005565	ScriptElement	89 kB	2023-12-05	2023-12-05
Pretty URL eehuzaih.com/400/5005565 IP 139.45.197.237 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:23 Last Seen2023-12-05 18:23 Times Seen1 Hash 4dd1f58d3a1e6edcdf5ffb62bd6a2e75 627d691c35dc0104af7a7433e8897c37b0fd2176 b40eae38ce3a299c6a1864df81609126c9c7d55fabf87d5614298dcfb614a024 Loading...

	shineinternalindolent.com/65/aa/28/65aa283021630dfd9030555c4c61a78c.js	ScriptElement	60 kB	2023-12-05	2023-12-05
Pretty URL shineinternalindolent.com/65/aa/28/65aa283021630dfd9030555c4c61a78c.js IP 173.233.137.36 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:23 Last Seen2023-12-05 18:23 Times Seen1 Hash 80f4b3037875bc77abed5eaad60958e3 d6ca49d208f58a1f7782d156fd073056ee8fc37b 8251616618e83c035772380ffd5d4d8267afd938b504a1d84df2aa443d542b9d Loading...

	www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1	ScriptElement	15 kB	2023-05-22	2024-08-21
Pretty URL www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen228 Hash ad955f14cdcc21d58014f25ab7c8d46d 8915b95d672d54be6fb01a239088aba305d4798e d6304e162f8fe5054a4c5430d2f1d78ea2ad54c1ff61ea708d148bf385312407 Loading...

	prod.cbstatic.net/dist/injectable.js	ScriptElement	191 kB	2023-03-07	2025-04-21
Pretty URL prod.cbstatic.net/dist/injectable.js IP 143.204.55.24 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17 Last Seen2025-04-21 03:29 Times Seen1028 Hash af651c30e1a69f6f2124e9c1d094a300 4328efe60a0ca51ab455d67ef6b257998cb1cdee f752e24e380963973c86376422b0618658de851a8b2011c69e394b787a1c593f Loading...

	www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=6.4.1	ScriptElement	104 kB	2023-05-22	2024-08-21
Pretty URL www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=6.4.1 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen199 Hash ef9b7abbc5670902d89c6d20af50b7c3 2593f7764d07fecf938574d3d93693f1974759d2 17cadc0ae5ff07b667c2150bce71007b771bcc75ce070fd2a697ee2e60109535 Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	155 B	2023-03-10	2024-08-21
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 21:41 Last Seen2024-08-21 08:08 Times Seen46 Hash 2591dfb238ab94711429b0367fd69a02 52d2ec461019e05a40dbcbcee90213dde91bfc8b 61bbe31a47149a9c573dfd7a25dc373ff1411d96500802eab97fafeab2a275e8 Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	101 B	2023-03-10	2024-08-21
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 21:41 Last Seen2024-08-21 08:08 Times Seen33 Hash 9ba93a0d1633648ecc3a049e68041d75 11b65d6e19aa3de07f9bb94a4ebc6a159d2a2aa2 059c100a4e901edc7295a0caa1db9b5f65ffa1be4acaa81990425d5b49a63ea2 Loading...

	www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html	ScriptElement	275 B	2023-03-14	2024-08-21
Pretty URL www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 00:55 Last Seen2024-08-21 08:08 Times Seen202 Hash 75a198bff010258566f15c985871f637 c73be2b97536168613d453147e3dcff01999220c dd9b861b501b2e39307932dff8443bdf955fad5346b2d9c2854670c5d48752ee Loading...

	tzegilo.com/stattag.js	ScriptElement	19 kB	2023-09-07	2024-08-21
Pretty URL tzegilo.com/stattag.js IP 104.21.11.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-07 20:07 Last Seen2024-08-21 07:20 Times Seen2395 Hash 89e89aea544ea2785d49cc4cd9cf26f6 7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b 86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9 Loading...

	www.vugla.com/wp-includes/js/underscore.min.js?ver=1.13.4	ScriptElement	19 kB	2023-03-08	2025-05-07
Pretty URL www.vugla.com/wp-includes/js/underscore.min.js?ver=1.13.4 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26 Last Seen2025-05-07 14:51 Times Seen20810 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	groorsoa.net/5/1316441	ScriptElement	72 kB	2024-08-20	2024-08-20
Pretty URL groorsoa.net/5/1316441 IP 139.45.197.245 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 16:40 Last Seen2024-08-20 16:40 Times Seen1 Hash a397a53a7ada98d0ebc1bb85955bc7b4 78dbb5856cda6b3339b71967f70c2a6e0949e84b 967265b75693b890db4132b35df64e1e999fadad2c441ab14277015099fd55ae Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	21 B	2023-03-10	2024-08-21
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 21:41 Last Seen2024-08-21 08:08 Times Seen35 Hash 9195154085364a0aadfb0ed08c82248f 444401fc7e0c0de72dcd77871efa05604f9c31ed d911ee49f19930f3448055057f93a48b06dec558eb16f0254efa76c96255ff33 Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	403 B	2023-03-10	2024-08-21
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 21:41 Last Seen2024-08-21 08:08 Times Seen46 Hash 8dce4ebe441409bb6f08ed5e62013216 e741f84ea8734113254361431c927e2a05ba17ba e8e58e4cdfa549bd4937a7d70189ff3df3d33886c689f0da4f79f7e5e753b16c Loading...

	www.googletagmanager.com/gtag/js?id=G-YETEL46C9Z&l=dataLayer&cx=c	ScriptElement	239 kB	2023-12-05	2023-12-05
Pretty URL www.googletagmanager.com/gtag/js?id=G-YETEL46C9Z&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:23 Last Seen2023-12-05 18:23 Times Seen1 Hash 0968cc25a9fcc0e43de1f3b375309369 fbdc3c7185117f2657beb9f54fcaf6d12c5f8914 606837514dbc501d8e9b364ab43e8b45703c57f88862ed326ee5c9db08d5dba8 Loading...

	www.vugla.com/sandbox%20eval%20code		147 B	2023-04-11	2025-05-09
Pretty URL www.vugla.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 05:32 Times Seen341358 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.googletagmanager.com/gtag/js?id=G-7NCJ73THPT	ScriptElement	246 kB	2023-12-05	2023-12-05
Pretty URL www.googletagmanager.com/gtag/js?id=G-7NCJ73THPT IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:23 Last Seen2023-12-05 18:23 Times Seen1 Hash 8c1d70871e105e0aba77871de1ff3a7c 81cf4bb8bdc404cb89782b24bb3519361d507c2d 4f49d79ea032c574980f36b0190b854e264904e4682e1589f0c177fbc46e9c08 Loading...

	ssl.gstatic.com/accounts/o/478691279-postmessagerelay.js	ScriptElement	12 kB	2023-09-06	2024-08-21
Pretty URL ssl.gstatic.com/accounts/o/478691279-postmessagerelay.js IP 64.233.162.94 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-06 15:46 Last Seen2024-08-21 07:24 Times Seen1994 Hash 92169c8a0fbf6e404267d0705cdbdf42 a5cd88b74ca5ced239cdbfb458fe25540d671f46 dba668b49a111527aac8f616b9053ea57c944e01a84ebdcd02a13da921223384 Loading...

	unknown	ScriptElement	145 B	2023-08-25	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 09:27 Last Seen2024-08-21 08:08 Times Seen146 Hash 25ee70ccfb4bb15c14c145562f0f0305 750f0fcb4ebd205c768b5bbb7dba73a7100e66e3 4873fcd169e86b6cf750a5c26c2217dd0493a0f27b3407d75ed7feb77ba9f45c Loading...

	futmillionaire.com/wp-content/plugins/popup-builder/public/js/PopupConfig.js?ver=4.1.15	ScriptElement	6.0 kB	2023-03-07	2025-05-06
Pretty URL futmillionaire.com/wp-content/plugins/popup-builder/public/js/PopupConfig.js?ver=4.1.15 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42 Last Seen2025-05-06 13:42 Times Seen961 Hash c7a493f7e281b7a2c5fe182a44ba8367 11c971b79a4c8ea2dd1b6b4d7b33192275054f44 3fe8c79d67b21039a5d059ef40761950fb76e1d17933d61509f7eb3c68f5aeeb Loading...

	www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6	ScriptElement	13 kB	2023-03-07	2025-05-08
Pretty URL www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6 IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33 Last Seen2025-05-08 18:22 Times Seen474 Hash 416d2c5e5425c640a7d63f25e0376fd6 a95b218161d94bdb148d108aedf065b4a4762045 b875bead01dfa1b02a553e8efda0f3a65d39da24f19ad37af95f06795eee76dc Loading...

	www.kursnalista.co/banners/banners.js	ScriptElement	8.1 kB	2023-05-22	2024-08-21
Pretty URL www.kursnalista.co/banners/banners.js IP 192.185.106.47 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen221 Hash 0fa58c243ecc9c6ff829da27563c78c4 771e757dcaddc90a127b557e6a8a69b9dfe4767d 4631955f687225007a1227be7e662f1f45798c13a573f70670e748ff50aa194b Loading...

	futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864	ScriptElement	1.3 kB	2023-03-10	2024-08-21
Pretty URL futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 21:41 Last Seen2024-08-21 08:08 Times Seen45 Hash 86291c5b93b3cb02cda871d30f47c370 19d33e498bfe6314c066ecf04cd4df182f5bb881 dbcbaa9c6a9a29cb6b94c7b2f1827c7f03ee4936b8610475cd2343d1e2dfb210 Loading...

	futmillionaire.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.8	ScriptElement	18 kB	2023-03-07	2025-05-08
Pretty URL futmillionaire.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.8 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-08 17:21 Times Seen7770 Hash 116c86c56f8db0bb63f15ceda50fdc98 75e308982ecf7cd43644b8b426e6aa1a0b0fbe26 def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7 Loading...

	pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js	ScriptElement	43 kB	2023-12-05	2023-12-05
Pretty URL pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js IP 192.243.59.12 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:23 Last Seen2023-12-05 18:23 Times Seen1 Hash a76387e9d9ca44cc42ee1885eddb0c92 6abde7517c84afef52806025e94dfa85892d33ee 298f027f2e8d6ff4e944620617286ba5509eff28310226faddfb66353fa8b36f Loading...

	www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html	ScriptElement	204 B	2023-08-25	2024-08-21
Pretty URL www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-25 09:27 Last Seen2024-08-21 08:08 Times Seen159 Hash ff3448265c8993d78798a96ece09fe88 07af2a326db79b0282f3e0399f4481e37b3c1be7 b0568da9ebb64ae54d9132b080408fccc6f1011f2116550f842a05beb81b0f33 Loading...

	www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html	ScriptElement	888 B	2023-08-25	2024-08-21
Pretty URL www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-25 09:27 Last Seen2024-08-21 08:08 Times Seen159 Hash b764db4fe165c62db0d123b867e94bd5 d6b4fdaea71527d774ea41a3673e8c4e6c6b0709 6b9344d192e83f73413812f815e820abcf65bf83ccbe0426b5a55d186ed03ef1 Loading...

	www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html	ScriptElement	140 B	2023-11-13	2024-08-20
Pretty URL www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html IP 192.185.106.252 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-13 23:13 Last Seen2024-08-20 19:42 Times Seen85 Hash 26ff9d1af4532dd17eb41e6415eea9c1 5503e4032968e229087012da0c0b6a48690f4e55 5f396c3ff05da19529975f5bc46464e9fc9306c56b540e72acd574461e28c978 Loading...

	www.variouscreativeformats.com/c3b6bab9a3e6c622d733121998e0014d/invoke.js	ScriptElement	30 kB	2023-11-26	2023-12-12
Pretty URL www.variouscreativeformats.com/c3b6bab9a3e6c622d733121998e0014d/invoke.js IP 192.243.61.227 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-26 17:50 Last Seen2023-12-12 22:21 Times Seen66 Hash 223406d9dbf6d31ee7d9236d1c95ea29 8a45024df7b5013212b1fd369c5670655bd55b66 8eb1cd23b38e67fb1ec812debb06ff9f68891aeecaf2edeba8c0a73081c27ed0 Loading...

	futmillionaire.com/wp-content/plugins/popup-builder/public/js/Popup.js?ver=4.1.15	ScriptElement	39 kB	2023-07-12	2025-05-06
Pretty URL futmillionaire.com/wp-content/plugins/popup-builder/public/js/Popup.js?ver=4.1.15 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-12 23:47 Last Seen2025-05-06 13:42 Times Seen728 Hash aad76345b176f2bdea7082ce27717aba 1f3c44bf0b8169741bc5b3e71e83e05d07b59338 113500b83a965388babfdb15b9740741f750db1890f6fa3677cf1bcaddd96089 Loading...

	futmillionaire.com/wp-includes/js/wp-embed.min.js?ver=5.8.8	ScriptElement	1.5 kB	2023-05-16	2025-05-08
Pretty URL futmillionaire.com/wp-includes/js/wp-embed.min.js?ver=5.8.8 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-16 22:22 Last Seen2025-05-08 16:36 Times Seen6350 Hash 7c5c36baa69fcdb57bd891cda90920b3 9d8b3df7a4fa2968403290d69a60b2eab20734f5 6a482d2d94c0d1bc6937a1759389d01b475e6b28a0d9b5d7eaa3f9cc8f59f3cd Loading...

	futmillionaire.com/wp-content/plugins/popup-builder/public/js/PopupBuilder.js?ver=4.1.15	ScriptElement	82 kB	2023-07-12	2025-04-14
Pretty URL futmillionaire.com/wp-content/plugins/popup-builder/public/js/PopupBuilder.js?ver=4.1.15 IP 172.67.208.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-12 23:47 Last Seen2025-04-14 07:17 Times Seen607 Hash ebd85c7aed86a2de3c0fbca71335dd5f 106ed33ea7adb032462f058bd9d3de1bb009c984 12ff59b61b2d94ec029a1eda78cbc4b857eb7f7a5e0916bbaa656174b2834a3f Loading...

		Size	First Seen	Last Seen
	#1 Eval - 28178a644ae5c027f282941100a0df3f	2.1 kB	2024-08-20 16:40	2024-08-20 16:40
Pretty Observations First Seen2024-08-20 16:40 Last Seen2024-08-20 16:40 Times Seen1 Hash 28178a644ae5c027f282941100a0df3f 079f57ecf59acce6b6a25706171cb72d9a5f4413 421b6230c628184cccfef4ef564094d2a8b8cb53c9ff9f5684f371a1457ab4c2 Loading...

	#2 Eval - 977a63baaae12bc6cebe8d12ca4c605f	14 B	2023-03-07 12:07	2025-04-24 22:19
Pretty Observations First Seen2023-03-07 12:07 Last Seen2025-04-24 22:19 Times Seen344 Hash 977a63baaae12bc6cebe8d12ca4c605f 351f8f17ffae36edd22bcab7d082b6cb79a029e9 ddcc07c1e3337442b3ada36ea3422c6b417949dfcf4068fbf813e581c93385f6 Loading...

		Size	First Seen	Last Seen
	#1 Write - 4caf252d8b5f67a4a15a37b9a44e0a8a	51 kB	2023-05-22 08:22	2024-08-21 08:08
Pretty Observations First Seen2023-05-22 08:22 Last Seen2024-08-21 08:08 Times Seen191 Hash 4caf252d8b5f67a4a15a37b9a44e0a8a 0336cd0390878dffa987b70d66cd9181f975034e 3c2f3f2a1ab8a2ddae090dfc52981d4b729beacc08487c95eb64a83af9217bd8 Loading...

	#2 Write - 31c9da99d87f30d4105f391c11ae8757	128 B	2023-08-25 09:27	2024-08-21 08:08
Pretty Observations First Seen2023-08-25 09:27 Last Seen2024-08-21 08:08 Times Seen183 Hash 31c9da99d87f30d4105f391c11ae8757 da2648a5466570fd4aa986282e122d12ab6b5648 1dbdd8a3b493ad2b2750901f83983de94b8f59db68ab58aebe45672fc4dba75d Loading...

	#3 Write - 02d68eea97b022c1da2a4d0b95d88584	384 B	2023-08-31 15:43	2024-08-21 07:41
Pretty Observations First Seen2023-08-31 15:43 Last Seen2024-08-21 07:41 Times Seen36 Hash 02d68eea97b022c1da2a4d0b95d88584 8a51931c1f570a01157ddc4ed1dc69ba6018f327 5b040676ef44f4c775bb994f183d187f628016e3ceff77b8bd667574428d9fe3 Loading...

	#4 Write - b1ffa90faf2cf9b8a9be07bbb1c8d62a	161 B	2024-08-20 16:40	2024-08-20 16:40
Pretty Observations First Seen2024-08-20 16:40 Last Seen2024-08-20 16:40 Times Seen1 Hash b1ffa90faf2cf9b8a9be07bbb1c8d62a cd99545dd3f0394e9fecc63b3ed2f6a1b9292560 731e6033bb65d278bf4e6c9f3c73815f70be8a01a1f541a254d0763fb09db1e4 Loading...

HTTP Transactions (302)

URL IP Response Size

www.vugla.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.3

192.185.106.252

409 Conflict

83 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.3
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 409 Conflict
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.4.6

192.185.106.252

200 OK

1.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.4.6
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (4310), with CRLF line terminators
Size
1.4 kB (1410 bytes)
Hash
b236fbc68ad6824d6fd4be9501a56ea5
5147f5e6779b335a45771a6a9ec9f0a1db8079ef
d49c9ad378618e0a0eb8e6fca04c13f6005e13badf79e0c977d76d851f7aa60a

HTTP Headers

GET /wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.4.6 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1410
content-type: text/css
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/style/theme-city.css?ver=6.4.1

192.185.106.252

200 OK

733 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/style/theme-city.css?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (2553), with no line terminators
Size
733 B (733 bytes)
Hash
229bf132659b3607e05296743613ecca
2f498516b73ae5f087904669ccd6b3eb57054711
73214adfea5dc8d2ab7aae66baec56aab47e70224557c08f424b80909d1acd7c

HTTP Headers

GET /wp-content/plugins/vn-video-player/style/theme-city.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 733
content-type: text/css
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1

192.185.106.252

200 OK

398 B

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text
Size
398 B (398 bytes)
Hash
4f140b946bdc4cb833896a992db68c6d
52d6c64f9c5478bb70604068a66f06283ecff968
f8f90d1cacc59cf90886948787ef5c723b8de9e41092285611f2f915b5996ef2

HTTP Headers

GET /wp-content/themes/vugla/style.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 24 Mar 2020 17:57:12 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 398
content-type: text/css
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=6.4.1

192.185.106.252

200 OK

320 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
320 B (320 bytes)
Hash
199decab27dd471d35814631e71e6fea
42c2847529b6859230bc2f4e8e6432805a06148b
7279594a46188e3246db42ffd4c609fc254c6fa06bfca8b72dd82e63fa4e6385

HTTP Headers

GET /wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 26 May 2014 20:39:02 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 320
content-type: text/css
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=6.4.1

192.185.106.252

200 OK

89 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
89 B (89 bytes)
Hash
b20aaffdf9d8e1f413b536edb9d1b649
0f3afd6ef6940700eb7f245629d1b79c52f45b47
9534982bd24eaa3205ac2e5a4dbd6a16a3129b70df981f422562ef3a30ade7cd

HTTP Headers

GET /wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:50:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 89
content-type: text/css
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/style/video-js.css?ver=6.4.1

192.185.106.252

200 OK

14 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/style/video-js.css?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
Unicode text, UTF-8 text, with very long lines (5844)
Size
14 kB (13761 bytes)
Hash
514fccb15bdc95ea2c2b6fddaded8ecc
4c999194bb19b83cc85f40621fa1c74cd1a4cbf7
d86730f73982f170cb0943d0d47c3c2520743d6a3d6cf5330cde12667df675ca

HTTP Headers

GET /wp-content/plugins/vn-video-player/style/video-js.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 13761
content-type: text/css
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

192.185.106.252

200 OK

5.4 kB

URL GET HTTP/2
www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (13479)
Size
5.4 kB (5422 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 5422
content-type: application/javascript
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3

192.185.106.252

409 Conflict

83 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 409 Conflict
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3

192.185.106.252

409 Conflict

83 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 409 Conflict
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1

192.185.106.252

200 OK

7.0 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text, with very long lines (14641), with CRLF line terminators
Size
7.0 kB (6964 bytes)
Hash
ad955f14cdcc21d58014f25ab7c8d46d
8915b95d672d54be6fb01a239088aba305d4798e
d6304e162f8fe5054a4c5430d2f1d78ea2ad54c1ff61ea708d148bf385312407

HTTP Headers

GET /wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 12:00:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 6964
content-type: application/javascript
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/reddit.png

192.185.106.252

200 OK

2.3 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/reddit.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2328 bytes)
Hash
91d33236832e22fe9743606623bd001a
d7101e60e49e86dbe1f34876228aa6831ad568f7
5571cdc5e0d90001474bf488c142929a02a39e55a4a7f61c44d1f94a4087eda1

HTTP Headers

GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/reddit.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 2328
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/logo.png

192.185.106.252

200 OK

7.9 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/logo.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 254 x 96, 8-bit/color RGBA, non-interlaced\012- data
Size
7.9 kB (7870 bytes)
Hash
f8e78d7eed20f4d77ca41cbf9700c0fa
9c40c7c5ae212e070b2aceda05b7e34de143a670
cf314f8938fb5d378e49a7e09683a206e244024b7ca3a7ec1676f22804285ca7

HTTP Headers

GET /wp-content/themes/vugla/images/logo.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 18 Nov 2013 11:35:09 GMT
accept-ranges: bytes
content-length: 7870
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/mail.png

192.185.106.252

200 OK

1.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/mail.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1659 bytes)
Hash
42bec42b54ef1bb6bb9596efa815973d
88145ca02b72936eb430e818cd7a80f189ca9166
154a5b712eedff5cdee156292d8795dd139a350c7ed09982e5faec55a0ab2f42

HTTP Headers

GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/mail.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 1659
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/tumblr.png

192.185.106.252

200 OK

861 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/tumblr.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Size
861 B (861 bytes)
Hash
1d8dab6f1066b94b74f5611a8c918681
4e0edc7ba1ada49418772d8d581cd3d38518d490
bac6d2c8418e543d967d6e57710eda1ca4318ddd917c19a28fd63b4240e8d150

HTTP Headers

GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/tumblr.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 861
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/mobile-share/viber-64x64.png

192.185.106.252

200 OK

7.1 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/mobile-share/viber-64x64.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
7.1 kB (7120 bytes)
Hash
de186be4358ae6892385bcb78cc79b01
d933c306c857b9e84e321c4756d384a6e8093da2
c912b95fc0e537dbd5d103172a9ad3df2a3c8ad4ce5e6d6cebbaf31d7f6d58be

HTTP Headers

GET /wp-content/themes/vugla/images/mobile-share/viber-64x64.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 22 Dec 2016 10:00:29 GMT
accept-ranges: bytes
content-length: 7120
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6

192.185.106.252

200 OK

8.6 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
Unicode text, UTF-8 text, with very long lines (629), with CRLF line terminators
Size
8.6 kB (8560 bytes)
Hash
68f8af044f685b84c7d49ac2356acabf
585889874b36224e980f4d285044ec0fb478dc7c
9fe6a07f596d507305d1480e6bb301d04cbf5ef8660b24b9fa411e39607a7ab5

HTTP Headers

GET /wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 8560
content-type: application/javascript
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

apis.google.com/js/plusone.js

142.250.74.78

200 OK

22 kB

URL GET HTTP/2
apis.google.com/js/plusone.js
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint06:87:C0:63:02:21:98:02:BD:FC:A0:11:93:E9:3A:9F:51:21:06:D8
ValidityMon, 23 Oct 2023 11:25:10 GMT - Mon, 15 Jan 2024 11:25:09 GMT

File type
ASCII text, with very long lines (2664)
Size
22 kB (21930 bytes)
Hash
12476fdc6b8599d03eac729748337611
7a15dc04ad6e77026bf45927b78247411e3e0466
c5be6532f19ca90fb5966ed89be694f2bc2cded1e443d3489467cb28cd69af43

HTTP Headers

GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 21930
date: Tue, 05 Dec 2023 17:22:40 GMT
expires: Tue, 05 Dec 2023 17:22:40 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "b82ec1e6cb6f99ed"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=sdOEvPskHK9Oa5DyU841Vs-kJEijvuRFLDEbrNF5Br5-bR0P3Yc6snD2hlu1GDm4BcKwMft8F99eubBYF94Z0ixf0hhvxfP0bLtSKEhK0Jff12tRrdHcED4M7xZbc2r1TkE2JtHKAlWxmQQsN2ACNP1XpyDYoCzRye_esJngDeU; expires=Wed, 05-Jun-2024 17:22:40 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-7NCJ73THPT

142.250.74.168

200 OK

86 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-7NCJ73THPT
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (3034)
Size
86 kB (85471 bytes)
Hash
8c1d70871e105e0aba77871de1ff3a7c
81cf4bb8bdc404cb89782b24bb3519361d507c2d
4f49d79ea032c574980f36b0190b854e264904e4682e1589f0c177fbc46e9c08

HTTP Headers

GET /gtag/js?id=G-7NCJ73THPT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 17:22:40 GMT
expires: Tue, 05 Dec 2023 17:22:40 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 85471
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.vugla.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1

192.185.106.252

200 OK

21 kB

URL GET HTTP/2
www.vugla.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
gzip compressed data, from Unix\012- data
Size
21 kB (21204 bytes)
Hash
7c7c5fc296f0dc8ad43987b2ef79387c
944fb87b6f73fe2e3656ceebcf68cdfdcdf8f7e0
85faf6ee44be383042a73b55fb5ac04e3d58f6189e155a3dcbf186a6122bf81e

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: text/css
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-includes/js/underscore.min.js?ver=1.13.4

192.185.106.252

200 OK

8.3 kB

URL GET HTTP/2
www.vugla.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (18798)
Size
8.3 kB (8305 bytes)
Hash
f88d5720bb454ed5d204cbdb56901f6b
f1952292fde4b15936e9aac16b2b9896684db95b
726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 8305
content-type: application/javascript
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/mobile-share/fb-messenger-64x64.png

192.185.106.252

200 OK

2.6 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/mobile-share/fb-messenger-64x64.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2562 bytes)
Hash
56735b8135d0a3b1db1b1e1a34945e85
dc604b4e7030d9fe583393b94f1811fe69628107
7ef39fd53ffb21c300f78615faa8eab8eb1163ad1b70843efa4550a0bda364bc

HTTP Headers

GET /wp-content/themes/vugla/images/mobile-share/fb-messenger-64x64.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 26 Jul 2017 12:44:40 GMT
accept-ranges: bytes
content-length: 2562
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/gosk-siroki-brijeg-golovi-03-12-2023-150x150.jpg

192.185.106.252

200 OK

6.1 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/gosk-siroki-brijeg-golovi-03-12-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
6.1 kB (6102 bytes)
Hash
918216979e4ce28724487461c1c19602
993340d5f6391e30e85333f4cfa7749b40568c7a
0e261ad98ed78c446b01d76b1c2f901b322645dee8c297eeec44d961859fb303

HTTP Headers

GET /wp-content/uploads/2023/12/gosk-siroki-brijeg-golovi-03-12-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 04 Dec 2023 19:58:44 GMT
accept-ranges: bytes
content-length: 6102
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6

192.185.106.252

200 OK

4.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (12917), with CRLF line terminators
Size
4.7 kB (4708 bytes)
Hash
416d2c5e5425c640a7d63f25e0376fd6
a95b218161d94bdb148d108aedf065b4a4762045
b875bead01dfa1b02a553e8efda0f3a65d39da24f19ad37af95f06795eee76dc

HTTP Headers

GET /wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 4708
content-type: application/javascript
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/slaven-belupo-dinamo-zagreb-golovi-04-12-2023-150x150.jpg

192.185.106.252

200 OK

5.1 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/slaven-belupo-dinamo-zagreb-golovi-04-12-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
5.1 kB (5079 bytes)
Hash
14c77881e6b8a4d2b9618fc8c4c735a4
9b45e3998b328c39cca9b2c90395ab1410216da5
b331e719631fc4e82cf916716448fed5e06f6476987951cb4a1c32f79580d4b0

HTTP Headers

GET /wp-content/uploads/2023/12/slaven-belupo-dinamo-zagreb-golovi-04-12-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 04 Dec 2023 19:58:42 GMT
accept-ranges: bytes
content-length: 5079
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/afc-wimbledon-ramsgate-golovi-04-12-2023-150x150.jpg

192.185.106.252

200 OK

5.9 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/afc-wimbledon-ramsgate-golovi-04-12-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
5.9 kB (5866 bytes)
Hash
2113361b5ed10cf56982ec58b2ed774b
0fa4047f40960192335f6c9d4d92d633e82a4634
ac530f9ffa35f941c5f9c2f485f786e23d6c70a866f896d76c562d312ccd544f

HTTP Headers

GET /wp-content/uploads/2023/12/afc-wimbledon-ramsgate-golovi-04-12-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 04 Dec 2023 23:45:09 GMT
accept-ranges: bytes
content-length: 5866
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/mobile-share/whatsapp-64x64.png

192.185.106.252

200 OK

5.9 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/mobile-share/whatsapp-64x64.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
5.9 kB (5880 bytes)
Hash
616a93e26f2d9261cd8412a8741f7be8
5fbfd88e502bcc766a9c9ef1d1751ed16ce1197c
306accb5ad46635aeb9481a9bc934c14ae474e924ec52b6673141c5acacd800d

HTTP Headers

GET /wp-content/themes/vugla/images/mobile-share/whatsapp-64x64.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 22 Dec 2016 10:00:28 GMT
accept-ranges: bytes
content-length: 5880
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/hollywood-beach-webcam-150x150.jpg

192.185.106.252

200 OK

8.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/hollywood-beach-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
8.7 kB (8687 bytes)
Hash
23fc8e3304c9e60b1303a59d08d3e9ad
53ee6156dbdc09c54f326adb8363472aef5988b6
c5b7b9905d20b459a9044dbad343344065f5b11c1b5bd441a22f24b37ccf98ce

HTTP Headers

GET /wp-content/uploads/2021/11/hollywood-beach-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Nov 2021 18:17:09 GMT
accept-ranges: bytes
content-length: 8687
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/zagreb-trg-bana-jelacica-2-150x150.jpg

192.185.106.252

200 OK

7.0 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/zagreb-trg-bana-jelacica-2-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
7.0 kB (6982 bytes)
Hash
1fc23d41bb894274b7cf389d2bfcf57c
b752e2962b4feea7ae0eaf899b0c6b4e818c413d
8f5be453ac83ca763b56a8708ca2232490946e1620c1cb20f37947d376411e71

HTTP Headers

GET /wp-content/uploads/2021/11/zagreb-trg-bana-jelacica-2-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 29 Nov 2021 17:20:28 GMT
accept-ranges: bytes
content-length: 6982
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/no-image-small-square.png

192.185.106.252

200 OK

1.9 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/no-image-small-square.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGB, non-interlaced\012- data
Size
1.9 kB (1872 bytes)
Hash
d1eeee23c1386e83eb03456577c83c44
df8771fe53bd6509a6b481d2224fa859c0346b25
359f73ce4c4fa408b17b3f87b747eba218f3b245589047ee06ed8cdcf41697a4

HTTP Headers

GET /wp-content/themes/vugla/images/no-image-small-square.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:05 GMT
accept-ranges: bytes
content-length: 1872
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/linkedin.png

192.185.106.252

200 OK

725 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/linkedin.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Size
725 B (725 bytes)
Hash
5da9fb18cfc9264a6e95b4a8bf4d2fcb
7bb78a36bc621ea268a0dad519c9c5c539e751ce
c6e399926b1aeb3634681cf7eb6af4e355325a6b2b6f8a89ad65ece3523fab18

HTTP Headers

GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/linkedin.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 725
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/venice-hotel-la-fenice-webcam-150x150.jpg

192.185.106.252

200 OK

9.5 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/venice-hotel-la-fenice-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
9.5 kB (9468 bytes)
Hash
db610183cdeef9d7dec04ebdf0f9b7d6
ac3089c59da6f5d53b6c845841546158ce575ddb
9a7192adbb6c0d45a443253e55d7fa19e265282c299bf6e73134a643970be31f

HTTP Headers

GET /wp-content/uploads/2021/11/venice-hotel-la-fenice-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sun, 28 Nov 2021 10:45:01 GMT
accept-ranges: bytes
content-length: 9468
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/beograd-most-miladina-zivica-webcam-150x150.jpg

192.185.106.252

200 OK

5.5 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/beograd-most-miladina-zivica-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
5.5 kB (5510 bytes)
Hash
3fddda90683b7416f197bf988102840f
267cd52c70c992251e044b48ac04dcae61114c93
669bd143aeb2909494a8efa6031423535f6d79c5c0ed0c4f820ec6a064b3ef90

HTTP Headers

GET /wp-content/uploads/2021/11/beograd-most-miladina-zivica-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 25 Nov 2021 11:05:33 GMT
accept-ranges: bytes
content-length: 5510
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/celta-vigo-cadiz-golovi-04-12-2023-150x150.jpg

192.185.106.252

200 OK

5.6 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/celta-vigo-cadiz-golovi-04-12-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
5.6 kB (5553 bytes)
Hash
f31a4667415becf292cc7637c1e932d2
634f034d87f03f2523f6f4d460645bcacb6545cd
016459694bac3722f1deae883602f8fffb44ff4f5711b673ab09181487404972

HTTP Headers

GET /wp-content/uploads/2023/12/celta-vigo-cadiz-golovi-04-12-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 04 Dec 2023 23:45:06 GMT
accept-ranges: bytes
content-length: 5553
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1

192.185.106.252

200 OK

1.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text
Size
1.4 kB (1389 bytes)
Hash
6755415003869bd599c3fae8e9792027
57946a22c79654014eb00fb548f727d302221873
07f79fbda35a2bf03f2940978670a2a53cf21e490ecce887bf92fc2e3f359293

HTTP Headers

GET /wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:28 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1389
content-type: application/javascript
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/twitter.png

192.185.106.252

200 OK

1.8 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/twitter.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1762 bytes)
Hash
9cb3d67f468539abb72395dc73934190
9928de37e21649c1799e3287a13f897a34aab5e1
04a457e988270cb1dc76bd57ac8e62fddf02c02b618a1ac6cb0880b93633f5e0

HTTP Headers

GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/twitter.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 1762
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/torino-atalanta-golovi-04-12-2023-150x150.jpg

192.185.106.252

200 OK

6.3 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/torino-atalanta-golovi-04-12-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
6.3 kB (6317 bytes)
Hash
573fdcd7ebfb96b8343acbb06e9028b7
2c4d55ccdcc71067ffa2eee395a7ec9e165544b9
17ef7bc70089c0de5c50eac5b7e85153a6e47473dbff25c349749fb9ed5b3ee6

HTTP Headers

GET /wp-content/uploads/2023/12/torino-atalanta-golovi-04-12-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 04 Dec 2023 23:45:04 GMT
accept-ranges: bytes
content-length: 6317
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/venice-ponte-delle-guiglie-150x150.jpg

192.185.106.252

200 OK

7.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/venice-ponte-delle-guiglie-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
7.4 kB (7424 bytes)
Hash
bc56c6497c2c5b009e93d949e6d0fb55
c51a8c4cf1177fc6a67eaaca4ff9d4000b7d2c2e
48b7b6fd0ffa2ef0fb13218e8ecce9f257553f8753f240ee673c7cf5bbebfbf6

HTTP Headers

GET /wp-content/uploads/2021/11/venice-ponte-delle-guiglie-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sun, 28 Nov 2021 10:52:11 GMT
accept-ranges: bytes
content-length: 7424
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1

192.185.106.252

200 OK

106 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
106 B (106 bytes)
Hash
64829824ee643f09fb3821dc49b3089a
446608ff9f4128b9503476135a8c28599f8d5c2e
0b967c52b8e899c4266110c97fa50018d61ccf1365144d16f09f901523d48c95

HTTP Headers

GET /wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:31 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 106
content-type: application/javascript
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1

192.185.106.252

200 OK

8.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (17739), with CRLF line terminators
Size
8.7 kB (8747 bytes)
Hash
3229aa93c44fa4628707e80959a97bc1
5a2d4dbc4d1df02e7a386489e7b5c5a9e22dd40f
095834cc86bd018fdb4a9e31c99f9f96904b819be2b9dc16b3390383288d4d90

HTTP Headers

GET /wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 8747
content-type: application/javascript
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2021/11/kranjska-gora-gradski-trg-webcam-150x150.jpg

192.185.106.252

200 OK

8.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2021/11/kranjska-gora-gradski-trg-webcam-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Size
8.7 kB (8722 bytes)
Hash
bb30e47c317c19aff2dbbbedbd7297e7
48d8f4b1d8cf03a23c22a56ee3e4079ddef8815a
8f7ae93b026e6dd7552f2a2c3ecc2d50d245c3f39f7de920c87a3b018820e2f7

HTTP Headers

GET /wp-content/uploads/2021/11/kranjska-gora-gradski-trg-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sun, 28 Nov 2021 10:23:26 GMT
accept-ranges: bytes
content-length: 8722
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/fenerbahce-sivasspor-golovi-04-12-2023-150x150.jpg

192.185.106.252

200 OK

6.8 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/fenerbahce-sivasspor-golovi-04-12-2023-150x150.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
6.8 kB (6784 bytes)
Hash
eee04855c9d131e6f67f18d345f262dc
14537a0781b982e93d3748bbd9da09a67e010871
ba8393c6a6340420b1d088f0f70f70e48a13e5ddc3f2e89013c77ef29bb3724e

HTTP Headers

GET /wp-content/uploads/2023/12/fenerbahce-sivasspor-golovi-04-12-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 04 Dec 2023 23:45:02 GMT
accept-ranges: bytes
content-length: 6784
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/facebook.png

192.185.106.252

200 OK

584 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/facebook.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Size
584 B (584 bytes)
Hash
114d84e23ab95df71589ab5e67b93b85
2270334f4b83486ceaab53133e4706537c16f38a
1353c448068301ee8534bd1d3c8eb214863afa0b9f716222dfe93e2739cffac2

HTTP Headers

GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/facebook.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 584
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz-620x350.jpg

192.185.106.252

200 OK

49 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz-620x350.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 620x350, components 3\012- data
Size
49 kB (48601 bytes)
Hash
c2d88151d497a63110c86f44d2f01e35
fc5e00d202025911b0a2565347943483c88d89c2
9421c729edd155e219ff8a30950a840a7d1dfd3c64cf9c863564c384f20caaf7

HTTP Headers

GET /wp-content/uploads/2023/12/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz-620x350.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 04 Dec 2023 09:18:29 GMT
accept-ranges: bytes
content-length: 48601
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:40 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_reset.css

192.185.106.252

200 OK

1.2 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_reset.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
1.2 kB (1152 bytes)
Hash
b5ae6c0ccd961d29a2924b03b0cbdd6e
3293dc40aa870c1cf79180eb7bd5c2ff28f3bd0a
0838fff76cfa3bad87963e64a610ea8d60b2dc8d0781a7531a2385f65de1ab2f

HTTP Headers

GET /wp-content/themes/vugla/css/style_reset.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:34 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1152
content-type: text/css
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/flexslider.css

192.185.106.252

200 OK

1.5 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/flexslider.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
1.5 kB (1526 bytes)
Hash
aed0d9c2792c1ca777bfce04eb08ae7a
64e98271e4539dbf8819fa9d801017423c9bc30b
7f7b09426068a9bacddeefcf29f89063307fdc903ac45a569853b8c452d9b62d

HTTP Headers

GET /wp-content/themes/vugla/css/flexslider.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 08 May 2014 09:18:47 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1526
content-type: text/css
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/elastislide.css

192.185.106.252

200 OK

674 B

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/elastislide.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
674 B (674 bytes)
Hash
fac0ce1d7bcbe2001f963e204b03b3a4
fe650403bcbc74567e384eb3762c874835f6cad1
d8dcd83dfb6275b55ae8e495f6924dcfc52024a52f5639446a00de846ec7c7b9

HTTP Headers

GET /wp-content/themes/vugla/css/elastislide.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:21 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 674
content-type: text/css
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_320.css

192.185.106.252

200 OK

2.4 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_320.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2413 bytes)
Hash
cc437b9ea4ed072bf7636ec9013f026d
df8db436e5193d474b97364dc0cd532a9b390fe5
4e92c5bc2c3f90209e1bec52f50461d8c04d82a539296918f0db0c61af63aab2

HTTP Headers

GET /wp-content/themes/vugla/css/style_320.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:29 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 2413
content-type: text/css
date: Tue, 05 Dec 2023 17:22:41 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700

173.194.222.95

200 OK

3.2 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700
IP
173.194.222.95:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
3.2 kB (3236 bytes)
Hash
6f8f8df24f902f291ae6540f4cd6e6a8
fa2b23339c144e8a5a5bd766bba7f1c3f63127d0
67ff76e2e8c068874e0c060b6956f16bf47931409fd81dcc1111d50a7f2168d2

HTTP Headers

GET /css?family=Open+Sans:400italic,700italic,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 17:22:40 GMT
date: Tue, 05 Dec 2023 17:22:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_1024.css

192.185.106.252

200 OK

2.3 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_1024.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
2.3 kB (2267 bytes)
Hash
7f4d3aa769cc8bb0e3c77745ff5c9d64
2da3458d48663a397a5a42c3bb52777bc5889dc0
7a6c4ca634ef663c6a3887df843fc04c40632ff46c53eb9f7d35bfcde21453b4

HTTP Headers

GET /wp-content/themes/vugla/css/style_1024.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:28 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 2267
content-type: text/css
date: Tue, 05 Dec 2023 17:22:41 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/tabber.css

192.185.106.252

200 OK

1.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/tabber.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
1.7 kB (1710 bytes)
Hash
a3e36a4db7b488bd984dd17c6e17cf63
33e7b11f7e1f149f954b6d938db9e36599816e8a
3609900b90f9835e1525c38bb6b1bcbffea0a14894799e54a07c2a9df09cb03d

HTTP Headers

GET /wp-content/themes/vugla/css/tabber.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 1710
content-type: text/css
date: Tue, 05 Dec 2023 17:22:41 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/wpp.css

192.185.106.252

200 OK

357 B

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/wpp.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with CRLF line terminators
Size
357 B (357 bytes)
Hash
6b44660f121f565e2aab91b7b321ff28
62628718b7edeaccc74d1943d36bc1e0c9d16512
467aa063b813fd2fc1b3ebabc45d6e840d807dad90c169f0ee12f93bcf667851

HTTP Headers

GET /wp-content/themes/vugla/css/wpp.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 357
content-type: text/css
date: Tue, 05 Dec 2023 17:22:41 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_768.css

192.185.106.252

200 OK

2.5 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_768.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (408), with CRLF line terminators
Size
2.5 kB (2538 bytes)
Hash
14b717ed0c77c605f84b5b9a6b9892e9
5723bca38e18b8155b26f923590a05657911a377
6f37f5624b7bc60317a9c37a473fdf7dc34474d5f52cf169a7d52b35ca1dc0dd

HTTP Headers

GET /wp-content/themes/vugla/css/style_768.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:32 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 2538
content-type: text/css
date: Tue, 05 Dec 2023 17:22:41 GMT
server: Apache
X-Firefox-Spdy: h2

pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js

192.243.59.20

200 OK

9.3 kB

URL GET HTTP/1.1
pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectalternativecpmgate.com
FingerprintC9:1F:74:2C:C9:F2:3A:E6:2D:4F:6C:DC:DD:18:6E:93:10:75:9E:24
ValidityFri, 20 Oct 2023 06:02:37 GMT - Thu, 18 Jan 2024 06:02:36 GMT

File type
Unicode text, UTF-8 text, with very long lines (25103), with no line terminators
Size
9.3 kB (9275 bytes)
Hash
e6c7ad7d254bb6f8b3f067f4c623769b
061092d0cc1c3f1eafa56fe85efbfee2260fc945
2337884cac3b9111d226fb23241fcab427771b7c218a79916a245a17ba7bc931

HTTP Headers

GET /c9123167a2366d360cd4d80dad2ac358/invoke.js HTTP/1.1
Host: pl16411290.alternativecpmgate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:22:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 240cdd2bf00952f676f23b7fa1d67244
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.kursnalista.co/banners/banners.js

192.185.106.47

200 OK

1.3 kB

URL GET HTTP/2
www.kursnalista.co/banners/banners.js
IP
192.185.106.47:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.kursnalista.co
Fingerprint1C:D4:9B:DE:4F:51:D3:F0:32:B2:6C:A1:1C:03:E2:3E:18:FC:D4:2A
ValidityMon, 20 Nov 2023 10:01:16 GMT - Sun, 18 Feb 2024 10:01:15 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (394), with CRLF line terminators
Size
1.3 kB (1261 bytes)
Hash
0fa58c243ecc9c6ff829da27563c78c4
771e757dcaddc90a127b557e6a8a69b9dfe4767d
4631955f687225007a1227be7e662f1f45798c13a573f70670e748ff50aa194b

HTTP Headers

GET /banners/banners.js HTTP/1.1
Host: www.kursnalista.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sun, 10 Jul 2022 10:44:43 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1261
content-type: application/javascript
date: Tue, 05 Dec 2023 17:22:41 GMT
server: Apache
X-Firefox-Spdy: h2

pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js

192.243.59.12

200 OK

15 kB

URL GET HTTP/1.1
pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectpasstechusa.com
FingerprintF4:5F:CD:11:B9:E4:E0:B6:E3:01:2A:A2:FB:0E:11:26:44:B4:D0:9D
ValidityFri, 13 Oct 2023 07:12:41 GMT - Thu, 11 Jan 2024 07:12:40 GMT

File type
ASCII text, with very long lines (42736), with no line terminators
Size
15 kB (15416 bytes)
Hash
a76387e9d9ca44cc42ee1885eddb0c92
6abde7517c84afef52806025e94dfa85892d33ee
298f027f2e8d6ff4e944620617286ba5509eff28310226faddfb66353fa8b36f

HTTP Headers

GET /d1/37/02/d137022925bcc2a680f8a4476ff94144.js HTTP/1.1
Host: pl15560907.passtechusa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:22:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a6b10b55745b8f84f55455ddedac9033
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Size
48 kB (48432 bytes)
Hash
e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:00:58 GMT
expires: Fri, 29 Nov 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 476503
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2

216.58.207.227

200 OK

35 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 35120, version 1.0\012- data
Size
35 kB (35120 bytes)
Hash
dd986ff1050050613be051863773d677
51a12487fd51cc02ca54a984f82d63318807ca2e
d9784dbf11886ea032ffbd00f499d333519babe001eacc19df7ab89de17bec47

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:36:49 GMT
expires: Thu, 28 Nov 2024 21:36:49 GMT
cache-control: public, max-age=31536000
age: 503152
last-modified: Thu, 14 Sep 2023 01:03:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2013/11/bckg-vugla-dark.jpg

192.185.106.252

200 OK

267 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2013/11/bckg-vugla-dark.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2000x1200, components 3\012- data
Size
267 kB (267247 bytes)
Hash
11e97d76a4b329319978b9da6f46b5b0
ae03d14a5b568ed59c1772ee2065e160e93428ae
9fbe33f0e52a532495bb5d56584e250e0d3cf1acc5a04acb7cbb2e39bb6c6a42

HTTP Headers

GET /wp-content/uploads/2013/11/bckg-vugla-dark.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 20 Nov 2013 16:40:33 GMT
accept-ranges: bytes
content-length: 267247
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:41 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:41 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/preloader.gif

192.185.106.252

200 OK

1.7 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/preloader.gif
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
1.7 kB (1737 bytes)
Hash
dd6b7b0bf5c3af22499abc0a9ee1e1b2
e8c0018145d616fac4deb460d9c1d9c9dd4d3302
0eddaab3b8cb0b15d81d62e5ae5960329c3e576ea78dc321b20734ab20271847

HTTP Headers

GET /wp-content/themes/vugla/images/preloader.gif HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:08 GMT
accept-ranges: bytes
content-length: 1737
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:41 GMT
referrer-policy: 
pragma: public
content-type: image/gif
date: Tue, 05 Dec 2023 17:22:41 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/search-arrow.png

192.185.106.252

200 OK

3.1 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/search-arrow.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 75 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
3.1 kB (3075 bytes)
Hash
3f8933cdf4d27e317eb59959257f8c7a
b16e414fcb1561603cbf4ac404ec8b6fae1563ff
167925a8f225d7fc340317265409496b2d90e4313bd7d70bca4262bb1477eaf0

HTTP Headers

GET /wp-content/themes/vugla/images/search-arrow.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:13 GMT
accept-ranges: bytes
content-length: 3075
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:41 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:41 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html

192.185.106.252

200 OK

0 B

URL User Request GET HTTP/2
www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
x-pingback: https://www.vugla.com/xmlrpc.php
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/", <https://www.vugla.com/wp-json/wp/v2/posts/575285>; rel="alternate"; type="application/json", <https://www.vugla.com/?p=575285>; rel=shortlink
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=10800
expires: Tue, 05 Dec 2023 20:22:41 GMT
vary: User-Agent
referrer-policy: 
content-type: text/html; charset=UTF-8
date: Tue, 05 Dec 2023 17:22:41 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Size
48 kB (48432 bytes)
Hash
e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:00:58 GMT
expires: Fri, 29 Nov 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 476503
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

216.58.207.227

200 OK

50 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50368, version 1.0\012- data
Size
50 kB (50368 bytes)
Hash
4facfd6ff39e147b7e39c4b1abe4117d
0f7c0d978c209d21eb3f55950fc43e77c196ec3b
a246c4de8a0f1f1fdb6ee52565018dc341063aa9efe8481034bc3ef7d697e334

HTTP Headers

GET /s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:48:09 GMT
expires: Fri, 29 Nov 2024 04:48:09 GMT
cache-control: public, max-age=31536000
age: 477272
last-modified: Thu, 14 Sep 2023 01:04:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html

192.185.106.252

200 OK

0 B

URL User Request GET HTTP/2
www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
x-pingback: https://www.vugla.com/xmlrpc.php
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/", <https://www.vugla.com/wp-json/wp/v2/posts/575285>; rel="alternate"; type="application/json", <https://www.vugla.com/?p=575285>; rel=shortlink
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=10800
expires: Tue, 05 Dec 2023 20:22:41 GMT
vary: User-Agent
referrer-policy: 
content-type: text/html; charset=UTF-8
date: Tue, 05 Dec 2023 17:22:41 GMT
server: Apache
X-Firefox-Spdy: h2

www.variouscreativeformats.com/c3b6bab9a3e6c622d733121998e0014d/invoke.js

192.243.61.227

200 OK

11 kB

URL GET HTTP/1.1
www.variouscreativeformats.com/c3b6bab9a3e6c622d733121998e0014d/invoke.js
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.variouscreativeformats.com
Fingerprint8B:21:A3:61:01:C7:2D:29:AF:11:C7:A7:A5:5E:E5:FD:AF:0E:05:43
ValidityMon, 27 Nov 2023 07:10:34 GMT - Sun, 25 Feb 2024 07:10:33 GMT

File type
exported SGML document, ASCII text, with very long lines (29643), with no line terminators
Size
11 kB (10916 bytes)
Hash
223406d9dbf6d31ee7d9236d1c95ea29
8a45024df7b5013212b1fd369c5670655bd55b66
8eb1cd23b38e67fb1ec812debb06ff9f68891aeecaf2edeba8c0a73081c27ed0

HTTP Headers

GET /c3b6bab9a3e6c622d733121998e0014d/invoke.js HTTP/1.1
Host: www.variouscreativeformats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 17:22:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1e2b1f7fb6ad43e1a866a508e2cc894f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2

216.58.207.227

200 OK

35 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 35120, version 1.0\012- data
Size
35 kB (35120 bytes)
Hash
dd986ff1050050613be051863773d677
51a12487fd51cc02ca54a984f82d63318807ca2e
d9784dbf11886ea032ffbd00f499d333519babe001eacc19df7ab89de17bec47

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:36:49 GMT
expires: Thu, 28 Nov 2024 21:36:49 GMT
cache-control: public, max-age=31536000
age: 503153
last-modified: Thu, 14 Sep 2023 01:03:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
1bfba60a71cfc2840a9d32837d6e0007
a0b0d4b59cdb00e6b087cad1a6c4b08aa7459fc9
7e592639e95cbc324b3017f1a6aa171657ee61fa9e4eea956c1b719cebd1f44d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 05 Dec 2023 17:22:42 GMT
Last-Modified: Tue, 05 Dec 2023 16:29:46 GMT
Server: ECAcc (ska/F6BD)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: A4TVJQkSQFff7D5w6gX9QyaQfSK3SBOwvvV5aFrb0l_efM2FNBq3rg==
Age: 3176

fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

216.58.207.227

200 OK

50 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50368, version 1.0\012- data
Size
50 kB (50368 bytes)
Hash
4facfd6ff39e147b7e39c4b1abe4117d
0f7c0d978c209d21eb3f55950fc43e77c196ec3b
a246c4de8a0f1f1fdb6ee52565018dc341063aa9efe8481034bc3ef7d697e334

HTTP Headers

GET /s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:48:09 GMT
expires: Fri, 29 Nov 2024 04:48:09 GMT
cache-control: public, max-age=31536000
age: 477273
last-modified: Thu, 14 Sep 2023 01:04:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

my.rtmark.net/gid.js

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
2cc91043a60e36c5b491b858a59d25d8
1135cfa51c701c0e021a7168c3e2fd5c8c509bd8
ebcea0d52294cb0bf0e4f021b1b8e2843eb965217972f5a0328b696df776db79

HTTP Headers

GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:42 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=cae010572dbc48c383b304da9d0f8f5e; expires=Wed, 04 Dec 2024 17:22:42 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

18.184.210.76

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.184.210.76:443
ASN
#16509 AMAZON-02

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
d0aec5859bd8526e085a41030c68f0d4
76e1daa89e067b8997726f5c35b591db869a6244
e2016cde6efa1b60eef495f52d7f49d568df9adede8e5bedcf45fa92e55139dd

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:42 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.vugla.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5:3:1; expires=Fri, 02 Dec 2033 17:22:42 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

tzegilo.com/stattag.js

104.21.11.245

200 OK

7.4 kB

URL GET HTTP/2
tzegilo.com/stattag.js
IP
104.21.11.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subjecttzegilo.com
FingerprintF2:F3:F8:C4:40:73:B6:FE:DD:58:70:D7:13:25:D2:51:21:88:50:0B
ValiditySun, 03 Dec 2023 17:24:18 GMT - Sat, 02 Mar 2024 17:24:17 GMT

File type
ASCII text, with very long lines (18369)
Size
7.4 kB (7371 bytes)
Hash
89e89aea544ea2785d49cc4cd9cf26f6
7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b
86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:41 GMT
content-type: application/javascript
last-modified: Thu, 07 Sep 2023 08:19:52 GMT
etag: W/"64f987a8-4a4b"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 4354
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EOAvdt8ADLRNBcf3UEH9NiBYRnFeuaKVHIRsM4Bqnw8N9cGDs2K4zCIapdRpxIZ%2FEBGFLxfPXeYlCdUAcg0AqjGPvOpgBiUZaXX%2FbRNwcdZa8tZvqqi19n8vvW7xOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830df903ca8456c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3

192.185.106.252

409 Conflict

83 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701796967.1.0.1701796967.60.0.0; _ga=GA1.1.837343671.1701796968
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 409 Conflict
date: Tue, 05 Dec 2023 17:22:42 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

18.184.210.76

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.184.210.76:443
ASN
#16509 AMAZON-02

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
d8d5a105dbed977c89cb196b5c740b48
5ca6cab14f35524cb108d1932b6904ee00b45d45
7f9d74b388e92607e4252daa872038c1b1ec08a644d95e27d4c5b1e68c01c857

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:42 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.vugla.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=3b778da5-642c-45a9-96ac-639797e83093:1:1; expires=Fri, 02 Dec 2033 17:22:42 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-7NCJ73THPT&gtm=45je3bt0v879882835&_p=1701796967258&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=837343671.1701796968&ul=en-us&sr=1280x1024&_s=1&sid=1701796967&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&dt=%C5%A0ampion%20ponovo%20posustao%3A%20Nikola%20Joki%C4%87%20nezadr%C5%BEiv%20ali%20Denver%20upisuje%20novi%20poraz%20-%20Vugla&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3209

216.239.32.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-7NCJ73THPT&gtm=45je3bt0v879882835&_p=1701796967258&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=837343671.1701796968&ul=en-us&sr=1280x1024&_s=1&sid=1701796967&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&dt=%C5%A0ampion%20ponovo%20posustao%3A%20Nikola%20Joki%C4%87%20nezadr%C5%BEiv%20ali%20Denver%20upisuje%20novi%20poraz%20-%20Vugla&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3209
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-7NCJ73THPT&gtm=45je3bt0v879882835&_p=1701796967258&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=837343671.1701796968&ul=en-us&sr=1280x1024&_s=1&sid=1701796967&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&dt=%C5%A0ampion%20ponovo%20posustao%3A%20Nikola%20Joki%C4%87%20nezadr%C5%BEiv%20ali%20Denver%20upisuje%20novi%20poraz%20-%20Vugla&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3209 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.vugla.com
date: Tue, 05 Dec 2023 17:22:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/top-arrow.png

192.185.106.252

200 OK

305 B

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/top-arrow.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 50 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
305 B (305 bytes)
Hash
1fe20be2c98304e84623d10905435835
7ba0264f96984d92cfe0750c802f9af1ee7cb88b
1c3cbd61a972428028066c1e9abcfa7c0ef37d3b1de39d7b09455177a94eec52

HTTP Headers

GET /wp-content/themes/vugla/images/top-arrow.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: _ga_7NCJ73THPT=GS1.1.1701796967.1.0.1701796967.60.0.0; _ga=GA1.1.837343671.1701796968
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:25 GMT
accept-ranges: bytes
content-length: 305
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:42 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:42 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/images/small-social-sprite.png

192.185.106.252

200 OK

3.8 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/small-social-sprite.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 272 x 95, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3812 bytes)
Hash
1aabf6dabc51ca6168aa98fbecbf79e2
0e4cb499aff16fedb2097658da7d2baa1bdafaa8
09ac67d0b81afe77f52b59ee9abc68ba2dd7cf0ebbc85703c75a76c2586e93aa

HTTP Headers

GET /wp-content/themes/vugla/images/small-social-sprite.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: _ga_7NCJ73THPT=GS1.1.1701796967.1.0.1701796967.60.0.0; _ga=GA1.1.837343671.1701796968
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:16 GMT
accept-ranges: bytes
content-length: 3812
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:42 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:42 GMT
server: Apache
X-Firefox-Spdy: h2

boltepse.com/zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0&sw=3.1.471

139.45.197.250

200 OK

972 B

URL GET HTTP/2
boltepse.com/zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0&sw=3.1.471
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectboltepse.com
FingerprintB1:B8:AE:D4:66:0B:28:B4:D0:38:F5:70:C2:1E:12:60:41:85:FC:D7
ValidityWed, 04 Oct 2023 05:53:01 GMT - Tue, 02 Jan 2024 05:53:00 GMT

File type
JSON data\012- , ASCII text, with very long lines (971)
Size
972 B (972 bytes)
Hash
64f047fe127c40083700b04d3811ca27
8f6e71715f3ae8766c33ae08d590fdc202bd865d
0dd4bfd4e574ecf2df30bcd49a6afbc84ffe9a14227f17502561dfca63a51ac7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0&sw=3.1.471 HTTP/1.1
Host: boltepse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:42 GMT
content-type: application/json; charset=utf-8
content-length: 972
x-trace-id: 179a2eb941b0747578b5eaf71cfe1130
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

boltepse.com/pfe/current/universal.min.js?v=3.1.471

139.45.197.250

200 OK

43 kB

URL GET HTTP/2
boltepse.com/pfe/current/universal.min.js?v=3.1.471
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectboltepse.com
FingerprintB1:B8:AE:D4:66:0B:28:B4:D0:38:F5:70:C2:1E:12:60:41:85:FC:D7
ValidityWed, 04 Oct 2023 05:53:01 GMT - Tue, 02 Jan 2024 05:53:00 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
43 kB (42886 bytes)
Hash
033ef9d82a95358156eeee062e1655ac
9af0cc53cab9ab474716abc1bf234717c513ea71
5c5d7a8e30e3710027e3a29c9886e241a70fc7cef54aaa00387b4812208a55c9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pfe/current/universal.min.js?v=3.1.471 HTTP/1.1
Host: boltepse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:42 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 13:38:02 GMT
etag: W/"65649bba-1572c"
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/halibarton-srusio-boston-pelikani-na-krilima-ingrama-video-290x166.jpg

192.185.106.252

200 OK

14 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/halibarton-srusio-boston-pelikani-na-krilima-ingrama-video-290x166.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 290x166, components 3\012- data
Size
14 kB (13591 bytes)
Hash
a40b7cb0498b2e2402203eae3f50fe10
d84c0b9b291e7376df0bea9d17bf72709223aa0a
f26ecab3fb5a8479c51a886f36b604e96515931a875af9fc26f8bce4cc043e6b

HTTP Headers

GET /wp-content/uploads/2023/12/halibarton-srusio-boston-pelikani-na-krilima-ingrama-video-290x166.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701796967.1.0.1701796967.60.0.0; _ga=GA1.1.837343671.1701796968
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 05 Dec 2023 10:54:03 GMT
accept-ranges: bytes
content-length: 13591
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:42 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:42 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/nikola-jokic-najbolji-igrac-zapadne-konferencije-nba-u-novembru-290x166.jpg

192.185.106.252

200 OK

42 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/nikola-jokic-najbolji-igrac-zapadne-konferencije-nba-u-novembru-290x166.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=21, height=3744, bps=266, PhotometricIntepretation=RGB, description=Denver Nuggets center Nikola Jokic looks to pass the ball after pulling in a rebound against the Brooklyn Nets in the first hal, manufacturer=SONY, model=ILCE-1, orientation=upper-left, width=5616], baseline, precision 8, 290x166, components 3\012- data
Size
42 kB (41616 bytes)
Hash
cce5e9104c23801976a73ee2557132da
b2bbe6852daf04465ea6ed88b778aac3746a567c
c67eec6e929b721f07498feab4d89795d38684b9d53dd73b98ddee3e2352c7b3

HTTP Headers

GET /wp-content/uploads/2023/12/nikola-jokic-najbolji-igrac-zapadne-konferencije-nba-u-novembru-290x166.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701796967.1.0.1701796967.60.0.0; _ga=GA1.1.837343671.1701796968
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 05 Dec 2023 10:18:18 GMT
accept-ranges: bytes
content-length: 41616
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:42 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:42 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/uhapsen-spijun-u-bosilegradu-odavao-vojne-podatke-bugarskoj-290x166.jpg

192.185.106.252

200 OK

14 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/uhapsen-spijun-u-bosilegradu-odavao-vojne-podatke-bugarskoj-290x166.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 290x166, components 3\012- data
Size
14 kB (13975 bytes)
Hash
ac460dcf4818d3773ae306236d0b56c8
e2cd3fadc1fd012e3a44d2533d92222761d0ceec
590be4fcc9a264fb46e0583ebd07c981171b36c955a6bb5642087ac7ab2a46e3

HTTP Headers

GET /wp-content/uploads/2023/12/uhapsen-spijun-u-bosilegradu-odavao-vojne-podatke-bugarskoj-290x166.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701796967.1.0.1701796967.60.0.0; _ga=GA1.1.837343671.1701796968
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 05 Dec 2023 07:54:06 GMT
accept-ranges: bytes
content-length: 13975
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:42 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:42 GMT
server: Apache
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3

192.185.106.252

409 Conflict

83 B

URL GET HTTP/2
www.vugla.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701796967.1.0.1701796967.60.0.0; _ga=GA1.1.837343671.1701796968
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 409 Conflict
date: Tue, 05 Dec 2023 17:22:42 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

eehuzaih.com/500/5005565?excludes=&oaid=cae010572dbc48c383b304da9d0f8f5e&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0

139.45.197.237

200 OK

0 B

URL GET HTTP/2
eehuzaih.com/500/5005565?excludes=&oaid=cae010572dbc48c383b304da9d0f8f5e&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
139.45.197.237:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /500/5005565?excludes=&oaid=cae010572dbc48c383b304da9d0f8f5e&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:42 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

www.kursnalista.co/banners/it-servis/it-servis-300x600-1.jpg

192.185.106.47

200 OK

122 kB

URL GET HTTP/2
www.kursnalista.co/banners/it-servis/it-servis-300x600-1.jpg
IP
192.185.106.47:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.kursnalista.co
Fingerprint1C:D4:9B:DE:4F:51:D3:F0:32:B2:6C:A1:1C:03:E2:3E:18:FC:D4:2A
ValidityMon, 20 Nov 2023 10:01:16 GMT - Sun, 18 Feb 2024 10:01:15 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x600, components 3\012- data
Size
122 kB (122035 bytes)
Hash
40cc463f1dec524be975d7174c0ba28f
9ad04ae4c5eb015e25acb35cd42443f005922c3a
80468229399c3c652ad95b4d5c818ac7a6464e43fa340cb847cb97fbb6f459e8

HTTP Headers

GET /banners/it-servis/it-servis-300x600-1.jpg HTTP/1.1
Host: www.kursnalista.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 10 Jul 2022 10:44:27 GMT
accept-ranges: bytes
content-length: 122035
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:42 GMT
server: Apache
X-Firefox-Spdy: h2

tharbadir.com/9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&oaid=cae010572dbc48c383b304da9d0f8f5e

139.45.197.238

204 No Content

0 B

URL OPTIONS HTTP/2
tharbadir.com/9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&oaid=cae010572dbc48c383b304da9d0f8f5e
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&oaid=cae010572dbc48c383b304da9d0f8f5e HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Tue, 05 Dec 2023 17:22:42 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__

142.250.74.78

226 B

URL
apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP
142.250.74.78:0
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint06:87:C0:63:02:21:98:02:BD:FC:A0:11:93:E9:3A:9F:51:21:06:D8
ValidityMon, 23 Oct 2023 11:25:10 GMT - Mon, 15 Jan 2024 11:25:09 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
226 B (226 bytes)
Hash
4df07581948280a6e769a24c5d99d775
843a2c95362347eb8894a6acb607f139be65ded4
3561b93a48d81fac116ccd6e60163bd382abb1d594c81240f5718feb1f197f73

HTTP Headers

GET /u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 301 Moved Permanently
location: http://developers.google.com/
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 05 Dec 2023 17:22:42 GMT
expires: Tue, 05 Dec 2023 17:52:42 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

shineinternalindolent.com/ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3

173.233.137.36

200 OK

13 kB

URL GET HTTP/1.1
shineinternalindolent.com/ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectshineinternalindolent.com
Fingerprint6D:2F:FA:76:0F:F3:87:81:20:04:11:2D:33:E8:C3:A4:9F:8E:07:5D
ValidityTue, 28 Nov 2023 08:00:05 GMT - Mon, 26 Feb 2024 08:00:04 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (12686), with no line terminators
Size
13 kB (12687 bytes)
Hash
70325e0a6de75e6332a99399d2c5edf7
136baf65eb2d2183d3b7ee8f43b8719a48d4553c
70cfd3d3a6dd9c4729f934b0ccdbb549a5d1d5f69458f76f1abeb2b802e9b682

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3 HTTP/1.1
Host: shineinternalindolent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 17:22:42 GMT
Content-Type: application/json
Content-Length: 12687
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16310791; expires=Wed, 06 Dec 2023 17:22:42 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 06 Dec 2023 17:22:42 GMT; secure; SameSite=None
uncs=1; expires=Wed, 06 Dec 2023 17:22:42 GMT; secure; SameSite=None
pdhtkv49=true; expires=Wed, 06 Dec 2023 17:22:42 GMT; secure; SameSite=None
uncs49=1; expires=Wed, 06 Dec 2023 17:22:42 GMT; secure; SameSite=None
nlecc9123167a2366d360cd4d80dad2ac358=[3637745,2229213,2229212]; expires=Tue, 05 Dec 2023 17:22:47 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 52b35e9f893f2b0e13fa5aa42c64b1e7
Strict-Transport-Security: max-age=0; includeSubdomains

www.vugla.com/wp-content/themes/vugla/images/pattern-filter.png

192.185.106.252

200 OK

2.8 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/images/pattern-filter.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2804 bytes)
Hash
6d6f2d483736ba6f70063740ddf2841b
3b9dee704da0bf19a56b46584a55226a137504a9
dca9f66f2ff2d735f415080def56d34e60cf13cc65668bf9b422103cd3bee2a5

HTTP Headers

GET /wp-content/themes/vugla/images/pattern-filter.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: _ga_7NCJ73THPT=GS1.1.1701796967.1.0.1701796967.60.0.0; _ga=GA1.1.837343671.1701796968; prefetchAd_1316441=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:06 GMT
accept-ranges: bytes
content-length: 2804
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:42 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:42 GMT
server: Apache
X-Firefox-Spdy: h2

www.profitabledisplaycontent.com/watch.666584304527.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22%C5%A1ampion%22%2C%22ponovo%22%2C%22posustao%22%2C%22nikola%22%2C%22joki%C4%87%22%2C%22nezadr%C5%BEiv%22%2C%22ali%22%2C%22denver%22%2C%22upisuje%22%2C%22novi%22%2C%22poraz%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&tz=0&dev=e&res=14.3095&uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5%3A3%3A1

192.243.59.20

307 Temporary Redirect

0 B

URL GET HTTP/1.1
www.profitabledisplaycontent.com/watch.666584304527.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22%C5%A1ampion%22%2C%22ponovo%22%2C%22posustao%22%2C%22nikola%22%2C%22joki%C4%87%22%2C%22nezadr%C5%BEiv%22%2C%22ali%22%2C%22denver%22%2C%22upisuje%22%2C%22novi%22%2C%22poraz%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&tz=0&dev=e&res=14.3095&uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5%3A3%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
Fingerprint5B:BD:54:33:2B:86:AB:1A:82:90:2C:D6:FE:04:C7:39:78:8E:80:0E
ValidityFri, 01 Dec 2023 06:55:29 GMT - Thu, 29 Feb 2024 06:55:28 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.666584304527.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22%C5%A1ampion%22%2C%22ponovo%22%2C%22posustao%22%2C%22nikola%22%2C%22joki%C4%87%22%2C%22nezadr%C5%BEiv%22%2C%22ali%22%2C%22denver%22%2C%22upisuje%22%2C%22novi%22%2C%22poraz%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&tz=0&dev=e&res=14.3095&uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5%3A3%3A1 HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:22:42 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Location: https://www.profitabledisplaycontent.com/watch.666584304527.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22%C5%A1ampion%22%2C%22ponovo%22%2C%22posustao%22%2C%22nikola%22%2C%22joki%C4%87%22%2C%22nezadr%C5%BEiv%22%2C%22ali%22%2C%22denver%22%2C%22upisuje%22%2C%22novi%22%2C%22poraz%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&tz=0&dev=e&res=14.3095&uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5%3A3%3A1&shu=02256d3cdd4442a6846dd0484b9c7abd121b1f44e2655f083a3bdb7237e64b36e06aba55032567627a24bb0dd4250693dc8992130bf76560674fbb658b0a16eb66b8326f8b0b29c84dd2a0d2d3dde9c833a1f6&pst=1701797022&rmtc=t
Set-Cookie: u_pl=14611544; expires=Wed, 06 Dec 2023 17:22:42 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.sWqB9O8xDHQPDiz_1XYv2wBF61Fp6qEonnDNLTYZFZo; expires=Tue, 05 Dec 2023 17:23:42 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4c270ee2ff9fb4bb7e9c150cf9124646
Strict-Transport-Security: max-age=0; includeSubdomains

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs

142.250.74.78

200 OK

56 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (1505)
Size
56 kB (55751 bytes)
Hash
4a256001cbbe7af37c71afbd89ba1656
4760f1dee9f6ff6db6f33eeee3dc7ec76155f7dd
5b683a525a2a814b27fc09152ee8030b6d542cd24a61de371bbe5e8815e9d0b1

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 55751
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 11:31:07 GMT
expires: Wed, 04 Dec 2024 11:31:07 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 21096
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_1?le=scs

142.250.74.78

200 OK

34 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_1?le=scs
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (1586)
Size
34 kB (34324 bytes)
Hash
e0fbc84518a1bab9c8bad9f76463d338
ecce9ef563bc5170ebcfcfd35e0dd5b17bc0b874
d99dd3891be0d37edbcc13fdaad780f164a758be5d0c8a71f66596e6cda04f70

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_1?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 34324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 19:46:10 GMT
expires: Tue, 03 Dec 2024 19:46:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 77793
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

192.243.59.20

200 OK

2.1 kB

URL GET HTTP/1.1
www.profitabledisplaycontent.com/watch.666584304527.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22%C5%A1ampion%22%2C%22ponovo%22%2C%22posustao%22%2C%22nikola%22%2C%22joki%C4%87%22%2C%22nezadr%C5%BEiv%22%2C%22ali%22%2C%22denver%22%2C%22upisuje%22%2C%22novi%22%2C%22poraz%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&tz=0&dev=e&res=14.3095&uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5%3A3%3A1&shu=02256d3cdd4442a6846dd0484b9c7abd121b1f44e2655f083a3bdb7237e64b36e06aba55032567627a24bb0dd4250693dc8992130bf76560674fbb658b0a16eb66b8326f8b0b29c84dd2a0d2d3dde9c833a1f6&pst=1701797022&rmtc=t
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
Fingerprint5B:BD:54:33:2B:86:AB:1A:82:90:2C:D6:FE:04:C7:39:78:8E:80:0E
ValidityFri, 01 Dec 2023 06:55:29 GMT - Thu, 29 Feb 2024 06:55:28 GMT

File type
HTML document text\012- HTML document, ASCII text, with very long lines (2642)
Size
2.1 kB (2090 bytes)
Hash
f17f33d1366404d277929ce3a58a3aba
8334cf523157a6622f2b315589ca0de27bc3af2c
f9e604385c3336c9ac0f809492964c6541bbca4faf767569ab8b4360f73fd3d1

HTTP Headers

GET /watch.666584304527.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22%C5%A1ampion%22%2C%22ponovo%22%2C%22posustao%22%2C%22nikola%22%2C%22joki%C4%87%22%2C%22nezadr%C5%BEiv%22%2C%22ali%22%2C%22denver%22%2C%22upisuje%22%2C%22novi%22%2C%22poraz%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&tz=0&dev=e&res=14.3095&uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5%3A3%3A1&shu=02256d3cdd4442a6846dd0484b9c7abd121b1f44e2655f083a3bdb7237e64b36e06aba55032567627a24bb0dd4250693dc8992130bf76560674fbb658b0a16eb66b8326f8b0b29c84dd2a0d2d3dde9c833a1f6&pst=1701797022&rmtc=t HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
Referer: https://www.vugla.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=14611544; ain=eyJhbGciOiJIUzI1NiJ9.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.sWqB9O8xDHQPDiz_1XYv2wBF61Fp6qEonnDNLTYZFZo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:22:43 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5:3:1; expires=Tue, 12 Dec 2023 17:22:43 GMT; secure; SameSite=None
iprca0f3f74dbef047ca09ad417775aeb81c=3569807; expires=Tue, 05 Dec 2023 21:22:43 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 06 Dec 2023 17:22:43 GMT; secure; SameSite=None
uncs=1; expires=Wed, 06 Dec 2023 17:22:43 GMT; secure; SameSite=None
pdhtkv27=true; expires=Wed, 06 Dec 2023 17:22:43 GMT; secure; SameSite=None
uncs27=1; expires=Wed, 06 Dec 2023 17:22:43 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f231103acfad68449ffed25839e19814
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

groorsoa.net/?rb=P55wkgGhbvyNOOhm3uqajlXxh1XwPJplbKxRynoMemzchp4IcEATKwnooE7AiXlb0ELMDtngU439teu6iinb3_0_cYIS6oyzpqAEg_msuHrgv_K1bSIMkZigz6ec1knFjru4N2dqv7SZwmaJMotLIv79VQlhhfDg2oQPlcgT1C_0eYo0s27xjYWDzoHCMtvr1HiLeY9IIF67-1RAmXF1yIDbsWIjpmNIxViyLmcMap4%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.640.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=4&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.640.0&bs=8be903b4-5f8d-4e2d-8679-4fc6ab339092&userId=cae010572dbc48c383b304da9d0f8f5e&m=link

139.45.197.245

200 OK

4.5 kB

URL GET HTTP/2
groorsoa.net/?rb=P55wkgGhbvyNOOhm3uqajlXxh1XwPJplbKxRynoMemzchp4IcEATKwnooE7AiXlb0ELMDtngU439teu6iinb3_0_cYIS6oyzpqAEg_msuHrgv_K1bSIMkZigz6ec1knFjru4N2dqv7SZwmaJMotLIv79VQlhhfDg2oQPlcgT1C_0eYo0s27xjYWDzoHCMtvr1HiLeY9IIF67-1RAmXF1yIDbsWIjpmNIxViyLmcMap4%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.640.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=4&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.640.0&bs=8be903b4-5f8d-4e2d-8679-4fc6ab339092&userId=cae010572dbc48c383b304da9d0f8f5e&m=link
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectgroorsoa.net
FingerprintD7:6E:83:AB:7A:9A:E5:7C:B8:7B:8D:12:E4:FD:B6:E5:71:49:D0:F8
ValidityMon, 23 Oct 2023 16:34:15 GMT - Sun, 21 Jan 2024 16:34:14 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
4.5 kB (4543 bytes)
Hash
59f77100965f3bd1ace938595b871ced
791696cdbfff4d5085f8b77b7d29d4c675fd8b37
7ff994c62a0e82230bd230c6b9d176c7c9df981e52280f16bfef2488e4e0add9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=P55wkgGhbvyNOOhm3uqajlXxh1XwPJplbKxRynoMemzchp4IcEATKwnooE7AiXlb0ELMDtngU439teu6iinb3_0_cYIS6oyzpqAEg_msuHrgv_K1bSIMkZigz6ec1knFjru4N2dqv7SZwmaJMotLIv79VQlhhfDg2oQPlcgT1C_0eYo0s27xjYWDzoHCMtvr1HiLeY9IIF67-1RAmXF1yIDbsWIjpmNIxViyLmcMap4%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.640.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=4&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.640.0&bs=8be903b4-5f8d-4e2d-8679-4fc6ab339092&userId=cae010572dbc48c383b304da9d0f8f5e&m=link HTTP/1.1
Host: groorsoa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Cookie: OAID=b8a9793832334c4e8a10cc94eb68fa20; oaidts=1701796960
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:42 GMT
content-type: application/json
x-trace-id: 068f1a53374f5c931169677ebc1b4bc8
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=cae010572dbc48c383b304da9d0f8f5e; expires=Wed, 04 Dec 2024 17:22:42 GMT; path=/; secure; SameSite=None
oaidts=1701796962; expires=Wed, 04 Dec 2024 17:22:42 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Tue, 12 Dec 2023 17:22:42 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

www.vugla.com/favicon.ico

192.185.106.252

302 Found

0 B

URL GET HTTP/2
www.vugla.com/favicon.ico
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701796967.1.0.1701796967.60.0.0; _ga=GA1.1.837343671.1701796968; prefetchAd_1316441=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
content-security-policy: upgrade-insecure-requests;
location: https://www.vugla.com/wp-includes/images/w-logo-blue-white-bg.png
cache-control: max-age=10800
expires: Tue, 05 Dec 2023 20:22:43 GMT
vary: User-Agent
referrer-policy: 
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 05 Dec 2023 17:22:43 GMT
server: Apache
X-Firefox-Spdy: h2

apis.google.com/js/rpc:shindig_random.js?onload=init

142.250.74.78

200 OK

7.1 kB

URL GET HTTP/3
apis.google.com/js/rpc:shindig_random.js?onload=init
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#rpctoken=671557574&forcesecure=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (2056)
Size
7.1 kB (7121 bytes)
Hash
84a5ff7df274c2aa0f5db3d0db8deb60
fe9d4e60961ea15195134fa043256585a3956984
0d3c50c1af81534edee9a430edb5d09c6068348173496657982a4546ff2ee231

HTTP Headers

GET /js/rpc:shindig_random.js?onload=init HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 7121
date: Tue, 05 Dec 2023 17:22:43 GMT
expires: Tue, 05 Dec 2023 17:22:43 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "14543ead6f363f55"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=URF4jF-_XmeEtkBukiB8NCiluCaa6mHRn-7veaL-vmFW4Rq-tsgD63TrRFPrRA9Hpryv8vgZ0Gnl2XuVJfWTco4gAXasQCtH3DJchYKiIAjeYmuqxZNaAyQggoeNnMz-SUTd67AK9QMthZCX_Hq1vI1wVGFtMa5wLevhQcsH5Go; expires=Wed, 05-Jun-2024 17:22:43 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ssl.gstatic.com/accounts/o/478691279-postmessagerelay.js

64.233.162.94

200 OK

5.2 kB

URL GET HTTP/2
ssl.gstatic.com/accounts/o/478691279-postmessagerelay.js
IP
64.233.162.94:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#rpctoken=671557574&forcesecure=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT

File type
ASCII text, with very long lines (3496)
Size
5.2 kB (5186 bytes)
Hash
92169c8a0fbf6e404267d0705cdbdf42
a5cd88b74ca5ced239cdbfb458fe25540d671f46
dba668b49a111527aac8f616b9053ea57c944e01a84ebdcd02a13da921223384

HTTP Headers

GET /accounts/o/478691279-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 5186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 20:23:54 GMT
expires: Tue, 03 Dec 2024 20:23:54 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 01 Dec 2023 23:06:41 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 75529
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.vugla.com/wp-includes/images/w-logo-blue-white-bg.png

192.185.106.252

200 OK

4.1 kB

URL GET HTTP/2
www.vugla.com/wp-includes/images/w-logo-blue-white-bg.png
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4119 bytes)
Hash
000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0

HTTP Headers

GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
DNT: 1
Connection: keep-alive
Cookie: _ga_7NCJ73THPT=GS1.1.1701796967.1.0.1701796967.60.0.0; _ga=GA1.1.837343671.1701796968; prefetchAd_1316441=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5%3A3%3A1; sb_main_d137022925bcc2a680f8a4476ff94144=1; sb_count_d137022925bcc2a680f8a4476ff94144=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
content-length: 4119
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:43 GMT
referrer-policy: 
pragma: public
content-type: image/png
date: Tue, 05 Dec 2023 17:22:43 GMT
server: Apache
X-Firefox-Spdy: h2

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs

142.250.74.78

200 OK

23 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#rpctoken=671557574&forcesecure=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (1505)
Size
23 kB (23431 bytes)
Hash
009832d077d8fc42d725066c2b774fd6
0994f8575917c4eeb66f6bdb0a65609aa8902cac
b1e012aaab4e65462b456ff6a07a6512c7b11d1682d228531d66b132dcf3d364

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 23431
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 09:31:50 GMT
expires: Wed, 04 Dec 2024 09:31:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 28253
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

my.rtmark.net/gid.js?pub=0&userId=ac4cb56a2edd4eb6bbe4d943936055d3&zoneId=1548391&checkDuplicate=true&ymid=&var=

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?pub=0&userId=ac4cb56a2edd4eb6bbe4d943936055d3&zoneId=1548391&checkDuplicate=true&ymid=&var=
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
2cc91043a60e36c5b491b858a59d25d8
1135cfa51c701c0e021a7168c3e2fd5c8c509bd8
ebcea0d52294cb0bf0e4f021b1b8e2843eb965217972f5a0328b696df776db79

HTTP Headers

GET /gid.js?pub=0&userId=ac4cb56a2edd4eb6bbe4d943936055d3&zoneId=1548391&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Cookie: ID=cae010572dbc48c383b304da9d0f8f5e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:43 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=cae010572dbc48c383b304da9d0f8f5e; expires=Wed, 04 Dec 2024 17:22:43 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__

64.233.161.84

359 B

URL
accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP
64.233.161.84:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Size
359 B (359 bytes)
Hash
21cfed07c25d238133e8dc2fcddd0080
fac04fd612519b13d160c4647b1c7617106d4b3b
356ad39d5631cb0993783b8e557923c2b26e69de899f0c3142602d23905103c0

HTTP Headers

GET /o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 05 Dec 2023 17:22:43 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-sOftE4KZGXRRi0SZHPeRjA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport
cross-origin-resource-policy: same-site
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

boltepse.com/custom

139.45.197.250

200 OK

39 B

URL OPTIONS HTTP/2
boltepse.com/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectboltepse.com
FingerprintB1:B8:AE:D4:66:0B:28:B4:D0:38:F5:70:C2:1E:12:60:41:85:FC:D7
ValidityWed, 04 Oct 2023 05:53:01 GMT - Tue, 02 Jan 2024 05:53:00 GMT

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /custom HTTP/1.1
Host: boltepse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 440
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:43 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: e46c5dec7f495458b78e615bff381356
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

friendshipmale.com/sfp.js

172.64.172.31

200 OK

28 kB

URL GET HTTP/2
friendshipmale.com/sfp.js
IP
172.64.172.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27625 bytes)
Hash
924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:42 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 4e10fd23a370c0c24aac72508d8259ad
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 05 Dec 2023 17:22:42 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j17HzGV743nPEJjgFtGMpamCNmHSrHeTokljFN%2BujszD7nxd66NR6NQ5HTOkQcaMH9gmKbUbstTrubvO0tkN%2Fl7MbRgCT9k9Bx8mmWfoUw7d1Qd3J3lg53wISlmyv%2BxKg3zzNHc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830df9098a18419d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

offerimage.com/www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg

172.67.22.216

200 OK

19 kB

URL GET HTTP/2
offerimage.com/www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg
IP
172.67.22.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Size
19 kB (19381 bytes)
Hash
71581bf2ce9a00138faf7dd80fe3e12e
56479135ed64bf23e1037067c0c87047eb8a414c
5d9f95c8c06343cc189b38268296615ed8816d8154b4b782ad0d62bedd23525e

HTTP Headers

GET /www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:43 GMT
content-type: image/jpeg
content-length: 19381
cache-control: max-age=86400
cf-bgj: h2pri
etag: "65674405-4bb5"
expires: Wed, 06 Dec 2023 14:13:35 GMT
last-modified: Wed, 29 Nov 2023 14:00:37 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 11348
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 830df90ec9a2712a-OSL
X-Firefox-Spdy: h2

tharbadir.com/11?rnd=4257599165&z=2892323&b=15540606&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=phMcFQYJBqVUYueUATnytnKYxSCrxNpV0KI-PdBeoA1gmA9n3qX3s3nOm7sIGCgnqY16lb3qeTeenpdR0kpYZ3LjaEnkkiW6xCaqIOgV73zJurN148gh-bCEO2_s-_6FzE8uKU8l4IxeCzjh2LuhNRc3QuPaOaSb4JibqDjtMmYUIEdOR_OR2jfHHC9BChPKTya51J1rPXyRCr67R0dtRrtYfv9TsRkfYh83ThAlyRIvtBBXFgPtgXbIx0gMojL4gtpgDmaLshUd_JzajrafqAcQugRsVK1DBcC-TpbTNaiyEt6s3qAU31KbkhRaGcA8dULPGerONQygsQNztwp5ttE32QbSQiqtB2DY8mfsj4NsCXkLVyCZNqgmrjSW5vgEyEtAbXqQIVJ91daNCZBW4c3I4jeRIX_eBbxKHVA5vitCqx_mBW4GfGN2UvDA0RKlbHptLXP0OAGDZZMSq0JRIFBOg6JNaWaPl4UgYdcIHcvzsEmDGkaDq-IS-D9MDtRGyILn0HXZx5ApgKpnVybhPT6n3DuBix77EhaEBJkz_vH-h6QLTDE8vn9RrWmsjgH10UErZ5k_3dw90FhSz3zNOkbU6Eyi7obDr3h9jRvMnbgCrE4tXEPucDBjZt1L71gm2cxw09wxmpIzXePtPZllBvIyhIjXwdQHucjVba_DRYFhrctJ37PAlTo_EUjOkpprvWWL0kuOnAyESfl9UmTVMd9yxgjtzAVE6Mcl_g==&ruid=ed759c25-03a5-46fc-a251-2f5e531d0110&subid=755953858162724864&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ot=931

139.45.197.238

200 OK

0 B

URL GET HTTP/2
tharbadir.com/11?rnd=4257599165&z=2892323&b=15540606&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=phMcFQYJBqVUYueUATnytnKYxSCrxNpV0KI-PdBeoA1gmA9n3qX3s3nOm7sIGCgnqY16lb3qeTeenpdR0kpYZ3LjaEnkkiW6xCaqIOgV73zJurN148gh-bCEO2_s-_6FzE8uKU8l4IxeCzjh2LuhNRc3QuPaOaSb4JibqDjtMmYUIEdOR_OR2jfHHC9BChPKTya51J1rPXyRCr67R0dtRrtYfv9TsRkfYh83ThAlyRIvtBBXFgPtgXbIx0gMojL4gtpgDmaLshUd_JzajrafqAcQugRsVK1DBcC-TpbTNaiyEt6s3qAU31KbkhRaGcA8dULPGerONQygsQNztwp5ttE32QbSQiqtB2DY8mfsj4NsCXkLVyCZNqgmrjSW5vgEyEtAbXqQIVJ91daNCZBW4c3I4jeRIX_eBbxKHVA5vitCqx_mBW4GfGN2UvDA0RKlbHptLXP0OAGDZZMSq0JRIFBOg6JNaWaPl4UgYdcIHcvzsEmDGkaDq-IS-D9MDtRGyILn0HXZx5ApgKpnVybhPT6n3DuBix77EhaEBJkz_vH-h6QLTDE8vn9RrWmsjgH10UErZ5k_3dw90FhSz3zNOkbU6Eyi7obDr3h9jRvMnbgCrE4tXEPucDBjZt1L71gm2cxw09wxmpIzXePtPZllBvIyhIjXwdQHucjVba_DRYFhrctJ37PAlTo_EUjOkpprvWWL0kuOnAyESfl9UmTVMd9yxgjtzAVE6Mcl_g==&ruid=ed759c25-03a5-46fc-a251-2f5e531d0110&subid=755953858162724864&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ot=931
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /11?rnd=4257599165&z=2892323&b=15540606&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=phMcFQYJBqVUYueUATnytnKYxSCrxNpV0KI-PdBeoA1gmA9n3qX3s3nOm7sIGCgnqY16lb3qeTeenpdR0kpYZ3LjaEnkkiW6xCaqIOgV73zJurN148gh-bCEO2_s-_6FzE8uKU8l4IxeCzjh2LuhNRc3QuPaOaSb4JibqDjtMmYUIEdOR_OR2jfHHC9BChPKTya51J1rPXyRCr67R0dtRrtYfv9TsRkfYh83ThAlyRIvtBBXFgPtgXbIx0gMojL4gtpgDmaLshUd_JzajrafqAcQugRsVK1DBcC-TpbTNaiyEt6s3qAU31KbkhRaGcA8dULPGerONQygsQNztwp5ttE32QbSQiqtB2DY8mfsj4NsCXkLVyCZNqgmrjSW5vgEyEtAbXqQIVJ91daNCZBW4c3I4jeRIX_eBbxKHVA5vitCqx_mBW4GfGN2UvDA0RKlbHptLXP0OAGDZZMSq0JRIFBOg6JNaWaPl4UgYdcIHcvzsEmDGkaDq-IS-D9MDtRGyILn0HXZx5ApgKpnVybhPT6n3DuBix77EhaEBJkz_vH-h6QLTDE8vn9RrWmsjgH10UErZ5k_3dw90FhSz3zNOkbU6Eyi7obDr3h9jRvMnbgCrE4tXEPucDBjZt1L71gm2cxw09wxmpIzXePtPZllBvIyhIjXwdQHucjVba_DRYFhrctJ37PAlTo_EUjOkpprvWWL0kuOnAyESfl9UmTVMd9yxgjtzAVE6Mcl_g==&ruid=ed759c25-03a5-46fc-a251-2f5e531d0110&subid=755953858162724864&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ot=931 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=cae010572dbc48c383b304da9d0f8f5e; oaidts=1701796961
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:43 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 4d6fee6191047f72034cb7b876860ce9
access-control-expose-headers: X-Sc
set-cookie: OAID=cae010572dbc48c383b304da9d0f8f5e; expires=Wed, 04 Dec 2024 17:22:43 GMT; secure; SameSite=None
oaidts=1701796961; expires=Wed, 04 Dec 2024 17:22:43 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

tharbadir.com/121?rnd=60936876&z=2892323&b=15540606&c=6274858&var=&varid=0&d=https%3A%2F%2Fb6f71hwqomrafu683pz507uj2g.hop.clickbank.net%2F%3Ftid%3Dgo1%26clickid%3D755953858162724864&cln={CELL_NUMBER}&btp=7&rb=phMcFQYJBqVUYueUATnytnKYxSCrxNpV0KI-PdBeoA1gmA9n3qX3s3nOm7sIGCgnqY16lb3qeTeenpdR0kpYZ3LjaEnkkiW6xCaqIOgV73zJurN148gh-bCEO2_s-_6FzE8uKU8l4IxeCzjh2LuhNRc3QuPaOaSb4JibqDjtMmYUIEdOR_OR2jfHHC9BChPKTya51J1rPXyRCr67R0dtRrtYfv9TsRkfYh83ThAlyRIvtBBXFgPtgXbIx0gMojL4gtpgDmaLshUd_JzajrafqAcQugRsVK1DBcC-TpbTNaiyEt6s3qAU31KbkhRaGcA8dULPGerONQygsQNztwp5ttE32QbSQiqtB2DY8mfsj4NsCXkLVyCZNqgmrjSW5vgEyEtAbXqQIVJ91daNCZBW4c3I4jeRIX_eBbxKHVA5vitCqx_mBW4GfGN2UvDA0RKlbHptLXP0OAGDZZMSq0JRIFBOg6JNaWaPl4UgYdcIHcvzsEmDGkaDq-IS-D9MDtRGyILn0HXZx5ApgKpnVybhPT6n3DuBix77EhaEBJkz_vH-h6QLTDE8vn9RrWmsjgH10UErZ5k_3dw90FhSz3zNOkbU6Eyi7obDr3h9jRvMnbgCrE4tXEPucDBjZt1L71gm2cxw09wxmpIzXePtPZllBvIyhIjXwdQHucjVba_DRYFhrctJ37PAlTo_EUjOkpprvWWL0kuOnAyESfl9UmTVMd9yxgjtzAVE6Mcl_g==&bag=RaOryOLu2vUJW3V3xk7FxXUM0ABvEVpm&ruid=ed759c25-03a5-46fc-a251-2f5e531d0110&subid=755953858162724864

139.45.197.238

302 Found

0 B

URL GET HTTP/2
tharbadir.com/121?rnd=60936876&z=2892323&b=15540606&c=6274858&var=&varid=0&d=https%3A%2F%2Fb6f71hwqomrafu683pz507uj2g.hop.clickbank.net%2F%3Ftid%3Dgo1%26clickid%3D755953858162724864&cln={CELL_NUMBER}&btp=7&rb=phMcFQYJBqVUYueUATnytnKYxSCrxNpV0KI-PdBeoA1gmA9n3qX3s3nOm7sIGCgnqY16lb3qeTeenpdR0kpYZ3LjaEnkkiW6xCaqIOgV73zJurN148gh-bCEO2_s-_6FzE8uKU8l4IxeCzjh2LuhNRc3QuPaOaSb4JibqDjtMmYUIEdOR_OR2jfHHC9BChPKTya51J1rPXyRCr67R0dtRrtYfv9TsRkfYh83ThAlyRIvtBBXFgPtgXbIx0gMojL4gtpgDmaLshUd_JzajrafqAcQugRsVK1DBcC-TpbTNaiyEt6s3qAU31KbkhRaGcA8dULPGerONQygsQNztwp5ttE32QbSQiqtB2DY8mfsj4NsCXkLVyCZNqgmrjSW5vgEyEtAbXqQIVJ91daNCZBW4c3I4jeRIX_eBbxKHVA5vitCqx_mBW4GfGN2UvDA0RKlbHptLXP0OAGDZZMSq0JRIFBOg6JNaWaPl4UgYdcIHcvzsEmDGkaDq-IS-D9MDtRGyILn0HXZx5ApgKpnVybhPT6n3DuBix77EhaEBJkz_vH-h6QLTDE8vn9RrWmsjgH10UErZ5k_3dw90FhSz3zNOkbU6Eyi7obDr3h9jRvMnbgCrE4tXEPucDBjZt1L71gm2cxw09wxmpIzXePtPZllBvIyhIjXwdQHucjVba_DRYFhrctJ37PAlTo_EUjOkpprvWWL0kuOnAyESfl9UmTVMd9yxgjtzAVE6Mcl_g==&bag=RaOryOLu2vUJW3V3xk7FxXUM0ABvEVpm&ruid=ed759c25-03a5-46fc-a251-2f5e531d0110&subid=755953858162724864
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /121?rnd=60936876&z=2892323&b=15540606&c=6274858&var=&varid=0&d=https%3A%2F%2Fb6f71hwqomrafu683pz507uj2g.hop.clickbank.net%2F%3Ftid%3Dgo1%26clickid%3D755953858162724864&cln={CELL_NUMBER}&btp=7&rb=phMcFQYJBqVUYueUATnytnKYxSCrxNpV0KI-PdBeoA1gmA9n3qX3s3nOm7sIGCgnqY16lb3qeTeenpdR0kpYZ3LjaEnkkiW6xCaqIOgV73zJurN148gh-bCEO2_s-_6FzE8uKU8l4IxeCzjh2LuhNRc3QuPaOaSb4JibqDjtMmYUIEdOR_OR2jfHHC9BChPKTya51J1rPXyRCr67R0dtRrtYfv9TsRkfYh83ThAlyRIvtBBXFgPtgXbIx0gMojL4gtpgDmaLshUd_JzajrafqAcQugRsVK1DBcC-TpbTNaiyEt6s3qAU31KbkhRaGcA8dULPGerONQygsQNztwp5ttE32QbSQiqtB2DY8mfsj4NsCXkLVyCZNqgmrjSW5vgEyEtAbXqQIVJ91daNCZBW4c3I4jeRIX_eBbxKHVA5vitCqx_mBW4GfGN2UvDA0RKlbHptLXP0OAGDZZMSq0JRIFBOg6JNaWaPl4UgYdcIHcvzsEmDGkaDq-IS-D9MDtRGyILn0HXZx5ApgKpnVybhPT6n3DuBix77EhaEBJkz_vH-h6QLTDE8vn9RrWmsjgH10UErZ5k_3dw90FhSz3zNOkbU6Eyi7obDr3h9jRvMnbgCrE4tXEPucDBjZt1L71gm2cxw09wxmpIzXePtPZllBvIyhIjXwdQHucjVba_DRYFhrctJ37PAlTo_EUjOkpprvWWL0kuOnAyESfl9UmTVMd9yxgjtzAVE6Mcl_g==&bag=RaOryOLu2vUJW3V3xk7FxXUM0ABvEVpm&ruid=ed759c25-03a5-46fc-a251-2f5e531d0110&subid=755953858162724864 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: scm=1; OAID=cae010572dbc48c383b304da9d0f8f5e; oaidts=1701796961
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: nginx
date: Tue, 05 Dec 2023 17:22:43 GMT
content-length: 0
location: https://b6f71hwqomrafu683pz507uj2g.hop.clickbank.net/?tid=go1&clickid=755953858162724864
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: ce7394c5ebf62b550f83293e229b1009
access-control-expose-headers: X-Sc
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

0 B

URL OPTIONS HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:43 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

94 B

URL OPTIONS HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT

File type
JSON data\012- , ASCII text
Size
94 B (94 bytes)
Hash
6e5340bf06d538c6bf6d26f5cef04df2
5cf52f5b10defd6bcbd61cd59b667c1731b95463
0fc6580fcef14875bdc0b0b46f8bcb1355dfe20b0c1963f57103e920f7fd4a3b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 579
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:43 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

shineinternalindolent.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsk1Rd9NT0%2FfuPHxsGNoNC4kBmQTlV%2Ft7MYjDESzCRxZiSb2bx671XnmVf1ivequjpZRQdkdra4UVeV08mEGYM4f4AgFTdDQEhvJOBk4U5wI%2BLgUqqnIXqh7r2nzl2cc%2B%2F7dDc9Ix5Serp2Q29Lpehcq%2BZWr6zLiOvMVlduVz235l6rrsuo3bxWHZbJDN7y3FbNvVp9T7BNPVd3Pdf1XK%2B6KI0I9HBuykLGhz2v1nNrzXrNazUxNP%2FFNnVgqQM%2BOCOXIfnkfxuPH0GyAlH43YKwm4mO33w3TBVNtMGAH3wYbUY6ixCet4FxEEQHs2loOyHkywvQ0cHMAfRgr3QAX06I87MHPzqYyYQ%2F2H%2Bm1FcQEXz%2BArJBAaEKSFqA6buQ%2FIQAjGNlFVF4f0WbjG49Y2nJTsjFp39CZhNy8cnLiMJv55UcVm9plSZSRxbDIIccFpD9AnF6hGTbgcyOwJJPIPlPZO7pMqJwb9UqDcnzqXspC8iggBIjUOsgLT%2FpIA0cpLGDkJ9WaasXuG4n8INGo9tkjDUajLW6bd7ijWY3cJGyUt4ISTwCUyMws4PY7GBTfn7SugyT%2FgC7kcNyBzaZEOeDHQx4jkwQZJYgowSZJMgSgmyQ73Nl6za%2Fz5VNfW9W67PayMc66e%2FSfZ30RURAzWg3PiMvTdfz96%2F%2Fx6Y4rbKeV2947Q6tN9pt3mi7jDd51%2BWU1ylrtLqwMoe0F6aOt8tb4RList74HT49glVHYLICmnqg2bhTd0E3xs2ui%2B3owSDtK1pjOgTXOeLkIpItZ1edkVemIjof%2FwHBjq8fXvmr%2BOzOVTCTIzY5PpI%2FEvTVvfFNnZG9mzqz5NFqnMhQbtPyfrcSmojKw%2FfFVqYNX1qwowdvs5Io28PbwibLNOIy6lvyzbzkXJhFbZgg3y%2FZdeGvpXZjPjVRGi%2BvvbO4FMZGWCt1VIDKkxcLMDkhzx0vTF%2Fma4sbkKaASXOE6TGZBaQ%2BAot3YOPj6w9fPbzkvfEbrCYw6nzGjx1kaT42df%2F8p5IESpxj6uew%2F8L%2Beb9r76FvKqDJXURhjoHJMVA5qBrBps%2BPk9gcX3%2F8VRlfw1eVsa9MZc9XRn0xXe2EvF55UqZfYOVpVbQCNxBuXfhBzw861OW9oNnzac8THb9FPSR2IvQd%2Fx8AAAD%2F%2FwEAAP%2F%2FSjRTw3sEAAA%3D

173.233.137.36

200 OK

7 B

URL GET HTTP/1.1
shineinternalindolent.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsk1Rd9NT0%2FfuPHxsGNoNC4kBmQTlV%2Ft7MYjDESzCRxZiSb2bx671XnmVf1ivequjpZRQdkdra4UVeV08mEGYM4f4AgFTdDQEhvJOBk4U5wI%2BLgUqqnIXqh7r2nzl2cc%2B%2F7dDc9Ix5Serp2Q29Lpehcq%2BZWr6zLiOvMVlduVz235l6rrsuo3bxWHZbJDN7y3FbNvVp9T7BNPVd3Pdf1XK%2B6KI0I9HBuykLGhz2v1nNrzXrNazUxNP%2FFNnVgqQM%2BOCOXIfnkfxuPH0GyAlH43YKwm4mO33w3TBVNtMGAH3wYbUY6ixCet4FxEEQHs2loOyHkywvQ0cHMAfRgr3QAX06I87MHPzqYyYQ%2F2H%2Bm1FcQEXz%2BArJBAaEKSFqA6buQ%2FIQAjGNlFVF4f0WbjG49Y2nJTsjFp39CZhNy8cnLiMJv55UcVm9plSZSRxbDIIccFpD9AnF6hGTbgcyOwJJPIPlPZO7pMqJwb9UqDcnzqXspC8iggBIjUOsgLT%2FpIA0cpLGDkJ9WaasXuG4n8INGo9tkjDUajLW6bd7ijWY3cJGyUt4ISTwCUyMws4PY7GBTfn7SugyT%2FgC7kcNyBzaZEOeDHQx4jkwQZJYgowSZJMgSgmyQ73Nl6za%2Fz5VNfW9W67PayMc66e%2FSfZ30RURAzWg3PiMvTdfz96%2F%2Fx6Y4rbKeV2947Q6tN9pt3mi7jDd51%2BWU1ylrtLqwMoe0F6aOt8tb4RList74HT49glVHYLICmnqg2bhTd0E3xs2ui%2B3owSDtK1pjOgTXOeLkIpItZ1edkVemIjof%2FwHBjq8fXvmr%2BOzOVTCTIzY5PpI%2FEvTVvfFNnZG9mzqz5NFqnMhQbtPyfrcSmojKw%2FfFVqYNX1qwowdvs5Io28PbwibLNOIy6lvyzbzkXJhFbZgg3y%2FZdeGvpXZjPjVRGi%2BvvbO4FMZGWCt1VIDKkxcLMDkhzx0vTF%2Fma4sbkKaASXOE6TGZBaQ%2BAot3YOPj6w9fPbzkvfEbrCYw6nzGjx1kaT42df%2F8p5IESpxj6uew%2F8L%2Beb9r76FvKqDJXURhjoHJMVA5qBrBps%2BPk9gcX3%2F8VRlfw1eVsa9MZc9XRn0xXe2EvF55UqZfYOVpVbQCNxBuXfhBzw861OW9oNnzac8THb9FPSR2IvQd%2Fx8AAAD%2F%2FwEAAP%2F%2FSjRTw3sEAAA%3D
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectshineinternalindolent.com
Fingerprint6D:2F:FA:76:0F:F3:87:81:20:04:11:2D:33:E8:C3:A4:9F:8E:07:5D
ValidityTue, 28 Nov 2023 08:00:05 GMT - Mon, 26 Feb 2024 08:00:04 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsk1Rd9NT0%2FfuPHxsGNoNC4kBmQTlV%2Ft7MYjDESzCRxZiSb2bx671XnmVf1ivequjpZRQdkdra4UVeV08mEGYM4f4AgFTdDQEhvJOBk4U5wI%2BLgUqqnIXqh7r2nzl2cc%2B%2F7dDc9Ix5Serp2Q29Lpehcq%2BZWr6zLiOvMVlduVz235l6rrsuo3bxWHZbJDN7y3FbNvVp9T7BNPVd3Pdf1XK%2B6KI0I9HBuykLGhz2v1nNrzXrNazUxNP%2FFNnVgqQM%2BOCOXIfnkfxuPH0GyAlH43YKwm4mO33w3TBVNtMGAH3wYbUY6ixCet4FxEEQHs2loOyHkywvQ0cHMAfRgr3QAX06I87MHPzqYyYQ%2F2H%2Bm1FcQEXz%2BArJBAaEKSFqA6buQ%2FIQAjGNlFVF4f0WbjG49Y2nJTsjFp39CZhNy8cnLiMJv55UcVm9plSZSRxbDIIccFpD9AnF6hGTbgcyOwJJPIPlPZO7pMqJwb9UqDcnzqXspC8iggBIjUOsgLT%2FpIA0cpLGDkJ9WaasXuG4n8INGo9tkjDUajLW6bd7ijWY3cJGyUt4ISTwCUyMws4PY7GBTfn7SugyT%2FgC7kcNyBzaZEOeDHQx4jkwQZJYgowSZJMgSgmyQ73Nl6za%2Fz5VNfW9W67PayMc66e%2FSfZ30RURAzWg3PiMvTdfz96%2F%2Fx6Y4rbKeV2947Q6tN9pt3mi7jDd51%2BWU1ylrtLqwMoe0F6aOt8tb4RList74HT49glVHYLICmnqg2bhTd0E3xs2ui%2B3owSDtK1pjOgTXOeLkIpItZ1edkVemIjof%2FwHBjq8fXvmr%2BOzOVTCTIzY5PpI%2FEvTVvfFNnZG9mzqz5NFqnMhQbtPyfrcSmojKw%2FfFVqYNX1qwowdvs5Io28PbwibLNOIy6lvyzbzkXJhFbZgg3y%2FZdeGvpXZjPjVRGi%2BvvbO4FMZGWCt1VIDKkxcLMDkhzx0vTF%2Fma4sbkKaASXOE6TGZBaQ%2BAot3YOPj6w9fPbzkvfEbrCYw6nzGjx1kaT42df%2F8p5IESpxj6uew%2F8L%2Beb9r76FvKqDJXURhjoHJMVA5qBrBps%2BPk9gcX3%2F8VRlfw1eVsa9MZc9XRn0xXe2EvF55UqZfYOVpVbQCNxBuXfhBzw861OW9oNnzac8THb9FPSR2IvQd%2Fx8AAAD%2F%2FwEAAP%2F%2FSjRTw3sEAAA%3D HTTP/1.1
Host: shineinternalindolent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 17:22:43 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7d0f45f95acd2c039ab690b1931973e9
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg

45.133.44.10

200 OK

21 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Size
21 kB (20566 bytes)
Hash
8f4953c1b8baece7bb7d226247561ce2
da5d440970606602026d7900a55ae2fd27a3f170
8fd9df7d8e48ff2519631e82e01519d4f1c65abd41ec977c18abb58df9832919

HTTP Headers

GET /si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:43 GMT
content-type: image/jpeg
content-length: 20566
server: nginx/1.21.6
last-modified: Thu, 01 Sep 2022 12:51:28 GMT
etag: "6310aad0-5056"
expires: Thu, 07 Dec 2023 17:22:43 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg

45.133.44.10

200 OK

30 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Size
30 kB (30127 bytes)
Hash
a87779ccaaa4021b0b4f33812742679a
87322480f885dc0b6463c182b7bdb3eb60ab2592
a8f8dbc930527f94496d5a9883b6034e27a673090a89b518596d6e2b656df96f

HTTP Headers

GET /cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:43 GMT
content-type: image/jpeg
content-length: 30127
server: nginx/1.21.6
last-modified: Tue, 10 Aug 2021 09:15:44 GMT
etag: "611243c0-75af"
expires: Thu, 07 Dec 2023 17:22:43 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/29/eb/08/29eb08c32bad57ff8c8e14af3a16e9c1/1628586955.jpg

45.133.44.10

200 OK

23 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/29/eb/08/29eb08c32bad57ff8c8e14af3a16e9c1/1628586955.jpg
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Size
23 kB (22987 bytes)
Hash
4452445afb73fab8af9ff308eb667024
130401c47d822426e1cce9981c30d775cba1b576
923b0ac505decd181f473f1fa460f21590777993c3581723f127b032d8c45bdd

HTTP Headers

GET /cti/29/eb/08/29eb08c32bad57ff8c8e14af3a16e9c1/1628586955.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:43 GMT
content-type: image/jpeg
content-length: 22987
server: nginx/1.21.6
last-modified: Tue, 10 Aug 2021 09:16:05 GMT
etag: "611243d5-59cb"
expires: Thu, 07 Dec 2023 17:22:43 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

shineinternalindolent.com/65/aa/28/65aa283021630dfd9030555c4c61a78c.js

173.233.137.36

200 OK

23 kB

URL GET HTTP/1.1
shineinternalindolent.com/65/aa/28/65aa283021630dfd9030555c4c61a78c.js
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectshineinternalindolent.com
Fingerprint6D:2F:FA:76:0F:F3:87:81:20:04:11:2D:33:E8:C3:A4:9F:8E:07:5D
ValidityTue, 28 Nov 2023 08:00:05 GMT - Mon, 26 Feb 2024 08:00:04 GMT

File type
ASCII text, with very long lines (59529)
Size
23 kB (23413 bytes)
Hash
80f4b3037875bc77abed5eaad60958e3
d6ca49d208f58a1f7782d156fd073056ee8fc37b
8251616618e83c035772380ffd5d4d8267afd938b504a1d84df2aa443d542b9d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /65/aa/28/65aa283021630dfd9030555c4c61a78c.js HTTP/1.1
Host: shineinternalindolent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 17:22:43 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_AN-1159_new=0; expires=Sat, 09 Dec 2023 21:22:43 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d1d21270a41d3cd0db30748f6ec06955
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

dragnag.com/sbar.json?key=d137022925bcc2a680f8a4476ff94144&uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5%3A3%3A1

192.243.59.20

200 OK

4.3 kB

URL GET HTTP/1.1
dragnag.com/sbar.json?key=d137022925bcc2a680f8a4476ff94144&uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5%3A3%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectdragnag.com
FingerprintDA:4C:92:8F:5C:67:EE:4F:B6:69:E7:5B:1C:66:9F:48:5B:CD:11:FF
ValidityTue, 28 Nov 2023 10:50:07 GMT - Mon, 26 Feb 2024 10:50:06 GMT

File type
JSON data\012- , ASCII text, with very long lines (6132), with no line terminators
Size
4.3 kB (4308 bytes)
Hash
57376edc0a89fe638be49bdf4c64a255
7dd223f4f5099631d36ff785698c9f726200d3cb
05f790575733fa29ec7f8b3860452c49ac1239c12e0d5ad6213b541c434e29e5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=d137022925bcc2a680f8a4476ff94144&uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5%3A3%3A1 HTTP/1.1
Host: dragnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:22:43 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15460408; expires=Wed, 06 Dec 2023 17:22:43 GMT; secure; SameSite=None
uid_id2=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5:3:1; expires=Tue, 12 Dec 2023 17:22:43 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 06 Dec 2023 17:22:43 GMT; secure; SameSite=None
uncs=1; expires=Wed, 06 Dec 2023 17:22:43 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 06 Dec 2023 17:22:43 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 06 Dec 2023 17:22:43 GMT; secure; SameSite=None
slecd137022925bcc2a680f8a4476ff94144=[4691073]; expires=Tue, 05 Dec 2023 17:22:48 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 71f3372e92447c2b58a6dc6150159941
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

cdn.cloudimagesb.com/cti/56/ef/55/56ef55f6ef3bc03e69b8d66da27f0cd1/1658920055.png

45.133.44.10

200 OK

67 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/56/ef/55/56ef55f6ef3bc03e69b8d66da27f0cd1/1658920055.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
PNG image data, 468 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
67 kB (67174 bytes)
Hash
a98b4585db1c6db06d6857c73bb75fcb
02a896b08a79e873b2dd26200ee1f0665dc1c80a
fc08e863ffafe25aa63fe8b60c2d5135fc5f52caf0abae4da3f1a90e0f8ed96c

HTTP Headers

GET /cti/56/ef/55/56ef55f6ef3bc03e69b8d66da27f0cd1/1658920055.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:44 GMT
content-type: image/png
content-length: 67174
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 11:07:43 GMT
etag: "62e11c7f-10666"
expires: Thu, 07 Dec 2023 17:22:44 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

94 B

URL OPTIONS HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT

File type
JSON data\012- , ASCII text
Size
94 B (94 bytes)
Hash
9b01452156b4965481888267dd4b27fe
747f5447536ca5213ca079bd4b3a120d7d7050ef
16659122a8061b3b47d261962c66dc711e7440293dd284cda8e628107f7bf954

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 579
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:44 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

groorsoa.net/5/1316441

139.45.197.245

200 OK

26 kB

URL GET HTTP/2
groorsoa.net/5/1316441
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectgroorsoa.net
FingerprintD7:6E:83:AB:7A:9A:E5:7C:B8:7B:8D:12:E4:FD:B6:E5:71:49:D0:F8
ValidityMon, 23 Oct 2023 16:34:15 GMT - Sun, 21 Jan 2024 16:34:14 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
26 kB (26404 bytes)
Hash
5621f1dd126a280d0b914bb5c120c8e7
1fe4db6c2a2afd88099dcb215b0a904f2b34de6c
973d93e3167f5df0d57b089ccaf956a6f92c3e7c957563e23144d3c7906f0aa9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/1316441 HTTP/1.1
Host: groorsoa.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:41 GMT
content-type: application/javascript
x-trace-id: 1a20b9f6efcaa55418ed848a813f5eb7
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=b8a9793832334c4e8a10cc94eb68fa20; expires=Wed, 04 Dec 2024 17:22:40 GMT; path=/; secure; SameSite=None
oaidts=1701796960; expires=Wed, 04 Dec 2024 17:22:40 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

shineinternalindolent.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsk1Rd9NZ0fv0E3OrgRXDQuREE6Vf3dzmJwHCPBTBJnRrJx8%2Bq9V51nXtUr3quPTlYZB2WWLW7UVeV0MmHGIM4foEjHzRAU0hsJOFm4E9yIMMxSqqeh9ULde0%2Bduzjn3vfZXnpOPKT0bP263pFK0cVWza2%2BviEjrnNbXb1V9dyae7m6IaN283J1UCaTveW5rZr7RvU9wbb0Yt31XNdzveqSNCLQg8UpCxkf9bxaz6016zWv1cTA%2FBfb1IGlDnh2Ti5B8sn%2FNh89hGRjROF314TdSnT85rthqmiiDTJ%2B%2BGG0Fek8QjhvA%2BMgiA5n09B2QsiXF6Cjw5kD6Gy%2FdABfTojzqwc%2FOpzJhJ8dPFPqK4gIPn8eeTaGUGNIOgbTdyD5KQEYx%2BoaovDeqjY53X7G0pKdkIUnf0PmE7Lw%2BCVE4bdXlRxUb2qVJlJHFoOggByMIftjxOkxkh0HMj8GSz6B5L%2BQxScriML9Nas0JC%2Bm7qUcQwZjKDEEtQ7S8pMO0sBBGjsI%2BVmVtnqB63YCP2g0uk3GWKPBWKvb5i3eaHYDFykr5Q2RxEMwNQQzu4jNLrbk56etSzDpj7CbBSx3YJMJcT7YRcYL5IIgtwQ5JcglQZ4Q5FlxwJWt2%2BIeVzb1vVmtz2qjGOmkv0cPdNIXEQE1w734nLw4Xc%2FT3%2F%2BPLXFWZT2v3vDaHVpvtNu80XYZb%2FKuyymvU9ZodWFlAWkvTB3vlLfCRcRlvf4nfHoMq47BZAU09UDzUafugm6Oml0XO9H9LO0rWmM6BNcF4mQBybazp87Jy1MRr1YeQ7CTKw9eObrovfYHmCkQmwIfy58I%2Buru6IbOyf4NnVvycC1OZCh3aHm%2FmwlNROXB%2B2I714YvX7PD%2B2%2Bzkijbo1vCJis04jLqW%2FLNVcm5MEvaMEG%2BX7Ybwl9P7ebV1ERpvLL%2BztJyGBthrdTRGFSerj0FkxOycPuH6ct84edPIc0YJi0QpidkFpD6GCzehY3n6q0mMGo%2B48cXkKfFyNT9%2BU8lCZSYY%2BoXsP%2FC%2Frzfs3fRNxXQ5A6isEBmCmSqAFVD2PS5URKbkyuPvirja%2FiqMvKVqez7yqgvJqRz%2B6%2Fpfsv0G6w8q4pW4AbCrQs%2F6PlBh7q8FzR7Pu15ouO3qIfEToT%2ByP8HAAD%2F%2FwEAAP%2F%2Faa22xnsEAAA%3D

173.233.139.164

200 OK

7 B

URL GET HTTP/1.1
shineinternalindolent.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsk1Rd9NZ0fv0E3OrgRXDQuREE6Vf3dzmJwHCPBTBJnRrJx8%2Bq9V51nXtUr3quPTlYZB2WWLW7UVeV0MmHGIM4foEjHzRAU0hsJOFm4E9yIMMxSqqeh9ULde0%2Bduzjn3vfZXnpOPKT0bP263pFK0cVWza2%2BviEjrnNbXb1V9dyae7m6IaN283J1UCaTveW5rZr7RvU9wbb0Yt31XNdzveqSNCLQg8UpCxkf9bxaz6016zWv1cTA%2FBfb1IGlDnh2Ti5B8sn%2FNh89hGRjROF314TdSnT85rthqmiiDTJ%2B%2BGG0Fek8QjhvA%2BMgiA5n09B2QsiXF6Cjw5kD6Gy%2FdABfTojzqwc%2FOpzJhJ8dPFPqK4gIPn8eeTaGUGNIOgbTdyD5KQEYx%2BoaovDeqjY53X7G0pKdkIUnf0PmE7Lw%2BCVE4bdXlRxUb2qVJlJHFoOggByMIftjxOkxkh0HMj8GSz6B5L%2BQxScriML9Nas0JC%2Bm7qUcQwZjKDEEtQ7S8pMO0sBBGjsI%2BVmVtnqB63YCP2g0uk3GWKPBWKvb5i3eaHYDFykr5Q2RxEMwNQQzu4jNLrbk56etSzDpj7CbBSx3YJMJcT7YRcYL5IIgtwQ5JcglQZ4Q5FlxwJWt2%2BIeVzb1vVmtz2qjGOmkv0cPdNIXEQE1w734nLw4Xc%2FT3%2F%2BPLXFWZT2v3vDaHVpvtNu80XYZb%2FKuyymvU9ZodWFlAWkvTB3vlLfCRcRlvf4nfHoMq47BZAU09UDzUafugm6Oml0XO9H9LO0rWmM6BNcF4mQBybazp87Jy1MRr1YeQ7CTKw9eObrovfYHmCkQmwIfy58I%2Buru6IbOyf4NnVvycC1OZCh3aHm%2FmwlNROXB%2B2I714YvX7PD%2B2%2Bzkijbo1vCJis04jLqW%2FLNVcm5MEvaMEG%2BX7Ybwl9P7ebV1ERpvLL%2BztJyGBthrdTRGFSerj0FkxOycPuH6ct84edPIc0YJi0QpidkFpD6GCzehY3n6q0mMGo%2B48cXkKfFyNT9%2BU8lCZSYY%2BoXsP%2FC%2Frzfs3fRNxXQ5A6isEBmCmSqAFVD2PS5URKbkyuPvirja%2FiqMvKVqez7yqgvJqRz%2B6%2Fpfsv0G6w8q4pW4AbCrQs%2F6PlBh7q8FzR7Pu15ouO3qIfEToT%2ByP8HAAD%2F%2FwEAAP%2F%2Faa22xnsEAAA%3D
IP
173.233.139.164:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectshineinternalindolent.com
Fingerprint6D:2F:FA:76:0F:F3:87:81:20:04:11:2D:33:E8:C3:A4:9F:8E:07:5D
ValidityTue, 28 Nov 2023 08:00:05 GMT - Mon, 26 Feb 2024 08:00:04 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzWsk1Rd9NZ0fv0E3OrgRXDQuREE6Vf3dzmJwHCPBTBJnRrJx8%2Bq9V51nXtUr3quPTlYZB2WWLW7UVeV0MmHGIM4foEjHzRAU0hsJOFm4E9yIMMxSqqeh9ULde0%2Bduzjn3vfZXnpOPKT0bP263pFK0cVWza2%2BviEjrnNbXb1V9dyae7m6IaN283J1UCaTveW5rZr7RvU9wbb0Yt31XNdzveqSNCLQg8UpCxkf9bxaz6016zWv1cTA%2FBfb1IGlDnh2Ti5B8sn%2FNh89hGRjROF314TdSnT85rthqmiiDTJ%2B%2BGG0Fek8QjhvA%2BMgiA5n09B2QsiXF6Cjw5kD6Gy%2FdABfTojzqwc%2FOpzJhJ8dPFPqK4gIPn8eeTaGUGNIOgbTdyD5KQEYx%2BoaovDeqjY53X7G0pKdkIUnf0PmE7Lw%2BCVE4bdXlRxUb2qVJlJHFoOggByMIftjxOkxkh0HMj8GSz6B5L%2BQxScriML9Nas0JC%2Bm7qUcQwZjKDEEtQ7S8pMO0sBBGjsI%2BVmVtnqB63YCP2g0uk3GWKPBWKvb5i3eaHYDFykr5Q2RxEMwNQQzu4jNLrbk56etSzDpj7CbBSx3YJMJcT7YRcYL5IIgtwQ5JcglQZ4Q5FlxwJWt2%2BIeVzb1vVmtz2qjGOmkv0cPdNIXEQE1w734nLw4Xc%2FT3%2F%2BPLXFWZT2v3vDaHVpvtNu80XYZb%2FKuyymvU9ZodWFlAWkvTB3vlLfCRcRlvf4nfHoMq47BZAU09UDzUafugm6Oml0XO9H9LO0rWmM6BNcF4mQBybazp87Jy1MRr1YeQ7CTKw9eObrovfYHmCkQmwIfy58I%2Buru6IbOyf4NnVvycC1OZCh3aHm%2FmwlNROXB%2B2I714YvX7PD%2B2%2Bzkijbo1vCJis04jLqW%2FLNVcm5MEvaMEG%2BX7Ybwl9P7ebV1ERpvLL%2BztJyGBthrdTRGFSerj0FkxOycPuH6ct84edPIc0YJi0QpidkFpD6GCzehY3n6q0mMGo%2B48cXkKfFyNT9%2BU8lCZSYY%2BoXsP%2FC%2Frzfs3fRNxXQ5A6isEBmCmSqAFVD2PS5URKbkyuPvirja%2FiqMvKVqez7yqgvJqRz%2B6%2Fpfsv0G6w8q4pW4AbCrQs%2F6PlBh7q8FzR7Pu15ouO3qIfEToT%2ByP8HAAD%2F%2FwEAAP%2F%2Faa22xnsEAAA%3D HTTP/1.1
Host: shineinternalindolent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 17:22:44 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3407726225c4688d817c5d9b6cc33e94
Strict-Transport-Security: max-age=0; includeSubdomains

dragnag.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3IyAeDIIoCnMIRMGd7Z7p3pk2h8UYE4L5ZxIJiAfrX8%2BWW93VVHVPb%2Fa0MSA5TsCDx943m6zRIOYqSGRWD7Ig7HiQPWQvXgRzEAI5y8wOLH6H%2Br6q9w7vva%2B%2B2Cj3SYCS7l25aNaU1nQhavqNN2%2BoTJjKNS5dbwR%2B0z%2FVuKGyxfBUY3Vy2P47gR81%2Fbca5yRfMQstP%2FD9wA8aZ5WViVldmKJQ%2BcM4aMZ%2BM2w1gyjEqv3v3ZUeHPUg%2BvvkOJQY%2F2%2F510dQfIQs%2Ff6MdCuFyd9%2BPy01LYxFX2x9lK1kpsqQHo6J9ZBkWzM2jBsT8tURmGxr5gCmvzlxAKbGxPsjAMu2ZjLB%2BvcOlDINmYGJF1D1R5B6BEVH4OY2lNglABe4dBlZev%2BSsRW9eYDSCTomc8%2BfQVVjMvfkZWTpd6e1Wm1cM7oslMkcVpMaanUE1RshL7dRrHlQ1TZ48TmU%2BI0sPL%2BALN287LSBEnsngojFImh35tsdxufD2I%2FnGe2Iedr2Kfe5CKWIphEpNYJKRtByAOqOonQeSuWhTDyUuYdU7DVoFCe%2B30lY0m53Q855u8151F0UkWiH3cRHySceBijyAbgegNt15HYdK%2BrubnQctvwJbrmGE0fgijHxPlxHX9SoJEHlCCpKUCmCqiCo%2BvU9oV3L1feFdiULZr016%2B16aIreBr1nip7MCKgdbOT75KVphn%2F%2F1cWK3GtMnPutVtyKGOctutj1ky4Nw85iksRhEIZwqoZyR0Cdh7XJQnEM%2BaRffApGt%2BH0Nrg6Clq%2BAVoNOy0fdHkYdn2sZQ%2F6ZU%2FTJjcphKmRF3Mobnobep%2B8OhVx7stbkHxn6enHrz88FpwEtzVyW%2BMz9TNBT98ZXjUV2bxqKkceXc4Llao1OlnytYIWcu6bD%2BTNylhx%2FowbPHiXT4DJ%2BPC6dMUFmgmV9Rz59rQSQtqzxnJJfjzvbkh2pXTLp0ublfmFK%2B%2BdPZ%2FmVjqnTDYCVbufPgZXY%2FLi%2FaXp9z359Q9QdgRb1kjLHTIrKLMNnq%2FD5TtLf7anBWcIrD7ksNxDVdZD22KHj1qNSevZK9ByZ%2BmXW%2F8%2F8WThNVBWw8nDGJjcefzPAX%2FD3UHPeqDFbWRpjb6t0dc1qB7AlUeHRW53ln6fCWDaGzJtvU2mrb57EK9Tew0ZJX4i%2FZZkScySDvVFnIQxo3EgOyyiAQo3luYT%2Fi8AAAD%2F%2FwEAAP%2F%2FaYpeRJoEAAA%3D

192.243.59.20

200 OK

7 B

URL GET HTTP/1.1
dragnag.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3IyAeDIIoCnMIRMGd7Z7p3pk2h8UYE4L5ZxIJiAfrX8%2BWW93VVHVPb%2Fa0MSA5TsCDx943m6zRIOYqSGRWD7Ig7HiQPWQvXgRzEAI5y8wOLH6H%2Br6q9w7vva%2B%2B2Cj3SYCS7l25aNaU1nQhavqNN2%2BoTJjKNS5dbwR%2B0z%2FVuKGyxfBUY3Vy2P47gR81%2Fbca5yRfMQstP%2FD9wA8aZ5WViVldmKJQ%2BcM4aMZ%2BM2w1gyjEqv3v3ZUeHPUg%2BvvkOJQY%2F2%2F510dQfIQs%2Ff6MdCuFyd9%2BPy01LYxFX2x9lK1kpsqQHo6J9ZBkWzM2jBsT8tURmGxr5gCmvzlxAKbGxPsjAMu2ZjLB%2BvcOlDINmYGJF1D1R5B6BEVH4OY2lNglABe4dBlZev%2BSsRW9eYDSCTomc8%2BfQVVjMvfkZWTpd6e1Wm1cM7oslMkcVpMaanUE1RshL7dRrHlQ1TZ48TmU%2BI0sPL%2BALN287LSBEnsngojFImh35tsdxufD2I%2FnGe2Iedr2Kfe5CKWIphEpNYJKRtByAOqOonQeSuWhTDyUuYdU7DVoFCe%2B30lY0m53Q855u8151F0UkWiH3cRHySceBijyAbgegNt15HYdK%2BrubnQctvwJbrmGE0fgijHxPlxHX9SoJEHlCCpKUCmCqiCo%2BvU9oV3L1feFdiULZr016%2B16aIreBr1nip7MCKgdbOT75KVphn%2F%2F1cWK3GtMnPutVtyKGOctutj1ky4Nw85iksRhEIZwqoZyR0Cdh7XJQnEM%2BaRffApGt%2BH0Nrg6Clq%2BAVoNOy0fdHkYdn2sZQ%2F6ZU%2FTJjcphKmRF3Mobnobep%2B8OhVx7stbkHxn6enHrz88FpwEtzVyW%2BMz9TNBT98ZXjUV2bxqKkceXc4Llao1OlnytYIWcu6bD%2BTNylhx%2FowbPHiXT4DJ%2BPC6dMUFmgmV9Rz59rQSQtqzxnJJfjzvbkh2pXTLp0ublfmFK%2B%2BdPZ%2FmVjqnTDYCVbufPgZXY%2FLi%2FaXp9z359Q9QdgRb1kjLHTIrKLMNnq%2FD5TtLf7anBWcIrD7ksNxDVdZD22KHj1qNSevZK9ByZ%2BmXW%2F8%2F8WThNVBWw8nDGJjcefzPAX%2FD3UHPeqDFbWRpjb6t0dc1qB7AlUeHRW53ln6fCWDaGzJtvU2mrb57EK9Tew0ZJX4i%2FZZkScySDvVFnIQxo3EgOyyiAQo3luYT%2Fi8AAAD%2F%2FwEAAP%2F%2FaYpeRJoEAAA%3D
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectdragnag.com
FingerprintDA:4C:92:8F:5C:67:EE:4F:B6:69:E7:5B:1C:66:9F:48:5B:CD:11:FF
ValidityTue, 28 Nov 2023 10:50:07 GMT - Mon, 26 Feb 2024 10:50:06 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3IyAeDIIoCnMIRMGd7Z7p3pk2h8UYE4L5ZxIJiAfrX8%2BWW93VVHVPb%2Fa0MSA5TsCDx943m6zRIOYqSGRWD7Ig7HiQPWQvXgRzEAI5y8wOLH6H%2Br6q9w7vva%2B%2B2Cj3SYCS7l25aNaU1nQhavqNN2%2BoTJjKNS5dbwR%2B0z%2FVuKGyxfBUY3Vy2P47gR81%2Fbca5yRfMQstP%2FD9wA8aZ5WViVldmKJQ%2BcM4aMZ%2BM2w1gyjEqv3v3ZUeHPUg%2BvvkOJQY%2F2%2F510dQfIQs%2Ff6MdCuFyd9%2BPy01LYxFX2x9lK1kpsqQHo6J9ZBkWzM2jBsT8tURmGxr5gCmvzlxAKbGxPsjAMu2ZjLB%2BvcOlDINmYGJF1D1R5B6BEVH4OY2lNglABe4dBlZev%2BSsRW9eYDSCTomc8%2BfQVVjMvfkZWTpd6e1Wm1cM7oslMkcVpMaanUE1RshL7dRrHlQ1TZ48TmU%2BI0sPL%2BALN287LSBEnsngojFImh35tsdxufD2I%2FnGe2Iedr2Kfe5CKWIphEpNYJKRtByAOqOonQeSuWhTDyUuYdU7DVoFCe%2B30lY0m53Q855u8151F0UkWiH3cRHySceBijyAbgegNt15HYdK%2BrubnQctvwJbrmGE0fgijHxPlxHX9SoJEHlCCpKUCmCqiCo%2BvU9oV3L1feFdiULZr016%2B16aIreBr1nip7MCKgdbOT75KVphn%2F%2F1cWK3GtMnPutVtyKGOctutj1ky4Nw85iksRhEIZwqoZyR0Cdh7XJQnEM%2BaRffApGt%2BH0Nrg6Clq%2BAVoNOy0fdHkYdn2sZQ%2F6ZU%2FTJjcphKmRF3Mobnobep%2B8OhVx7stbkHxn6enHrz88FpwEtzVyW%2BMz9TNBT98ZXjUV2bxqKkceXc4Llao1OlnytYIWcu6bD%2BTNylhx%2FowbPHiXT4DJ%2BPC6dMUFmgmV9Rz59rQSQtqzxnJJfjzvbkh2pXTLp0ublfmFK%2B%2BdPZ%2FmVjqnTDYCVbufPgZXY%2FLi%2FaXp9z359Q9QdgRb1kjLHTIrKLMNnq%2FD5TtLf7anBWcIrD7ksNxDVdZD22KHj1qNSevZK9ByZ%2BmXW%2F8%2F8WThNVBWw8nDGJjcefzPAX%2FD3UHPeqDFbWRpjb6t0dc1qB7AlUeHRW53ln6fCWDaGzJtvU2mrb57EK9Tew0ZJX4i%2FZZkScySDvVFnIQxo3EgOyyiAQo3luYT%2Fi8AAAD%2F%2FwEAAP%2F%2FaYpeRJoEAAA%3D HTTP/1.1
Host: dragnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:22:44 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4c7e698a73b967f26b273ae853b75e19
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/close.png

172.64.109.10

200 OK

9.0 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/close.png
IP
172.64.109.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
PNG image data, 497 x 496, 8-bit/color RGBA, non-interlaced\012- data
Size
9.0 kB (8952 bytes)
Hash
b080cbdd5cc827b5a659a45676c079d4
3502ad6743a3a42dd92ee3cea142616356f47359
c89d28b4be45a7af77493e8f6c76894a7ba86469e5b6733e6ca3cb33eaabcd8f

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:44 GMT
content-type: image/png
content-length: 8952
last-modified: Thu, 19 Oct 2023 15:25:30 GMT
etag: "65314a6a-22f8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 896401
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4kBdOGCkbLi9%2FZ6vfVo29o9ZCNelwYbpw%2FqAUPZCOJv%2BvXS3ocUWUgqqcdus1FSctK7sNTtYmUsYR28qlYWW2x9LAQ7AR0ExfT3w4jLs%2FDAgkknQqflxtMjlXnypGocNGmDspqGwbV1X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830df9133df848c7-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

divedresign.com/pixel/purst?dl=0&th=0&sc=0&rs=5518&rd=5518&fd=224&bv=23.12.v.1&tmpl=136

173.233.137.60

200 OK

0 B

URL GET HTTP/1.1
divedresign.com/pixel/purst?dl=0&th=0&sc=0&rs=5518&rd=5518&fd=224&bv=23.12.v.1&tmpl=136
IP
173.233.137.60:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectdivedresign.com
FingerprintFD:4F:62:E6:DE:53:D1:B9:E0:A6:67:51:14:6D:2C:FE:3F:C1:0E:41
ValidityTue, 28 Nov 2023 08:17:41 GMT - Mon, 26 Feb 2024 08:17:40 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=5518&rd=5518&fd=224&bv=23.12.v.1&tmpl=136 HTTP/1.1
Host: divedresign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 17:22:44 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/bg.jpg

172.64.109.10

200 OK

197 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/bg.jpg
IP
172.64.109.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size
197 kB (196572 bytes)
Hash
0f268ac97ce309645d705ae25e03383b
4c1462adfe8488d6f43f5a56a36b6302a29ac054
9d809e2358a07890e0a8683526070118f7c1056f25e30aee0fdfd020d6377bad

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/img/bg.jpg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:44 GMT
content-type: image/jpeg
content-length: 196572
last-modified: Thu, 19 Oct 2023 15:25:32 GMT
etag: "65314a6c-2ffdc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 413336
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vap8Z1Hrhh8ikjtYsx9m0udSqdoi33UOdyZ76eIA3xpIVnjlVRbHmvEUp3wYez%2BVuFXyuu5FDwOW1snLcafqgM2mdruPLs2ZBXTOpSqyrItCRp0LfBUtcQM9dAPC8SWeD4B41VNWiDai"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830df9134dfc48c7-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

b6f71hwqomrafu683pz507uj2g.hop.clickbank.net/?tid=go1&clickid=755953858162724864

54.148.50.178

307 Temporary Redirect

0 B

URL GET HTTP/2
b6f71hwqomrafu683pz507uj2g.hop.clickbank.net/?tid=go1&clickid=755953858162724864
IP
54.148.50.178:443
ASN
#16509 AMAZON-02

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerAmazon
Subject*.clickbank.net
Fingerprint88:EF:44:B2:DC:CD:71:68:F3:50:F5:FE:A2:2C:66:EB:FE:AF:75:04
ValiditySun, 26 Feb 2023 00:00:00 GMT - Tue, 26 Mar 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?tid=go1&clickid=755953858162724864 HTTP/1.1
Host: b6f71hwqomrafu683pz507uj2g.hop.clickbank.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 307 Temporary Redirect
date: Tue, 05 Dec 2023 17:22:44 GMT
content-length: 0
location: http://futmillionaire.com?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
accept-ch: Sec-Ch-Ua-Full-Version-List, Sec-Ch-Ua-Model, Sec-Ch-Ua-Bitness, Sec-Ch-Ua-Platform-Version, Sec-Ch-Ua-Arch
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-content-type-options: nosniff
strict-transport-security: max-age=0 ; includeSubDomains
x-frame-options: DENY
x-xss-protection: 1 ; mode=block
referrer-policy: no-referrer
set-cookie: q=01.218E8BCB82E4C69BEE3BEC98E409E88DE5236F92205F313248591F22D5D0B86C7F3E694DA50B78019708124C5E1FCCA147AC814C; Path=/; Domain=.clickbank.net; Max-Age=31536000; Expires=Wed, 04 Dec 2024 17:22:44 GMT
p=u993axttQCCNLxBW2WYXBxrR1z6e-rMqUyY3jqjmJSwe7YnRPDZgUwN0w9DGRXfStai6VQBvwQJQxj_px2HkkrahTntX6TeM-2kt62SBiSb61wUmKr_ZJwutYczYd3cK-8nFtP5t_inyjP5aWQdLfrlEZaJZZWTYrjaH-C5I6BJFej4RhaSdFOHO3M7DSXUHGnLYnPp0Vxx_9YBZ9qVHar5Mydg%3D; Path=/; Domain=.clickbank.net; Max-Age=15552000; Expires=Sun, 02 Jun 2024 17:22:44 GMT
server-timing: traceparent;desc="00-35fa93adc70a47aa621b0cdf83ef2d28-d2bed3412bb95d81-01"
access-control-expose-headers: Server-Timing
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:34 GMT
expires: Fri, 29 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 476710
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 03:54:00 GMT
expires: Wed, 04 Dec 2024 03:54:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 48524
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/fonts/gP1RrxsjcxVyin9l9nj2hTd52.woff2

172.64.109.10

200 OK

17 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/fonts/gP1RrxsjcxVyin9l9nj2hTd52.woff2
IP
172.64.109.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17360, version 1.0\012- data
Size
17 kB (17360 bytes)
Hash
70322c317b1f4e2e17dbc6b672f95f5f
f3dff7c50e1aea33814c6aeeca177ae3ff900bfc
3877b522181765adf66ba89bd68d288ecb9f2483b441baab3424646b0c7aaa0a

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/fonts/gP1RrxsjcxVyin9l9nj2hTd52.woff2 HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:44 GMT
content-type: application/octet-stream
content-length: 17360
last-modified: Thu, 19 Oct 2023 15:25:28 GMT
etag: "65314a68-43d0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=za85kz%2BO%2FwTbSFl4AoQVCWyHJn2H7yjFetjCCyYb6H3gQ3X5ZluZdRD%2FKqPdoLmnMyZV3z3NHdttI0VNEl2o%2B2OD38gM5QvqUpSfCJDO2YgYgFG1VQvcM5eLX7bgQpBYPUQIANdSqWCH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830df915b9c548c7-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dragnag.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3IyAeDIIoCnMIRMGd7X%2BzM2MOizEmBPPPJBIQD1ZXVc%2BWW93VVHVPz%2B5pY0BynIAHj71v9o%2FRRcxVkMisHmRA2PEge8hevAjmIARylpkdWPwO9X1V7x3ee199sVEcEg8FPbhxVa9JpehCo%2B7W3rwjU65LW7t2u%2Ba5dfdc7Y5MF8Nztd7kMN13PLdRd9%2BqXRJsRS%2F4rue6nuvVLkojYt1bmKKQ2W7bq7fdeujXvUaInvnv3RYOLHXAu4fkNCQf%2F2%2F510eQbIg0%2Bf6CsCu5zt5%2BPykUzbVBl%2B98lK6kukyRHI%2BxcRCnOzM2tB0T8tUJ6HRn5gC6uzlxgEiOifOHhyjdmclE1N06UhopiBQRfwFldwihhpB0CKbvQfJ9AjCOa9eRJtvXtCnp6hFKJ%2BiYzD1%2FBlmOydyTl5Em351Xsle7pVWRS51a9OIKsjeE7AyRFXvI1xzIcg8s%2FxyS%2F0YWnl9Bmmxet0pD8oMzXiNqcy9ozgfNiM2Hbbc9H9Emn6eBS5nLeCh4YxqRlEPIeAgl%2BqD2JArroJAOithBkTlI%2BEGNNtqx6zbjKA6CVsgYCwLGGq1F3uBB2IpdFGzioY8864OpPphZR2bWsSIf7DdOwxQ%2FwS5XsPwEbD4mzofr6PIKpSAoLUFJCUpJUOYEZbfa4sr6ttrmyhaRN%2Bv%2BrAfVQOedDbql845ICajpb2SH5KVphn%2F%2F1cKKOKhNnLu%2B3%2FYbEWM%2BXWy5cYuGYXMxjtuhF4awsoK0J0Ctg7XJQnEK2aRffYqI7sGqPTB5ErR4A7QcNH0XdHkQtlyspQ%2B7RUfROtMJuK6Q5XPIV50NdUhenYq49OVdCDZaevrx67unvLNgpkJmKnwmfyboqPuDm7okmzd1acmj61kuE7lGJ0u%2BldNczH3zgVgtteGXL9j%2Bw3fZBJiMu7eFza%2FQlMu0Y8m35yXnwlzUhgny42V7R0Q3Crt8vjBpkV258d7Fy0lmhLVSp0NQuf%2FpYzA5Ji9uL02%2F79mvf4A0Q5iiQlKMyKwg9R5Ytg6bjZb%2BDKYFqwmMOuZEmYOyqAbGj44flRwT%2F9krUGK09Mvd%2F595svAaaFTBiuMYIjF6%2FM8Rf8PeR8c4oPk9pEmFrqnQVRWo6sMWJwd5ZkZLv88ERMoZRMo4m5Ey6sFRvFYe1BpeKFpRq8k4jwTjXtMPWoHr%2BpyHzbbw2sjtWOhP2L8AAAD%2F%2FwEAAP%2F%2FfYLQopoEAAA%3D

192.243.59.20

200 OK

7 B

URL GET HTTP/1.1
dragnag.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3IyAeDIIoCnMIRMGd7X%2BzM2MOizEmBPPPJBIQD1ZXVc%2BWW93VVHVPz%2B5pY0BynIAHj71v9o%2FRRcxVkMisHmRA2PEge8hevAjmIARylpkdWPwO9X1V7x3ee199sVEcEg8FPbhxVa9JpehCo%2B7W3rwjU65LW7t2u%2Ba5dfdc7Y5MF8Nztd7kMN13PLdRd9%2BqXRJsRS%2F4rue6nuvVLkojYt1bmKKQ2W7bq7fdeujXvUaInvnv3RYOLHXAu4fkNCQf%2F2%2F510eQbIg0%2Bf6CsCu5zt5%2BPykUzbVBl%2B98lK6kukyRHI%2BxcRCnOzM2tB0T8tUJ6HRn5gC6uzlxgEiOifOHhyjdmclE1N06UhopiBQRfwFldwihhpB0CKbvQfJ9AjCOa9eRJtvXtCnp6hFKJ%2BiYzD1%2FBlmOydyTl5Em351Xsle7pVWRS51a9OIKsjeE7AyRFXvI1xzIcg8s%2FxyS%2F0YWnl9Bmmxet0pD8oMzXiNqcy9ozgfNiM2Hbbc9H9Emn6eBS5nLeCh4YxqRlEPIeAgl%2BqD2JArroJAOithBkTlI%2BEGNNtqx6zbjKA6CVsgYCwLGGq1F3uBB2IpdFGzioY8864OpPphZR2bWsSIf7DdOwxQ%2FwS5XsPwEbD4mzofr6PIKpSAoLUFJCUpJUOYEZbfa4sr6ttrmyhaRN%2Bv%2BrAfVQOedDbql845ICajpb2SH5KVphn%2F%2F1cKKOKhNnLu%2B3%2FYbEWM%2BXWy5cYuGYXMxjtuhF4awsoK0J0Ctg7XJQnEK2aRffYqI7sGqPTB5ErR4A7QcNH0XdHkQtlyspQ%2B7RUfROtMJuK6Q5XPIV50NdUhenYq49OVdCDZaevrx67unvLNgpkJmKnwmfyboqPuDm7okmzd1acmj61kuE7lGJ0u%2BldNczH3zgVgtteGXL9j%2Bw3fZBJiMu7eFza%2FQlMu0Y8m35yXnwlzUhgny42V7R0Q3Crt8vjBpkV258d7Fy0lmhLVSp0NQuf%2FpYzA5Ji9uL02%2F79mvf4A0Q5iiQlKMyKwg9R5Ytg6bjZb%2BDKYFqwmMOuZEmYOyqAbGj44flRwT%2F9krUGK09Mvd%2F595svAaaFTBiuMYIjF6%2FM8Rf8PeR8c4oPk9pEmFrqnQVRWo6sMWJwd5ZkZLv88ERMoZRMo4m5Ey6sFRvFYe1BpeKFpRq8k4jwTjXtMPWoHr%2BpyHzbbw2sjtWOhP2L8AAAD%2F%2FwEAAP%2F%2FfYLQopoEAAA%3D
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectdragnag.com
FingerprintDA:4C:92:8F:5C:67:EE:4F:B6:69:E7:5B:1C:66:9F:48:5B:CD:11:FF
ValidityTue, 28 Nov 2023 10:50:07 GMT - Mon, 26 Feb 2024 10:50:06 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3IyAeDIIoCnMIRMGd7X%2BzM2MOizEmBPPPJBIQD1ZXVc%2BWW93VVHVPz%2B5pY0BynIAHj71v9o%2FRRcxVkMisHmRA2PEge8hevAjmIARylpkdWPwO9X1V7x3ee199sVEcEg8FPbhxVa9JpehCo%2B7W3rwjU65LW7t2u%2Ba5dfdc7Y5MF8Nztd7kMN13PLdRd9%2BqXRJsRS%2F4rue6nuvVLkojYt1bmKKQ2W7bq7fdeujXvUaInvnv3RYOLHXAu4fkNCQf%2F2%2F510eQbIg0%2Bf6CsCu5zt5%2BPykUzbVBl%2B98lK6kukyRHI%2BxcRCnOzM2tB0T8tUJ6HRn5gC6uzlxgEiOifOHhyjdmclE1N06UhopiBQRfwFldwihhpB0CKbvQfJ9AjCOa9eRJtvXtCnp6hFKJ%2BiYzD1%2FBlmOydyTl5Em351Xsle7pVWRS51a9OIKsjeE7AyRFXvI1xzIcg8s%2FxyS%2F0YWnl9Bmmxet0pD8oMzXiNqcy9ozgfNiM2Hbbc9H9Emn6eBS5nLeCh4YxqRlEPIeAgl%2BqD2JArroJAOithBkTlI%2BEGNNtqx6zbjKA6CVsgYCwLGGq1F3uBB2IpdFGzioY8864OpPphZR2bWsSIf7DdOwxQ%2FwS5XsPwEbD4mzofr6PIKpSAoLUFJCUpJUOYEZbfa4sr6ttrmyhaRN%2Bv%2BrAfVQOedDbql845ICajpb2SH5KVphn%2F%2F1cKKOKhNnLu%2B3%2FYbEWM%2BXWy5cYuGYXMxjtuhF4awsoK0J0Ctg7XJQnEK2aRffYqI7sGqPTB5ErR4A7QcNH0XdHkQtlyspQ%2B7RUfROtMJuK6Q5XPIV50NdUhenYq49OVdCDZaevrx67unvLNgpkJmKnwmfyboqPuDm7okmzd1acmj61kuE7lGJ0u%2BldNczH3zgVgtteGXL9j%2Bw3fZBJiMu7eFza%2FQlMu0Y8m35yXnwlzUhgny42V7R0Q3Crt8vjBpkV258d7Fy0lmhLVSp0NQuf%2FpYzA5Ji9uL02%2F79mvf4A0Q5iiQlKMyKwg9R5Ytg6bjZb%2BDKYFqwmMOuZEmYOyqAbGj44flRwT%2F9krUGK09Mvd%2F595svAaaFTBiuMYIjF6%2FM8Rf8PeR8c4oPk9pEmFrqnQVRWo6sMWJwd5ZkZLv88ERMoZRMo4m5Ey6sFRvFYe1BpeKFpRq8k4jwTjXtMPWoHr%2BpyHzbbw2sjtWOhP2L8AAAD%2F%2FwEAAP%2F%2FfYLQopoEAAA%3D HTTP/1.1
Host: dragnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:22:44 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b52d1be4e0ff2bbe06ac466f8f24b662
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/style.css

172.64.109.10

200 OK

1.0 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/style.css
IP
172.64.109.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text
Size
1.0 kB (1030 bytes)
Hash
d33c62ba093179032ae454a879d99dd8
e6695c9d7c20dd4c70af4591eeab323013b10793
41e38913ec982b1d9f0c7f756b640f7320249b78a4a942e691380a678b6d72f4

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:44 GMT
content-type: text/css
last-modified: Thu, 19 Oct 2023 15:30:48 GMT
etag: W/"65314ba8-d55"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QjzSJhY6uNPDAuufA6muPAGbpU9gRvYx%2FZTZLbVvk45dtlEPxIDDfWZja6KzeTA003AwrzPB3PxvVVznl14wGzSuf27muqYy21jfctB8n%2Fd87%2FjcONdFAumBGtnUrll8nBAbDBOdzhjM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830df912fd9248c7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-610794078

142.250.74.168

200 OK

72 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=AW-610794078
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (3026)
Size
72 kB (72454 bytes)
Hash
4d1352b6976facad31562bac58a97c10
ef84def684f8e4ec845195d34bb2767c55976371
f9b78539e802982937918494106df4390cf57647ecdb4043df7b60f21bbe849d

HTTP Headers

GET /gtag/js?id=AW-610794078 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 17:22:45 GMT
expires: Tue, 05 Dec 2023 17:22:45 GMT
cache-control: private, max-age=900
last-modified: Tue, 05 Dec 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72454
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/js/script.js

172.64.109.10

200 OK

57 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/js/script.js
IP
172.64.109.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
Unicode text, UTF-8 text
Size
57 kB (57229 bytes)
Hash
b64985705b68c11b9b30d7ca43e1f095
8b5d6dc7edce43d08791bbf7aec72e15dabe528d
29ad23b2ed8670b41c45429c724b7939b4b0643db9d555b79868337aaa8afca0

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:44 GMT
content-type: application/javascript
last-modified: Thu, 19 Oct 2023 15:25:32 GMT
etag: W/"65314a6c-f3c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ncxuo07VzSaAE7gDdYGAD9iNPBpX0a87q3jnYs3t3gIbVx7v1OukWLmF3AZIx%2BsKMu4uOCOGdAK81m%2FcYu%2Bbs8F6bmOzVt8cpJhH8yJI53B7TKhN5Q5nl1v58jLhj4mTCmRH1P%2B6i6uP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830df912ed8848c7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

futmillionaire.com/wp-content/plugins/popup-builder/public/css/theme.css?ver=4.1.15

172.67.208.25

200 OK

41 kB

URL GET HTTP/3
futmillionaire.com/wp-content/plugins/popup-builder/public/css/theme.css?ver=4.1.15
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (4774)
Size
41 kB (40991 bytes)
Hash
e6fa0ab1e511473032e374f0ec4fc1ec
002f24a50270e1c847d21b8530db933dcbdc499f
96344c48276b6477946734dfa6f60c187fa33d371c0f4bc2156edc0e2868617c

HTTP Headers

GET /wp-content/plugins/popup-builder/public/css/theme.css?ver=4.1.15 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: text/css
last-modified: Fri, 29 Sep 2023 15:49:30 GMT
etag: W/"119f9-606815eb91680-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2781
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f9FJBtMPJXSImRGq2jSXsi77VF%2BlTbNiWPe1F6Bcx6iqVqR43sNY%2F2z5G9jAI4EPzyj8DYQuIcbTtoagzkdpj0%2Ba0mNFCBXrdoWesj2%2F7jBcjwr%2B7LcyYH3kzFZf5A1Ml8O52sA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d6e3f56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/themes/optimizePressTheme/pages/marketing/1/style.min.css?ver=2.5.18

172.67.208.25

200 OK

18 kB

URL GET HTTP/3
futmillionaire.com/wp-content/themes/optimizePressTheme/pages/marketing/1/style.min.css?ver=2.5.18
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
Unicode text, UTF-8 text, with very long lines (51504), with no line terminators
Size
18 kB (18469 bytes)
Hash
8cc0b2152e3e186e48f71dca553ef79b
8bcb318df19bc69f870e9ca79d23718c1dbbc586
20655e4b2a9373849d200fc9994e6ba1dc2883166c74f0288736a06353aceba4

HTTP Headers

GET /wp-content/themes/optimizePressTheme/pages/marketing/1/style.min.css?ver=2.5.18 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: text/css
last-modified: Wed, 27 Sep 2023 23:21:21 GMT
etag: W/"c934-6065f72fb5e40-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2781
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L5oHajh3NbAtKP5su9RhDiu0GQVop%2BXwMJGcMo%2FuSvbdQC634IQktNKWDThb%2FDgL6aN%2BYpoBXeGTSEPsDTtYUhl%2FhanhP43bgCFAuYH%2BvXReaMCuoURu5LW6K7Q2oZ1fe%2FHULpM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d6e4656c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

172.67.208.25

200 OK

35 kB

URL GET HTTP/3
futmillionaire.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (65447)
Size
35 kB (34821 bytes)
Hash
02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Mon, 30 Aug 2021 19:56:52 GMT
etag: W/"15db1-5cacc3bfb0900-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2779
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JnuBotiXXsmGEA3aLgp5uFg3mEjelg3WwD%2FwB0D1HJ8Mn%2FWhoBmGMcfDCWl739SDUhp7NxsR7L%2BDC5GpwkfyjJE5Mk0ZVxPgmZRq4DvKxGbpT7RZwdvzMJ4g29zokUHUtPlWlgM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d7e5856c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2023/09/1.png

172.67.208.25

200 OK

34 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2023/09/1.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 658 x 380, 8-bit colormap, non-interlaced\012- data
Size
34 kB (33948 bytes)
Hash
9c00a52762597b548d4e2960d4443e1f
88205527d932e6629efa7fefa2720deaf61cea83
33439fdff4c088dca1ad450322b7f36c0452b5d171513327320f4eb077268332

HTTP Headers

GET /wp-content/uploads/2023/09/1.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 33948
last-modified: Fri, 29 Sep 2023 15:58:34 GMT
etag: "849c-606817f25de80"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2776
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O1RR2MNqiLSPer5iXmniLjYEubjOTFXp9rTdoJpERq9VKMxaLoXPfLKTfBlCapppljOf859wzuUBM7%2BoBXgb8V67N%2BkivsPv7dDpVDN%2FWo5clqOqLk4vWBajvPo6UcMDL3%2FBmRk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91ed80b56c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/css/ea-style.css?ver=2.2.4

172.67.208.25

200 OK

70 kB

URL GET HTTP/3
futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/css/ea-style.css?ver=2.2.4
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text
Size
70 kB (69854 bytes)
Hash
c5c4f352b18a7849f3df3476ad968118
7dacdd58a208dc4bf8a1b1680944aea34c39cda8
67a34585ae3fa7c98317d75ffd0d5bb6a1b6be5d29b9203bce56f2d9c33f64c8

HTTP Headers

GET /wp-content/plugins/easy-accordion-free/public/assets/css/ea-style.css?ver=2.2.4 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:45 GMT
content-type: text/css
last-modified: Fri, 29 Sep 2023 15:49:01 GMT
etag: W/"b19-606815cfe9540-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2781
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ea8AElmrfSok%2FHdM126ILi4ytkqadmaOmegmZAnr3%2F3aTZsbLy3%2F2IwJvHsAsz7Rzal45XZhcg0HlMF2E%2BbNiVSywqwgtz73NmBbptcIXKJVXOaK22YGUf1s%2BxPgVzBYRWrOwZA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d6e3a56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/themes/OptimizePress/js/slick-theme.css

172.67.208.25

200 OK

14 kB

URL GET HTTP/3
futmillionaire.com/wp-content/themes/OptimizePress/js/slick-theme.css
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
Unicode text, UTF-8 text
Size
14 kB (13795 bytes)
Hash
f9faba678c4d6dcfdde69e5b11b37a2e
81a434f94f2b1124f3232bb86f2944f82fb23ac0
7adaf08052c6a6a0f8a0d0055b4f191fd07389fe41c972b69573472b2ecb406a

HTTP Headers

GET /wp-content/themes/OptimizePress/js/slick-theme.css HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:45 GMT
content-type: text/css
last-modified: Wed, 27 Sep 2023 23:21:21 GMT
etag: W/"c49-6065f72fb5e40-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2782
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=67rjP1uk8Rzjyx53%2F3dpyLZEawBYGz8%2BYXcvEDYBjNZkQdCi%2BQh9o3jjfPyNqa6pXh%2F2WLCIgpF5nRavzvLMUE7qDXwQwo74w3aSM%2FVMXSFEjo4BuEnbsIMD70QAB0V5MYxTVpM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d3df556c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2023/09/video3.png

172.67.208.25

200 OK

6.2 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2023/09/video3.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 241 x 236, 8-bit colormap, non-interlaced\012- data
Size
6.2 kB (6242 bytes)
Hash
958041e852b7b8609c61ee1940231b2b
4e8426b08e66331e843d2fa470c0fcf9d2283255
867a36e9fb207b20b866843639a579cf9c38a78f6c5066f3174e0a6d5a1259bc

HTTP Headers

GET /wp-content/uploads/2023/09/video3.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 6242
last-modified: Fri, 29 Sep 2023 16:01:56 GMT
etag: "1862-606818b302500"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2776
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Rs3Nuo7a6iMFghUXkWAQ%2Fg1Xaqr6858Tl5XwneHWIY70Yxf3gkcy8E3LM35th24vULHWjugryFFxXjm9nrY8cPpcsyO7dwJrSAB6xP2izDS%2F5TaxkBKPDojIQuvS65b3VYeEkw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f085156c1-OSL
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Inter:wght@100;300;400;500;600;700;800;900&display=swap

173.194.222.95

200 OK

19 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Inter:wght@100;300;400;500;600;700;800;900&display=swap
IP
173.194.222.95:443
ASN
#15169 GOOGLE

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT

File type
gzip compressed data, max compression\012- data
Size
19 kB (19117 bytes)
Hash
7805b4ee2fe5d57194129ea1a290934d
24cb5b70051134f23cad83959f228dc7e84aeb5b
48598a26ee31d7f49eb6a58cb35050c9c85b8ae8289d0de6a21aca71f4fc9dae

HTTP Headers

GET /css2?family=Inter:wght@100;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 17:22:45 GMT
date: Tue, 05 Dec 2023 17:22:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

futmillionaire.com/wp-content/uploads/2022/09/icon112.png

172.67.208.25

200 OK

769 B

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/icon112.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 60 x 60, 8-bit colormap, non-interlaced\012- data
Size
769 B (769 bytes)
Hash
cfecc6d903fc03f078b98bf2eb8cdbc7
92e0a1de9bc062073909339b7d724ccad6192b5b
1abd1a9dba19cf0ee13cf0475fda87cbf410d9c84e2d0261136539ff88a0d6ad

HTTP Headers

GET /wp-content/uploads/2022/09/icon112.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 769
last-modified: Sat, 24 Sep 2022 05:02:34 GMT
etag: "301-5e96533d32e80"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZS4wfrDRBxlqfFKcIe7DFveBjn5uIPkwLvGDor1el92ShQ4nIRyjQlFSidod0kPH5au8k4KxRkxP%2Bv%2F%2FqXYOGcB3hkMKRT2FFkKNMbnDjc4mJpC9K4lCpmihT7FGkOMDuKPBw%2B4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f085656c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/themes/OptimizePress/js/slick.css

172.67.208.25

200 OK

1.3 kB

URL GET HTTP/3
futmillionaire.com/wp-content/themes/OptimizePress/js/slick.css
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text
Size
1.3 kB (1256 bytes)
Hash
f38b2db10e01b1572732a3191d538707
a94a059b3178b4adec09e3281ace2819a30095a4
de1e399b07289f3b0a8d35142e363e128124a1185770e214e25e58030dad48e5

HTTP Headers

GET /wp-content/themes/OptimizePress/js/slick.css HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:45 GMT
content-type: text/css
last-modified: Wed, 27 Sep 2023 23:21:21 GMT
etag: W/"6f0-6065f72fb5e40-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2782
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tzh%2FzL%2FFynpeKQVlLBQ9xSv7uSzEBUN5yqKivPGD9cn3Cq3EPS2ywcVK92neC4yzdW%2BsRxOwxxT9mFkAqi1l1ASLvzQGxKJxRkrCMWuP3WkBY3JIN1KjwUK5iKSGUCKU3zV%2FmjQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d1dd056c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

172.67.208.25

200 OK

5.1 kB

URL GET HTTP/3
futmillionaire.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (11126)
Size
5.1 kB (5061 bytes)
Hash
79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Mon, 30 Aug 2021 19:56:52 GMT
etag: W/"2bd8-5cacc3bfb0900-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2779
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1cj8Cq6koLoNQg8OsblUWFF2jrafwyDMHUxitV6SUNSFIbmebOb0mER8z7rgnoxX7RO7vqlYq1lsgTiBF1ZVdMDy2FHSGunx5%2FKSTGxmmliFpvHO8hNHGMtYPpCuqAtwmcMzz8w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d7e5956c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/op-video-all.min.js?ver=2.5.18

172.67.208.25

200 OK

38 kB

URL GET HTTP/3
futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/op-video-all.min.js?ver=2.5.18
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (32003)
Size
38 kB (37492 bytes)
Hash
8b5ca292fe428462a64cb76515472f2e
b2a9b7e79828743056382a62bf4fa18f7caa7481
e8644cbf656efae1c6683425d6a7ad875f48f01927a3744e403f59f1fb9d831c

HTTP Headers

GET /wp-content/themes/optimizePressTheme/lib/js/op-video-all.min.js?ver=2.5.18 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Wed, 27 Sep 2023 23:21:20 GMT
etag: W/"12f42-6065f72ec1c00-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2779
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qmvJ9UNupnw0oUPd2Q6v6ns0RcO%2FYh9DGW6vG6j1nH%2FT%2BBQbc%2FWVlEgO%2B%2BmXynUsfkTnQWD7IpyhhZ337fKkvgHAu%2FOwe5K5ZmYOLI9gxkaDhWKS5HpBFiZqXZS%2B8jg9IS5hwtY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d9e7456c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/themes/OptimizePress/js/slick.js

172.67.208.25

200 OK

17 kB

URL GET HTTP/3
futmillionaire.com/wp-content/themes/OptimizePress/js/slick.js
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text
Size
17 kB (17031 bytes)
Hash
5f8f4aed010e1afe499184d8197309f9
097f6a1b4f115e9b6ebefa70d76d830733bcc9ba
0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4

HTTP Headers

GET /wp-content/themes/OptimizePress/js/slick.js HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:45 GMT
content-type: application/javascript
last-modified: Wed, 27 Sep 2023 23:21:21 GMT
etag: W/"15b7b-6065f72fb5e40-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2780
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e8NV2kQX2GF0CLIbKlydQZ4qwc7usnW5bmVaeg0LIF%2BOIvCHFEFrLXGSa2mK4J304oIq7mUypEQWOSNTamPUNO0SUKYFtGMD%2ByN3yFgS6OWKKBtKvqIHLZruzoMr0a4nP0r7Phs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d4e0e56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/themes/optimizePressTheme/lib/modules/blog/video/flowplayer/flowplayer.min.js?ver=2.5.18

172.67.208.25

200 OK

52 kB

URL GET HTTP/3
futmillionaire.com/wp-content/themes/optimizePressTheme/lib/modules/blog/video/flowplayer/flowplayer.min.js?ver=2.5.18
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (32028)
Size
52 kB (51476 bytes)
Hash
01babc219c65867bba1f46db4ae8f617
c3523ac7371bd59eea037a2c06a0fe968be424b0
d96606ab0f5f5514c6a04e1e7959640d6851a62e495688b648ab2e9d1347b755

HTTP Headers

GET /wp-content/themes/optimizePressTheme/lib/modules/blog/video/flowplayer/flowplayer.min.js?ver=2.5.18 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Wed, 27 Sep 2023 23:21:20 GMT
etag: W/"248ba-6065f72ec1c00-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2780
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LTrPObpZp24rBmJJKDbUskfFgrnLwLbQLHOHyCS92cZZZlnwRDaKObYNZiAC6wkCIDWWYVfVErE0DwBOvicKObyvzJNMG%2BIBxMJqeQ8lShPGGydN4OX09somfJ0KQxa00iWehfI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d9e7356c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/op-jquery-base-all.min.js?ver=2.5.18

172.67.208.25

200 OK

130 kB

URL GET HTTP/3
futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/op-jquery-base-all.min.js?ver=2.5.18
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (32006)
Size
130 kB (130343 bytes)
Hash
205efe9b5a59f92d25c23e298d9f2b81
25184b5918a6f38b7c7bd8f68b0fc2e6cc440114
fee229982b7fc656f15dcd65b57a0ad868d5a4aef350eff7828a92de4044ef05

HTTP Headers

GET /wp-content/themes/optimizePressTheme/lib/js/op-jquery-base-all.min.js?ver=2.5.18 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Wed, 27 Sep 2023 23:21:20 GMT
etag: W/"ce69-6065f72ec1c00-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2780
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6zIAyKlMYuZ%2BRwy0P8ftIGnl2y6di3m%2BsMoN2agZHEtLNtbqwxbUUWGyHC6em98pKXd%2B77NWrri%2F0CJmpK7SqHOJqFAdOkjC%2FARaWLm9I2z%2FmkRMc2Dc%2BJaWaIwvXUF0Y4TNks4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d7e5a56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.yourwebbars.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/index.html

172.67.74.218

200 OK

87 kB

URL GET HTTP/2
cdn.yourwebbars.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/index.html
IP
172.67.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49
ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
HTML document text\012- HTML document, ASCII text
Size
87 kB (86859 bytes)
Hash
0b31b4787428aed1758340498c5adc2d
099eeca7d57afb5f7da277ed67501452af84038a
7fa2dfa1fa8324a91aefb94372941496775b5da5060ca503565fea68dbec69e6

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:44 GMT
content-type: text/html
last-modified: Thu, 19 Oct 2023 15:25:25 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 764115
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EIqs4Y%2F%2BgO1uR2QcrK0qCu3ui8yMJBQcxOJdil6lXksjxQ6s9%2B9LzPIsgvYdcKaCJhkTi3hqxMF4hRfZfdAP7uULBETEayVtBlaRirv%2BWnCCZB1W4k9xQN72%2FLrjz3ze6rjS3Fw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830df911e942569d-OSL
content-encoding: br
X-Firefox-Spdy: h2

futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/js/collapse.min.js?ver=2.2.4

172.67.208.25

200 OK

27 kB

URL GET HTTP/3
futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/js/collapse.min.js?ver=2.2.4
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (9999), with no line terminators
Size
27 kB (26578 bytes)
Hash
fd24407580f43304a716438b444741a2
a87c9a3c0565a8c9d49528a5093538184376fa84
24b4e5b4ff6e7169a3bd73f859f615a3d6e6b785542c8fc080e73b0102ebf4b5

HTTP Headers

GET /wp-content/plugins/easy-accordion-free/public/assets/js/collapse.min.js?ver=2.2.4 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Fri, 29 Sep 2023 15:49:01 GMT
etag: W/"270f-606815cfe9540-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2779
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=loPxnwync%2FsQuCiKB%2BMSGuZkYdW75HE27keWM741bwbqaLQYwcwoPysGhbGj7r7ouqRrqdJgZ7FXZHzmNJ8oeZPKJABetZY11zk17l6nVq9mZl2y8p1kg1y9VxDq91Sbw%2BlLJkU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d9e7556c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/plugins/popup-builder/public/js/Popup.js?ver=4.1.15

172.67.208.25

200 OK

44 kB

URL GET HTTP/3
futmillionaire.com/wp-content/plugins/popup-builder/public/js/Popup.js?ver=4.1.15
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (5515)
Size
44 kB (44522 bytes)
Hash
aad76345b176f2bdea7082ce27717aba
1f3c44bf0b8169741bc5b3e71e83e05d07b59338
113500b83a965388babfdb15b9740741f750db1890f6fa3677cf1bcaddd96089

HTTP Headers

GET /wp-content/plugins/popup-builder/public/js/Popup.js?ver=4.1.15 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Fri, 29 Sep 2023 15:49:30 GMT
etag: W/"981c-606815eb91680-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2778
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ytpXf3KJKAZ1th%2FQkGdpq5TGRjYcETVyBulAZ8EmpoxeoXAeXLiFV45FiDHc98T0aGPPqYhTiKOvnxOMMKPSfvhH5lb7pG7WlrcZUJ4cE8W%2F8BF1VboC16wzUbFpjqDf44ejqug%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91dae8456c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

172.67.208.25

200 OK

47 kB

URL GET HTTP/3
futmillionaire.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
Unicode text, UTF-8 text, with very long lines (16323)
Size
47 kB (46554 bytes)
Hash
38400d9c6ba7d41239fccfaa9f523558
fe9a1548961441ce82e5399444f2be5408d2644c
293913879d30bab7499013e935009f5183facbddd63bfc9656a859622590b80b

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Mon, 30 Aug 2021 19:56:51 GMT
etag: W/"4056-5cacc3bebc6c0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2778
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3rz5PNPJ2vEXqV2Lwo4%2B1ZY6nPBVMh1epQE3qadKV76%2B0lZ1u6Ft774IVH9Kixhq%2FxxFAQ%2B2hGHTm90wMzmEDKawMVfNhHGjrrT23TzTclh%2Fx%2Frhc8HiuuTudsUZ6YRNlN8zASQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91ddec656c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79

172.67.208.25

200 OK

4.9 kB

URL GET HTTP/3
futmillionaire.com/wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
data
Size
4.9 kB (4903 bytes)
Hash
cbad4ec75d85df02210165d43d02461b
5c05cfb56bfc7334715f063d596761bab76aa91a
dceda745a0fb58233a95eff6d10796026df6792cb960cdf675eb7b8a6750a2d2

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Mon, 30 Aug 2021 19:56:51 GMT
etag: W/"268a-5cacc3bebc6c0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2777
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1s%2BxsSApPC5rMELsMLsliadHhGumXiwgX8hbn3y11UJtHxJ8KZ9w%2BxLeO%2BHvGoid2egagCn7bLSZl87FmtsnVZQ86bNd4Oswnl9YQPTYXVKlrH8TNoqjDc3O4uEVp0oPAQbnBPo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91deec956c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/plugins/popup-builder/public/js/PopupConfig.js?ver=4.1.15

172.67.208.25

200 OK

2.5 kB

URL GET HTTP/3
futmillionaire.com/wp-content/plugins/popup-builder/public/js/PopupConfig.js?ver=4.1.15
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (2826)
Size
2.5 kB (2536 bytes)
Hash
c7a493f7e281b7a2c5fe182a44ba8367
11c971b79a4c8ea2dd1b6b4d7b33192275054f44
3fe8c79d67b21039a5d059ef40761950fb76e1d17933d61509f7eb3c68f5aeeb

HTTP Headers

GET /wp-content/plugins/popup-builder/public/js/PopupConfig.js?ver=4.1.15 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Fri, 29 Sep 2023 15:49:30 GMT
etag: W/"177a-606815eb91680-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2778
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6bx9xSeMyBIDgnwe5XL6i5fHsaJinXNrVvmbGdV4qtEeSZIcTnAU2H8L1D0F9FXKCX6YilGyZv59HWj0ENgCL%2FZDs7HwV3frPRd62%2Fvd8jCfjv%2FUQKZW7Rsjq4JsOzU4fXyGM%2Bs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91dae8756c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2023/09/8-scaled.jpg

172.67.208.25

200 OK

110 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2023/09/8-scaled.jpg
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2560x1544, components 3\012- data
Size
110 kB (110163 bytes)
Hash
15d2229db4f58dbad47a6cbbc717ff6a
67d787afc80b92cd361f918c6f840a2ecfe9a4a7
6a17803382c410e19ee3cbaafa9133d6f17417969321818f4da29bdc52cdc61d

HTTP Headers

GET /wp-content/uploads/2023/09/8-scaled.jpg HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/jpeg
content-length: 110163
last-modified: Fri, 29 Sep 2023 16:17:14 GMT
etag: "1ae53-60681c1e7b680"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zVMJAUM3Wvc6xF6xa4lgcAU48cUoGpjbvMVz01QtJD%2FvoAyV4GnngKbJAVt8Ht3Nj26qVphv%2BiYNDKp7TXacvMLNbJYK%2BgeLY9mtdH6uNIyVccLXcIUZyp0mD%2FVNVMU4%2BPBQGn0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58b856c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.8

172.67.208.25

200 OK

37 kB

URL GET HTTP/3
futmillionaire.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.8
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
Unicode text, UTF-8 text, with very long lines (33376)
Size
37 kB (37309 bytes)
Hash
43c4bc05b5e3b0a6684a7c3a52e63590
ed6d95d525a710a82e8b8583e9ba7bce3b2a4722
9110fc122dda3067c424d9b8ff7747e2030b0bd9298f69a3683d399ad3373a6a

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.8 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:45 GMT
content-type: text/css
last-modified: Mon, 30 Aug 2021 19:56:52 GMT
etag: W/"13abe-5cacc3bfb0900-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2781
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MUUP9PJ43Kh50A3OQ9EJ7hYrk0JQKWm%2B%2FZNfpUm0JpC3PsggXNbRG9VN%2BuNh2ICWijZJgr2NxXf8BwFjqdPPxINtVOBeNzVAN%2BchNQ2%2B8IWhVIY%2FW6oyPYyqAye2IhcNT5ZcN3Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d5e2356c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/css/font-awesome.min.css?ver=2.2.4

172.67.208.25

200 OK

26 kB

URL GET HTTP/3
futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/css/font-awesome.min.css?ver=2.2.4
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (30837)
Size
26 kB (25467 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /wp-content/plugins/easy-accordion-free/public/assets/css/font-awesome.min.css?ver=2.2.4 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:45 GMT
content-type: text/css
last-modified: Fri, 29 Sep 2023 15:49:01 GMT
etag: W/"7918-606815cfe9540-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2781
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Irxu%2FvpHnuz7z3QzCZEkWyHhNb08aepdJhW1IosR5ekKcE8iJjVRYHfvBdrI0ql5v8sa6DhmpBsRI8XvCcOEhVvAtU2HGMNq9BEiARQHbNYDWnreOUboO2QMUTSoIor9%2BtJMuvQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d6e3556c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/image11.png

172.67.208.25

200 OK

28 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/image11.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 369 x 350, 8-bit colormap, non-interlaced\012- data
Size
28 kB (28034 bytes)
Hash
28883ccd56289f75ccce1930340ec906
f12b1e4fde12704de01e195bfa6721d38ca2ed29
582b711d51ac193ec11b9a71b7eafd38fcecb7826368cd7dc2d48d580c20c23c

HTTP Headers

GET /wp-content/uploads/2022/09/image11.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 28034
last-modified: Fri, 23 Sep 2022 06:19:16 GMT
etag: "6d82-5e9522848c100"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SQx0Q3XiL8qUYWmw5HEMwDtW6%2FzofFXMlYVdJQaUBccb9uBlCjifG0pcKy4sf1TUwrurokxUPllNuTNjuX%2Fmkr8b5TIeA3fjyifm90dTrxa54I6muFu954AF6mpO14J%2Bx0Q9%2Bg4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58bd56c1-OSL
alt-svc: h3=":443"; ma=86400

www.vugla.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

192.185.106.252

200 OK

65 kB

URL GET HTTP/2
www.vugla.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
gzip compressed data, from Unix\012- data
Size
65 kB (64956 bytes)
Hash
6963b5032564400c3203a4a3d05eec40
dcb26266a763759a107167180adc1c4acf6bf2a7
d2dec4ab1a6caa50913da31a013431f037a51bffdd6915a0cb75e09d1e2fd312

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: application/javascript
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

futmillionaire.com/wp-content/uploads/2022/09/payment.png

172.67.208.25

200 OK

9.2 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/payment.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 1183 x 88, 8-bit colormap, non-interlaced\012- data
Size
9.2 kB (9208 bytes)
Hash
6c9b96391a18c2098cfeece60c05d54e
1d7d86dae61ff1edf11d4dbc71e6ace790fa9b88
482f8718ecbea16b30bd44355f3cb7bcb9917007989ec3766f4ce339f3af3de4

HTTP Headers

GET /wp-content/uploads/2022/09/payment.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 9208
last-modified: Wed, 28 Sep 2022 12:36:55 GMT
etag: "23f8-5e9bc041287c0"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o2hpTehueFMXDBxW%2FGbK0Gs9NavOUkDp9TOrRwYBy1Bnwaxi0Nymm4xhS2Vwp8HD4E5SaQiX%2F52fzHqa4An7g6eBf97eLpgj0HwSqby0MDL2rokIktzzJR%2FFDy7e6mUFO3UI9gU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58c056c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/image-17.png

172.67.208.25

200 OK

109 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/image-17.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 642 x 467, 8-bit colormap, non-interlaced\012- data
Size
109 kB (109373 bytes)
Hash
867db048a2ee9789022abb95198deed1
416329b30b210bed219241aaba18f94e759f5b8d
b4f2fc4db1615234e22c770522c625ce10917bdc11577ccdfe732c483b7ce51f

HTTP Headers

GET /wp-content/uploads/2022/09/image-17.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 109373
last-modified: Fri, 23 Sep 2022 06:19:50 GMT
etag: "1ab3d-5e9522a4f8d80"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7rkr1PQxK0b2Kd0EmTVMHyhH%2Fsr7NAohedemvjZH6l5BZ7SIyi7q4DYYdJcLuMqE1LC2AL8eEnczwy5HYfOrKHEx21VNhHcSwkyp308a5pbL8Mr8jYzHXy7xN7mVtZO5w%2B%2BexS0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58c256c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/fifa-logo.png

172.67.208.25

200 OK

17 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/fifa-logo.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 258 x 205, 8-bit colormap, non-interlaced\012- data
Size
17 kB (17090 bytes)
Hash
21074aa5f8c117ebb5749d2d19c09dc6
a9818a795dfb7e184aa639fa7b42594d10dd3f7e
1ac4e496510da23d73e0bad226d033675b9f479d981e4bcc9f7caf2d12fc8853

HTTP Headers

GET /wp-content/uploads/2022/09/fifa-logo.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 17090
last-modified: Fri, 23 Sep 2022 07:13:10 GMT
etag: "42c2-5e952e90bad80"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B6VGw6ogtn6yBHvh2EevXZQdPHjIilQN7OSrDL68Grw%2BCYC3yeF93myGBFyB1YNFnFyIA3bQeM%2BWnXi97CJRVBlXVDae4NeA1K7%2Fzais0%2FtUpVDSC1mPFRaDjTygzBoJQ78S1fc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58c456c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/js/script.js?ver=2.2.4

172.67.208.25

200 OK

1.4 kB

URL GET HTTP/3
futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/js/script.js?ver=2.2.4
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text
Size
1.4 kB (1440 bytes)
Hash
5348130b6852175f95ea80e00856effd
f443347a21285460ba56534f7b12953afdcd39af
56be3b9a3b31c843b748ce7e39b7b3e1b17f18f5f02ad5d460dbc14d5838de8c

HTTP Headers

GET /wp-content/plugins/easy-accordion-free/public/assets/js/script.js?ver=2.2.4 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Fri, 29 Sep 2023 15:49:01 GMT
etag: W/"d20-606815cfe9540-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2776
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cVcuJmwbk%2BfBktFVwjWOICMe2LFpNv4yyAxNZ4Ec3BpFTOM5faxJ35KX3%2FYaJM%2FWzVBMOzrvmJDI9QlfmJUWYUlVjHE3Vrke50wXeGJrEHZxDTtpijyi2cApkUuH3ogGcuh9H%2BY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58c656c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cbtb.clickbank.net/?vendor=futmillion

52.12.196.171

200 OK

941 B

URL GET HTTP/2
cbtb.clickbank.net/?vendor=futmillion
IP
52.12.196.171:443
ASN
#16509 AMAZON-02

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerAmazon
Subject*.clickbank.net
Fingerprint06:1E:8F:A1:72:68:E8:C2:29:B8:53:F0:C5:13:51:8B:45:13:CD:16
ValidityTue, 07 Feb 2023 00:00:00 GMT - Fri, 08 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (941), with no line terminators
Size
941 B (941 bytes)
Hash
f5a3bb4d77b742cc2f5b428433fad91c
beb18a96e30c1dd8724e463b21202b3b62943e36
ce80f6b051fb306f0ff9fed39f04002e672a38c328473a98b74d73e16117be03

HTTP Headers

GET /?vendor=futmillion HTTP/1.1
Host: cbtb.clickbank.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: text/javascript;charset=UTF-8
content-length: 941
set-cookie: AWSALB=LMZ1sCWNH6LbVr7pFu1eWqOoPa3L3yb41O/JXKotbDVWKMwVb4lYfNLf9esXgByPIBU/1b6rxIevTxylFlUEyqR9wLfdB1OaIEYxf4WOn4LBnM7RgP8U+bi7bmEX; Expires=Tue, 12 Dec 2023 17:22:46 GMT; Path=/
AWSALBCORS=LMZ1sCWNH6LbVr7pFu1eWqOoPa3L3yb41O/JXKotbDVWKMwVb4lYfNLf9esXgByPIBU/1b6rxIevTxylFlUEyqR9wLfdB1OaIEYxf4WOn4LBnM7RgP8U+bi7bmEX; Expires=Tue, 12 Dec 2023 17:22:46 GMT; Path=/; SameSite=None; Secure
server: Apache
cache-control: max-age=900
X-Firefox-Spdy: h2

eehuzaih.com/impression/_ICpzkGGwmdQfhcmDrrpBqUfeJFLEDA1EZ6Lh8E_yzolLuxmiU5Qskd-mGjm20E5tE_tZ8vMrs7rzeEyGTsLyEbrez76wulrT_zg-zPKV5QXWnm1ykwUP-jhG8POAdmv00titN3kGCb2w5XOufoHnavWoKvDpRQNIUw9kY5E5jVGZiK63PLnptE4HDv-RIJe1_5QLYr3VkArkPSvoY4dH1_b89aYKYvelyDd89U-bL9SRO1CoSkePXOKtSILAXy_2f6K0F8AkaGwNzLVZqIaRsLfVaKJhcCqHqz6dtK31gH1_r87JOHau3YreebSvU9loNmpsPQBVro6maXJ1Y_l4hkcnoRfUi-mkdWZZBPHGzj1qAAa2d-oRFtC7nuyvH45Ai4kw96sQ-LsQb2jDFM9M0L9NB2gjauHL-3KFa-qLKviH_kw8YNXx4hY5ePIS6XdNINftdqUeAm6Tiof4bU_o5jnIUehlLgQaELlXAiHB2DlwvLNnGXfpmDlXHZrcSoC4V4l_c8pihc8LDjRgUlo9nYFN8GLIwg9vCV10_oy7dqDecQFYeok4vp1bZjTrUrjWTWSCqeu4l1nOq-fq_UsWaEUABZMLAdZSMsou1WSqMRNCPUhRwVLVxwQRRuqdB4oNHdQyHIE0lTtVIHWbQOm7GJ1e7vE00QsWNcpc5ym9noDVB1TquYeqrEBLuib9t-PWpCYUXaREEBoTRofakpDTh28TqjIHyWJTJop8Nt7JdgUisngdDr7-DT9P2F4r7BYBSsiEQ==?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=9&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0

139.45.197.237

200 OK

43 B

URL GET HTTP/2
eehuzaih.com/impression/_ICpzkGGwmdQfhcmDrrpBqUfeJFLEDA1EZ6Lh8E_yzolLuxmiU5Qskd-mGjm20E5tE_tZ8vMrs7rzeEyGTsLyEbrez76wulrT_zg-zPKV5QXWnm1ykwUP-jhG8POAdmv00titN3kGCb2w5XOufoHnavWoKvDpRQNIUw9kY5E5jVGZiK63PLnptE4HDv-RIJe1_5QLYr3VkArkPSvoY4dH1_b89aYKYvelyDd89U-bL9SRO1CoSkePXOKtSILAXy_2f6K0F8AkaGwNzLVZqIaRsLfVaKJhcCqHqz6dtK31gH1_r87JOHau3YreebSvU9loNmpsPQBVro6maXJ1Y_l4hkcnoRfUi-mkdWZZBPHGzj1qAAa2d-oRFtC7nuyvH45Ai4kw96sQ-LsQb2jDFM9M0L9NB2gjauHL-3KFa-qLKviH_kw8YNXx4hY5ePIS6XdNINftdqUeAm6Tiof4bU_o5jnIUehlLgQaELlXAiHB2DlwvLNnGXfpmDlXHZrcSoC4V4l_c8pihc8LDjRgUlo9nYFN8GLIwg9vCV10_oy7dqDecQFYeok4vp1bZjTrUrjWTWSCqeu4l1nOq-fq_UsWaEUABZMLAdZSMsou1WSqMRNCPUhRwVLVxwQRRuqdB4oNHdQyHIE0lTtVIHWbQOm7GJ1e7vE00QsWNcpc5ym9noDVB1TquYeqrEBLuib9t-PWpCYUXaREEBoTRofakpDTh28TqjIHyWJTJop8Nt7JdgUisngdDr7-DT9P2F4r7BYBSsiEQ==?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=9&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
139.45.197.237:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /impression/_ICpzkGGwmdQfhcmDrrpBqUfeJFLEDA1EZ6Lh8E_yzolLuxmiU5Qskd-mGjm20E5tE_tZ8vMrs7rzeEyGTsLyEbrez76wulrT_zg-zPKV5QXWnm1ykwUP-jhG8POAdmv00titN3kGCb2w5XOufoHnavWoKvDpRQNIUw9kY5E5jVGZiK63PLnptE4HDv-RIJe1_5QLYr3VkArkPSvoY4dH1_b89aYKYvelyDd89U-bL9SRO1CoSkePXOKtSILAXy_2f6K0F8AkaGwNzLVZqIaRsLfVaKJhcCqHqz6dtK31gH1_r87JOHau3YreebSvU9loNmpsPQBVro6maXJ1Y_l4hkcnoRfUi-mkdWZZBPHGzj1qAAa2d-oRFtC7nuyvH45Ai4kw96sQ-LsQb2jDFM9M0L9NB2gjauHL-3KFa-qLKviH_kw8YNXx4hY5ePIS6XdNINftdqUeAm6Tiof4bU_o5jnIUehlLgQaELlXAiHB2DlwvLNnGXfpmDlXHZrcSoC4V4l_c8pihc8LDjRgUlo9nYFN8GLIwg9vCV10_oy7dqDecQFYeok4vp1bZjTrUrjWTWSCqeu4l1nOq-fq_UsWaEUABZMLAdZSMsou1WSqMRNCPUhRwVLVxwQRRuqdB4oNHdQyHIE0lTtVIHWbQOm7GJ1e7vE00QsWNcpc5ym9noDVB1TquYeqrEBLuib9t-PWpCYUXaREEBoTRofakpDTh28TqjIHyWJTJop8Nt7JdgUisngdDr7-DT9P2F4r7BYBSsiEQ==?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=9&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: OAID=cae010572dbc48c383b304da9d0f8f5e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/gif
content-length: 43
x-trace-id: d0b1f34196e6ee58dae2a0e3ac41b126
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

offerimage.com/www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg

172.67.22.216

200 OK

19 kB

URL GET HTTP/2
offerimage.com/www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg
IP
172.67.22.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Size
19 kB (19381 bytes)
Hash
71581bf2ce9a00138faf7dd80fe3e12e
56479135ed64bf23e1037067c0c87047eb8a414c
5d9f95c8c06343cc189b38268296615ed8816d8154b4b782ad0d62bedd23525e

HTTP Headers

GET /www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/jpeg
content-length: 19381
cache-control: max-age=86400
cf-bgj: h2pri
etag: "65674405-4bb5"
expires: Wed, 06 Dec 2023 14:13:35 GMT
last-modified: Wed, 29 Nov 2023 14:00:37 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 11352
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 830df924dc53712a-OSL
X-Firefox-Spdy: h2

futmillionaire.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.8

172.67.208.25

200 OK

5.2 kB

URL GET HTTP/3
futmillionaire.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.8
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (15224)
Size
5.2 kB (5247 bytes)
Hash
116c86c56f8db0bb63f15ceda50fdc98
75e308982ecf7cd43644b8b426e6aa1a0b0fbe26
def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.8 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Aug 2021 19:56:52 GMT
etag: W/"4705-5cacc3bfb0900-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2774
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N9P%2FwPD%2FuxTkf6DTGoNyfEEPSyAI%2B4%2BzTz0VHilrTtjPkF9VQTAAE25FM6Ky2HWuvhTwX7d7eirnjtRbl2v7Kl%2BSvK36lTUwi40mGEP9qPMEF6FRmxy9c2lOP4IvYBHGMzVXB0k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df924cfb456c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 03:54:00 GMT
expires: Wed, 04 Dec 2024 03:54:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 48527
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:34 GMT
expires: Fri, 29 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 476713
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

region1.analytics.google.com/g/collect?v=2&tid=G-7NCJ73THPT&gtm=45je3bt0v879882835&_p=1701796967258&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=837343671.1701796968&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701796967&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&dt=%C5%A0ampion%20ponovo%20posustao%3A%20Nikola%20Joki%C4%87%20nezadr%C5%BEiv%20ali%20Denver%20upisuje%20novi%20poraz%20-%20Vugla&en=scroll&epn.percent_scrolled=90&tfd=8254

216.239.32.36

204 No Content

0 B

URL POST HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-7NCJ73THPT&gtm=45je3bt0v879882835&_p=1701796967258&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=837343671.1701796968&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701796967&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&dt=%C5%A0ampion%20ponovo%20posustao%3A%20Nikola%20Joki%C4%87%20nezadr%C5%BEiv%20ali%20Denver%20upisuje%20novi%20poraz%20-%20Vugla&en=scroll&epn.percent_scrolled=90&tfd=8254
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-7NCJ73THPT&gtm=45je3bt0v879882835&_p=1701796967258&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=837343671.1701796968&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701796967&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&dt=%C5%A0ampion%20ponovo%20posustao%3A%20Nikola%20Joki%C4%87%20nezadr%C5%BEiv%20ali%20Denver%20upisuje%20novi%20poraz%20-%20Vugla&en=scroll&epn.percent_scrolled=90&tfd=8254 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://www.vugla.com
date: Tue, 05 Dec 2023 17:22:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=UA-22315760-20&l=dataLayer&cx=c

142.250.74.168

200 OK

69 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=UA-22315760-20&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (4179)
Size
69 kB (69068 bytes)
Hash
496f30b19265efcb71e58052e4a8b828
a4a43ec2604fab5631880276010efc8e83b56fbe
a4b5ef06b260c15a3e0fe8acc22da5d42421a90d48bee6942aaa3ae92f767dc3

HTTP Headers

GET /gtag/js?id=UA-22315760-20&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 17:22:47 GMT
expires: Tue, 05 Dec 2023 17:22:47 GMT
cache-control: private, max-age=900
last-modified: Tue, 05 Dec 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69068
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

futmillionaire.com/wp-content/uploads/2022/09/bg21.jpg

172.67.208.25

200 OK

11 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/bg21.jpg
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x686, components 3\012- data
Size
11 kB (11418 bytes)
Hash
3521d5becfdb7d1033f7a22c281d166f
94c8ec54ee3acafb41322a9363aa5d4d3b1101df
b5933b12ab2eb59168192441f19eaf6e7e5615e105e55435a3d0e90a4ca23747

HTTP Headers

GET /wp-content/uploads/2022/09/bg21.jpg HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/jpeg
content-length: 11418
last-modified: Sat, 24 Sep 2022 05:02:33 GMT
etag: "2c9a-5e96533c3ec40"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nhVo4i7bb5UQQ8oMkjdMq9ChqCCgMtOTRC2%2B%2FIFOiUGcG5Wp%2FoTSjvxgE3MYrusBf7%2ByrMyFXquBzdh7OJ6gXr3WD3ZbX9Y8cWtBQWaIqUlPk4S0pJarVBKBFRTQqVWe%2FYTimMI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df9277b3456c1-OSL
alt-svc: h3=":443"; ma=86400

player.vimeo.com/video/107782773?title=0&byline=0&portrait=0

162.159.138.60

200 OK

6.0 kB

URL GET HTTP/1.1
player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
IP
162.159.138.60:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4B:91:E3:66:C8:AB:7B:DB:A8:E4:58:1B:25:C3:EF:38:4C:8E:CE:21
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11600)
Size
6.0 kB (6016 bytes)
Hash
26dadf0a75856d79603a6ea5f076bcf3
a3e9b5fa6b9b29074d9e1886521995e1900394d8
4b7d6436da7659721f233a86604d21daef9b0194cd7fd609edf865d719f43c5a

HTTP Headers

GET /video/107782773?title=0&byline=0&portrait=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 17:22:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: default-src 'none'; script-src 'self' 'unsafe-inline' https://*.vimeocdn.com 'unsafe-eval' blob: resource: https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv; style-src 'self' 'unsafe-inline' https://*.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://edge-player5.wirewax.com; connect-src 'self' ws: wss: https://vimeo.com https://api.vimeo.com https://csi.gstatic.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://drm-gke.vhx.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app https://*.kollective.app:31015 https://*.kollectivecd.com https://*.hivestreaming.com https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; font-src data: https://edge-assets.wirewax.com https://branding.cdn.magisto.com https://fonts.gstatic.com https://player.vimeo.com; img-src 'self' data: https://player.vimeo.com https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://*.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com android-webview-video-poster:; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com; frame-src 'self' https://*
expires: Fri, 15 Dec 1985 19:30:00 GMT
link: <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin, <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-host: player-backend-5f456446f5-45gtx
x-player-backend: g
x-xss-protection: 1; mode=block
x-backend-server: player-backend-edge-entry
x-bapp-server: player-backend-5f456446f5-45gtx
Via: 1.1 varnish
X-Served-By: cache-bma1649-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1701796967.413684,VS0,VE190
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=Y78l.kKXWlFrJcq3XLBMWL5VjjweQ_kf96qqhkEoczo-1701796967-0-AR1ZuCxHqU2eEe1uIeRZ8anUNOWtEVrKgHAjWLEkjG9XxUOllEtJPC4dEAyeqHCk5d2Khdif0ZGb0GLWVqqbGJw=; path=/; expires=Tue, 05-Dec-23 17:52:47 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 830df9263cb756c0-OSL
Content-Encoding: gzip

futmillionaire.com/wp-content/uploads/2022/09/mobbg2.jpg

172.67.208.25

200 OK

26 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/mobbg2.jpg
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 375x1174, components 3\012- data
Size
26 kB (25724 bytes)
Hash
b4d90695337f3af3402abe3798ae0b2a
5d2e1f4301154b50b42dc156c646f1385d7e452c
263faf94c04dd7ceccceafbe6f8dda644a055818e17722cf2198e9a14655975a

HTTP Headers

GET /wp-content/uploads/2022/09/mobbg2.jpg HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/jpeg
content-length: 25724
last-modified: Sat, 24 Sep 2022 05:02:59 GMT
etag: "647c-5e9653550a6c0"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aXCA9fTJk0yDrkvyYmmEzZnILKurhwYeEehy5YKZ4%2F2%2Br6i%2FnMS0o2SwUTL%2FZ6Dl6VY1f8gUWM%2B3QD2U6ns%2FRaNNnNl4VTs5Ig5MMj33KLL7ul0rsBKoMcaLVIsHVG1bBWZd5wE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df9278b4156c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/bg5.jpg

172.67.208.25

200 OK

8.7 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/bg5.jpg
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x1223, components 3\012- data
Size
8.7 kB (8697 bytes)
Hash
f7f7626c87abb6c6a01cef374ce2fd15
3a7cb11bba8e163348c06b31069466b2a959d857
6fecd68f4f714eefdf7bec4dc374ca75b7ffa8ab48868df326f73b24e75397d9

HTTP Headers

GET /wp-content/uploads/2022/09/bg5.jpg HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/jpeg
content-length: 8697
last-modified: Thu, 22 Sep 2022 11:12:04 GMT
etag: "21f9-5e9422193c900"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XWBOQ1cU73I7FPLz0tSk9cURlEu9hEKwHnFaoAuOUmj19uXw1UO4DGS0DoR2PBd5Kwfc%2Bus4sSAEj8R16ZHCToJbZvbaHPz4U346fW3xOJfBz2HdPEU2vgUXyThn%2F271qVCCF9M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df9278b4856c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/bg7.jpg

172.67.208.25

200 OK

5.4 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/bg7.jpg
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x883, components 3\012- data
Size
5.4 kB (5443 bytes)
Hash
b77d4e172e9b33f74c5782d7b011dad4
28619bf4d0216889ef526c9bc601e4066ce1623e
c02246e1289d086da6ea45a9a730eb68ce367704f3875b5e997f8608f23b5d92

HTTP Headers

GET /wp-content/uploads/2022/09/bg7.jpg HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/jpeg
content-length: 5443
last-modified: Thu, 22 Sep 2022 11:12:22 GMT
etag: "1543-5e94222a67180"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TT7LAkXPe6g%2Fj5luuDDZNv6yim75a97guc%2FoSIlmbtGMggMLrHpB9EWBCZcdW9nBmNf8x16LnGGojlxXdBIoqQ4YFhfmaM6VJn7b2wCFr%2Br0LhZPGB27hnFIDEYeikQuPgs8j1E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df9278b4a56c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/bg8.jpg

172.67.208.25

200 OK

13 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/bg8.jpg
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x1674, components 3\012- data
Size
13 kB (12867 bytes)
Hash
9ed00c6d2828cb764f107ded3060516d
778057207edb4bc9132ba3277dd5ff2234e7f70b
168c8625b06681c5b4148f262e764071ab660f9b25875752a295d49edc2fe186

HTTP Headers

GET /wp-content/uploads/2022/09/bg8.jpg HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/jpeg
content-length: 12867
last-modified: Thu, 22 Sep 2022 11:12:28 GMT
etag: "3243-5e9422301ff00"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OYIj8TBHZtdPeAb9%2ByG1DJEnsHZUlxDQd6Sb4qJBZa%2B9SavjxExdC0aYC7ejkkY2cJoIT7zmAHrfPzcO1mw9yPQx%2F8ggRZYAxTKtDbFGkza6EjInbhKUvA6C3VB9ke6EPAxcOEM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df9279b5b56c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/bg11.png

172.67.208.25

200 OK

114 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/bg11.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 1600 x 1902, 4-bit colormap, non-interlaced\012- data
Size
114 kB (113683 bytes)
Hash
7cbb1677f1e1d56b50431ae5650c7794
89600694dea75d4b89afca4e56bd7a1671ac2527
a49f3b70507f5f86772dacad8171be907773262f66990e4fd975b44254b26a9d

HTTP Headers

GET /wp-content/uploads/2022/09/bg11.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/png
content-length: 113683
last-modified: Thu, 22 Sep 2022 11:13:50 GMT
etag: "1bc13-5e94227e53780"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pTH4hbTc1FPeKsgSOOa3Uf8Gplqz7CAuWeQyYTo88mLiUBSqVvCKkWUCY5mnSYKjMsqQi6nFl6vWh7hl9RmcuFth6KFRWycNcKHGFi%2ForEfFP3tptujaLMFve9DQnscjjxTC2ds%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df927cb8e56c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/bg12.jpg

172.67.208.25

200 OK

17 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/bg12.jpg
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x1321, components 3\012- data
Size
17 kB (17376 bytes)
Hash
3ff9f14c6c6fa2c3313c80f087191bdd
cbd0b86a3eb69e55ed682c40a5d506f546c7f6af
776d3ba88c02e3daa004cf63ff14a23fd6aba5c0eb926fb62adff2442ef8efdd

HTTP Headers

GET /wp-content/uploads/2022/09/bg12.jpg HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/jpeg
content-length: 17376
last-modified: Thu, 22 Sep 2022 12:17:27 GMT
etag: "43e0-5e9430b6803c0"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vSxysTxFs4XvrfvpKjh9MXVOaCffJAdWVXr1SBkcRqbNt3Sc7M6q5ksw9VfpAAdXWnZYfT%2B186chOy0RFXLF8mbT9Q7CUGuPV5MQOL%2Fi1Zph0FzWja%2B27BL5BF9w43bRtBzoQPE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df927cb9156c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/arrow_forward.png

172.67.208.25

200 OK

179 B

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/arrow_forward.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Size
179 B (179 bytes)
Hash
760bbdce80a96eeb2781e2bcbfce4589
f120489a38318ba75d110ef8667ea4fce8036386
c83ba1df148f064f4049909261d5f4fe2b36725cd2dc149ed5a4f38232c2d86f

HTTP Headers

GET /wp-content/uploads/2022/09/arrow_forward.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/png
content-length: 179
last-modified: Thu, 22 Sep 2022 11:40:45 GMT
etag: "b3-5e94288282940"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BBElQB7hXRYADAfu2CDVUeMbRj8RGtxWDarLetfKWUrzODl32T%2FJclFfBeiOmfNhWsc8gNlESVE4M6lyBVzb94UCRkj0WWmXnvBFUNWzZUVRUbKQIKXA1ToH2X4W5YolYevIOA8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df927cb8f56c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/bg9.jpg

172.67.208.25

200 OK

12 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/bg9.jpg
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x408, components 3\012- data
Size
12 kB (11994 bytes)
Hash
7f4af1ef3ed914267a03a636bd6ab429
799a361f7c278bf499d4e8b41dfd5f0148380c3c
cfceb6003794ab2a47a6e16e6b8d9e47ac5b9b93305503473fe0b4423ca09742

HTTP Headers

GET /wp-content/uploads/2022/09/bg9.jpg HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/jpeg
content-length: 11994
last-modified: Thu, 22 Sep 2022 11:12:46 GMT
etag: "2eda-5e9422414a780"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z4U5LTDnpuj0XOwC7gWeyuuargUDWkoizhWyqVd5TfBBEH4aC2SyOCUdsVgJyR%2FW7PyPnMBROPWTHKKwqNDCbc7XFgtfi3Gam5PmfS1Kww4az4ZeeA0Cf2ZqxSadSH2HhfFE9gs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df927cb8c56c1-OSL
alt-svc: h3=":443"; ma=86400

player.vimeo.com/video/107782922?title=0&byline=0&portrait=0

162.159.138.60

200 OK

6.0 kB

URL GET HTTP/1.1
player.vimeo.com/video/107782922?title=0&byline=0&portrait=0
IP
162.159.138.60:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4B:91:E3:66:C8:AB:7B:DB:A8:E4:58:1B:25:C3:EF:38:4C:8E:CE:21
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11596)
Size
6.0 kB (6022 bytes)
Hash
3278f6306ad01b04b7145b6fd733aef6
de9b02bafa6c5c4c7c49eb57a085edf4083e06b0
d61e10589a1afc47538c09823a40ac0264972564d45f17ed0928f576c0a13c73

HTTP Headers

GET /video/107782922?title=0&byline=0&portrait=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 17:22:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: default-src 'none'; script-src 'self' 'unsafe-inline' https://*.vimeocdn.com 'unsafe-eval' blob: resource: https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv; style-src 'self' 'unsafe-inline' https://*.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://edge-player5.wirewax.com; connect-src 'self' ws: wss: https://vimeo.com https://api.vimeo.com https://csi.gstatic.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://drm-gke.vhx.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app https://*.kollective.app:31015 https://*.kollectivecd.com https://*.hivestreaming.com https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; font-src data: https://edge-assets.wirewax.com https://branding.cdn.magisto.com https://fonts.gstatic.com https://player.vimeo.com; img-src 'self' data: https://player.vimeo.com https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://*.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com android-webview-video-poster:; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com; frame-src 'self' https://*
expires: Fri, 15 Dec 1985 19:30:00 GMT
link: <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin, <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-host: player-backend-5f456446f5-nqpj2
x-player-backend: g
x-xss-protection: 1; mode=block
x-backend-server: player-backend-edge-entry
x-bapp-server: player-backend-5f456446f5-nqpj2
Via: 1.1 varnish
X-Served-By: cache-bma1674-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1701796967.479441,VS0,VE189
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=9SSYGytvuEs6hfqf5vOdksI9GtqGAELrvWaiC1C5nqs-1701796967-0-AVqxMMUSrSZGG3DB519DPLcmvyjxgAWjCcmDYxhtCBJKxQmpeyvLvxcoWsB+p2AYA+F2JC8I4AmZt6op/0bJBss=; path=/; expires=Tue, 05-Dec-23 17:52:47 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 830df9269acc56be-OSL
Content-Encoding: gzip

player.vimeo.com/video/107782773?title=0&byline=0&portrait=0

162.159.138.60

200 OK

6.0 kB

URL GET HTTP/1.1
player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
IP
162.159.138.60:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4B:91:E3:66:C8:AB:7B:DB:A8:E4:58:1B:25:C3:EF:38:4C:8E:CE:21
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11600)
Size
6.0 kB (5986 bytes)
Hash
26dadf0a75856d79603a6ea5f076bcf3
a3e9b5fa6b9b29074d9e1886521995e1900394d8
4b7d6436da7659721f233a86604d21daef9b0194cd7fd609edf865d719f43c5a

HTTP Headers

GET /video/107782773?title=0&byline=0&portrait=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 17:22:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: default-src 'none'; script-src 'self' 'unsafe-inline' https://*.vimeocdn.com 'unsafe-eval' blob: resource: https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv; style-src 'self' 'unsafe-inline' https://*.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://edge-player5.wirewax.com; connect-src 'self' ws: wss: https://vimeo.com https://api.vimeo.com https://csi.gstatic.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://drm-gke.vhx.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app https://*.kollective.app:31015 https://*.kollectivecd.com https://*.hivestreaming.com https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; font-src data: https://edge-assets.wirewax.com https://branding.cdn.magisto.com https://fonts.gstatic.com https://player.vimeo.com; img-src 'self' data: https://player.vimeo.com https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://*.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com android-webview-video-poster:; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com; frame-src 'self' https://*
expires: Fri, 15 Dec 1985 19:30:00 GMT
link: <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin, <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-host: player-backend-5f456446f5-xsrng
x-player-backend: g
x-xss-protection: 1; mode=block
x-backend-server: player-backend-edge-entry
x-bapp-server: player-backend-5f456446f5-xsrng
Via: 1.1 varnish
X-Served-By: cache-bma1626-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1701796967.462408,VS0,VE150
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=ycUJyotmWDOMM5o6QxbIedUddDphT1O1hMcLM7sP8Tw-1701796967-0-AbTevL6h+ckG9k62r4Ar/I/hacEkESg+ts1OpNBXedR3KqseWFL3jBZy7uSsMfbP5Y2YB6clo/fvUKNsYBglAnA=; path=/; expires=Tue, 05-Dec-23 17:52:47 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 830df9268b3e5694-OSL
Content-Encoding: gzip

player.vimeo.com/video/107782774?title=0&byline=0&portrait=0

162.159.138.60

200 OK

6.0 kB

URL GET HTTP/1.1
player.vimeo.com/video/107782774?title=0&byline=0&portrait=0
IP
162.159.138.60:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4B:91:E3:66:C8:AB:7B:DB:A8:E4:58:1B:25:C3:EF:38:4C:8E:CE:21
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11596)
Size
6.0 kB (6004 bytes)
Hash
096d3ffd9ca55be74585d4c2af8cc873
2c7c5a6f49865bde8124916f8d66acbc0689a670
59f29b0119f3623d31b12442c12f430db4192cbdf3b10e18f812354670374cbb

HTTP Headers

GET /video/107782774?title=0&byline=0&portrait=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 17:22:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: default-src 'none'; script-src 'self' 'unsafe-inline' https://*.vimeocdn.com 'unsafe-eval' blob: resource: https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv; style-src 'self' 'unsafe-inline' https://*.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://edge-player5.wirewax.com; connect-src 'self' ws: wss: https://vimeo.com https://api.vimeo.com https://csi.gstatic.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://drm-gke.vhx.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app https://*.kollective.app:31015 https://*.kollectivecd.com https://*.hivestreaming.com https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; font-src data: https://edge-assets.wirewax.com https://branding.cdn.magisto.com https://fonts.gstatic.com https://player.vimeo.com; img-src 'self' data: https://player.vimeo.com https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://*.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com android-webview-video-poster:; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com; frame-src 'self' https://*
expires: Fri, 15 Dec 1985 19:30:00 GMT
link: <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin, <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-host: player-backend-5f456446f5-jxxxt
x-player-backend: g
x-xss-protection: 1; mode=block
x-backend-server: player-backend-edge-entry
x-bapp-server: player-backend-5f456446f5-jxxxt
Via: 1.1 varnish
X-Served-By: cache-bma1656-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1701796967.415832,VS0,VE310
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=osBixwv9dwBtIQ1gV59e8moG3ycYa2q8F85eUUSv2vA-1701796967-0-AUPyRPB2JsXW6AxvbCTwosza1Dez/7oNV86sVnOYBM3rMMPQbj3tWwZkw3yEIwIamh2csfIJEN6YYRkzS4TSebY=; path=/; expires=Tue, 05-Dec-23 17:52:47 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 830df9263bc7069b-OSL
Content-Encoding: gzip

player.vimeo.com/video/107782774?title=0&byline=0&portrait=0

162.159.138.60

200 OK

6.0 kB

URL GET HTTP/1.1
player.vimeo.com/video/107782774?title=0&byline=0&portrait=0
IP
162.159.138.60:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4B:91:E3:66:C8:AB:7B:DB:A8:E4:58:1B:25:C3:EF:38:4C:8E:CE:21
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11596)
Size
6.0 kB (6004 bytes)
Hash
34be148c0da19456497dd2436875bb64
965ef4db4018b421a0c76b25d3024a4c5d258d6a
14e14953d4120cd70d14d49c64453e8338efe0c8e0a94611ac3bd60cc92fc63f

HTTP Headers

GET /video/107782774?title=0&byline=0&portrait=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 17:22:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: default-src 'none'; script-src 'self' 'unsafe-inline' https://*.vimeocdn.com 'unsafe-eval' blob: resource: https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv; style-src 'self' 'unsafe-inline' https://*.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://edge-player5.wirewax.com; connect-src 'self' ws: wss: https://vimeo.com https://api.vimeo.com https://csi.gstatic.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://drm-gke.vhx.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app https://*.kollective.app:31015 https://*.kollectivecd.com https://*.hivestreaming.com https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; font-src data: https://edge-assets.wirewax.com https://branding.cdn.magisto.com https://fonts.gstatic.com https://player.vimeo.com; img-src 'self' data: https://player.vimeo.com https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://*.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com android-webview-video-poster:; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com; frame-src 'self' https://*
expires: Fri, 15 Dec 1985 19:30:00 GMT
link: <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin, <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-host: player-backend-5f456446f5-cx6sr
x-player-backend: g
x-xss-protection: 1; mode=block
x-backend-server: player-backend-edge-entry
x-bapp-server: player-backend-5f456446f5-cx6sr
Via: 1.1 varnish
X-Served-By: cache-bma1624-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1701796967.465068,VS0,VE257
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=wOwr.DjtTDstnS9o3kqAd7WTeeGMfhnvyqGK8k8gAAI-1701796967-0-ARlbM2+G7qnDqL3j8YhdfNFwIWoXvj+KMjmELPfpXvS3PqINXxgZvMfL9kxMF+l17eEFBzHRxyZdv8Ffy2V/GqI=; path=/; expires=Tue, 05-Dec-23 17:52:47 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 830df9268c2b569b-OSL
Content-Encoding: gzip

futmillionaire.com/wp-content/uploads/2022/09/bg13.png

172.67.208.25

200 OK

251 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/bg13.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 1600 x 2484, 8-bit colormap, non-interlaced\012- data
Size
251 kB (250975 bytes)
Hash
4a6b91a5dd623c465bf9ee91f7059197
8013ad99074f1c457b4b186d4cc1a7d81f532752
0e97ef1e1331e4fca8a1aea7a9df0afc8c82a9cf565f956a503a76f147753b43

HTTP Headers

GET /wp-content/uploads/2022/09/bg13.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/png
content-length: 250975
last-modified: Fri, 23 Sep 2022 03:58:32 GMT
etag: "3d45f-5e95030fb8a00"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gqbzY5nr%2Biy3vh5p1Txi2G0lzIfgkmAHmudzEjO9Q8GyheXss%2FKUvlV4ixgLEUgDj8AGlFQcoWD%2FRYIz%2FoU%2FeflPVDcvMRIt8mFSWpCbe8e%2FXiWC8kHhI1LEZIVA1PHcYxgMwE0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df927ebc456c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/coinbg.jpg

172.67.208.25

200 OK

33 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/coinbg.jpg
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x1590, components 3\012- data
Size
33 kB (32760 bytes)
Hash
b38973e7fd1eafbc38bafc1b3d797040
b93e6c7398fa6a8bdc88a5b238682b0309f68fd6
63690933fadad14ee7f7ee9edd5c7b98b327a5c58c4b1b3d27889d81a9f4eca1

HTTP Headers

GET /wp-content/uploads/2022/09/coinbg.jpg HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/jpeg
content-length: 32760
last-modified: Fri, 23 Sep 2022 06:19:22 GMT
etag: "7ff8-5e95228a44e80"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N6AyDbMslfApp3EVtekmvI37Hwkm5kqK6y1jNHMHMYwKcubtLK5%2BrKRW3UDJfKjXf%2Bs%2FUjxKLW8siY6%2FTD6dwDYthcuP2Z%2FU3fnuiDGtfXUfFvdTSyYp8kSeV23fOxHMVcYiPrg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df927ebca56c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/tick-1.png

172.67.208.25

200 OK

619 B

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/tick-1.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Size
619 B (619 bytes)
Hash
f70990a95296d0b992584dad88d38c48
fa23bdd3bab76d732a7c0bce3ba3ba00aead499d
3424ed647494da3f1679a53d99e1904c44d43c1f21455952c48ef8ed5be8bc85

HTTP Headers

GET /wp-content/uploads/2022/09/tick-1.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/png
content-length: 619
last-modified: Fri, 23 Sep 2022 06:19:44 GMT
etag: "26b-5e95229f40000"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1%2BhVMK3EZQH061rRpltGurs7ncgQruOGJupUjN%2BQZpZmRpezcjsHKErQ4RjkN8xf74BZgfjWIPJ6njeIkm%2FwfADtaa664cIvvoAeT8JhPO0jw1rURvmT5dUpqNajsgWhiBVMksw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df927ebcd56c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/tick2.png

172.67.208.25

200 OK

304 B

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/tick2.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 30 x 30, 8-bit colormap, non-interlaced\012- data
Size
304 B (304 bytes)
Hash
ea598074836d9ccc5d5df5db644b7f45
4a6347495173b00b5b06c3f6a6dd9e1a808a4c92
89bd94721bbf0336f7676904c6ebc332e447447405eb4d51141d128acb0676df

HTTP Headers

GET /wp-content/uploads/2022/09/tick2.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/png
content-length: 304
last-modified: Fri, 23 Sep 2022 06:19:45 GMT
etag: "130-5e9522a034240"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B2X4xjhuVwzjx%2BjSjxXPnvDnDH3hJrKXqMAzOTj8oaKts%2B%2B8DotaWTFjA%2F5ayM5n09nDzQL7DLmMIKH3yNJCP9NLH9LVJNRr%2B6ruk1FGVWnm4xcthNRaAg%2B%2BxGy3ShvdF%2BAaris%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df927ebd056c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/bg14.jpg

172.67.208.25

200 OK

15 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/bg14.jpg
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1600x516, components 3\012- data
Size
15 kB (15216 bytes)
Hash
4dd703217868a541a6d50fbf8d20ebe3
42f3c09579279cbe304911ed74ccfc77c8817ab4
0f1fa494aa88713027559a0cbf465542f97310c2d8bcad63ec533991125be5f6

HTTP Headers

GET /wp-content/uploads/2022/09/bg14.jpg HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/jpeg
content-length: 15216
last-modified: Fri, 23 Sep 2022 06:19:51 GMT
etag: "3b70-5e9522a5ecfc0"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n1AzkJuysE06R3T%2BHmvhW%2B2mermoFbxntFH753ZzCPPOHwTWxPGBM1H397jHx%2Fm3Y866jD0j3rJVh1FEugq5A4Iu9Pnyyh%2B5Vdk3JPfz0GB5Zi4aRc2p3UEMvb%2BEJ6pqAo3Qd9g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df927ebd356c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/bg16.jpg

172.67.208.25

200 OK

8.7 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/bg16.jpg
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x1562, components 3\012- data
Size
8.7 kB (8654 bytes)
Hash
c33562d1b79fd5357071983943b7abe4
261ed230dd5296e0f0d7c1c478f33a9c88549556
edb164ade6179f3dc1133430a76e32fdc44e68ff92acfff8ccf5d3d98be6dd37

HTTP Headers

GET /wp-content/uploads/2022/09/bg16.jpg HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: image/jpeg
content-length: 8654
last-modified: Fri, 23 Sep 2022 06:20:05 GMT
etag: "21ce-5e9522b346f40"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4YhA5Y4VYXknmbLRjnfl%2FQwXTvMl8PdIemAYELd0pkvH6IFtumzPuxzZIVbbv2E%2FYh%2BPccBewU6H9wC1NME2a5ibLF%2BfP80cboSXERHL25Tc8zKuFgr4Y0YnsFQox%2BusdVAvsWA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df927ebd856c1-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/3
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0\012- data
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://futmillionaire.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 04:43:34 GMT
expires: Wed, 04 Dec 2024 04:43:34 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 45553
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

player.vimeo.com/video/107782922?title=0&byline=0&portrait=0

162.159.138.60

200 OK

6.0 kB

URL GET HTTP/1.1
player.vimeo.com/video/107782922?title=0&byline=0&portrait=0
IP
162.159.138.60:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4B:91:E3:66:C8:AB:7B:DB:A8:E4:58:1B:25:C3:EF:38:4C:8E:CE:21
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11596)
Size
6.0 kB (5973 bytes)
Hash
0826e6d2611e0dabce712e9e6bbe57ec
3992b150b19867168d87e089991e5dcd9352e5f2
9a0487e3905752552bb1b2b0d3f83330ec8d7566fc272c854b648b99387e9f1c

HTTP Headers

GET /video/107782922?title=0&byline=0&portrait=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 17:22:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: default-src 'none'; script-src 'self' 'unsafe-inline' https://*.vimeocdn.com 'unsafe-eval' blob: resource: https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv; style-src 'self' 'unsafe-inline' https://*.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://edge-player5.wirewax.com; connect-src 'self' ws: wss: https://vimeo.com https://api.vimeo.com https://csi.gstatic.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://drm-gke.vhx.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app https://*.kollective.app:31015 https://*.kollectivecd.com https://*.hivestreaming.com https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; font-src data: https://edge-assets.wirewax.com https://branding.cdn.magisto.com https://fonts.gstatic.com https://player.vimeo.com; img-src 'self' data: https://player.vimeo.com https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://*.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com android-webview-video-poster:; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com; frame-src 'self' https://*
expires: Fri, 15 Dec 1985 19:30:00 GMT
link: <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin, <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-host: player-backend-5f456446f5-z2rsc
x-player-backend: g
x-xss-protection: 1; mode=block
x-backend-server: player-backend-edge-entry
x-bapp-server: player-backend-5f456446f5-z2rsc
Via: 1.1 varnish
X-Served-By: cache-bma1675-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1701796967.422615,VS0,VE374
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=qWvhBsks.o8E0Du6.2oje5C0Dn4ydm3R0N_W4JnqQn8-1701796967-0-Afu1LGeEp/deZSjiVy2ZuwAllLx6z5xZ90j8yjFJCaFDvaIjMI0b/GkeCT2cCbF9rn1d8PJjkipuVwGI2g1kTZM=; path=/; expires=Tue, 05-Dec-23 17:52:47 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 830df9264f79b4f1-OSL
Content-Encoding: gzip

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/3
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0\012- data
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://futmillionaire.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 04:43:34 GMT
expires: Wed, 04 Dec 2024 04:43:34 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 45553
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

futmillionaire.com/wp-content/plugins/optimizeMember/optimizeMember-o.php?ws_plugin__optimizemember_js_w_globals=1&qcABC=1&ver=1.2.9-1.2.9-4022997467

172.67.208.25

200 OK

53 kB

URL GET HTTP/3
futmillionaire.com/wp-content/plugins/optimizeMember/optimizeMember-o.php?ws_plugin__optimizemember_js_w_globals=1&qcABC=1&ver=1.2.9-1.2.9-4022997467
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
Unicode text, UTF-8 text, with very long lines (15741)
Size
53 kB (52649 bytes)
Hash
d7d0ef1f7173a7683f524f1296cf39ee
64e885a6d02204aa3e1fe8b98c241d8166ca6bba
7ee814ddee9a32b1c030d8688d493e7b9af861b239690d109b6cac7be7b24361

HTTP Headers

GET /wp-content/plugins/optimizeMember/optimizeMember-o.php?ws_plugin__optimizemember_js_w_globals=1&qcABC=1&ver=1.2.9-1.2.9-4022997467 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: application/x-javascript; charset=utf-8
x-powered-by: PHP/7.4.33
expires: Tue, 12 Dec 2023 17:22:47 GMT
cache-control: max-age=604800
pragma: public
set-cookie: PHPSESSID=bm6g31vlbikf1250p332kv5ngp; path=/
last-modified: Tue, 05 Dec 2023 17:22:47 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PzjNhCoQoUL0HVVEAyyAWIsdpMhFN3H%2BEP4WXgj14asf1kDvp6gvtY1DS%2FvLszvWGwRDgAvc11y6Qly%2BOJ2QRdA3b9Fgw%2FmnZXECwmV2Tck0AzMFEud4FNPHoOhi%2BcKq9Neele4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91deed256c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-includes/js/wp-embed.min.js?ver=5.8.8

172.67.208.25

200 OK

6.9 kB

URL GET HTTP/3
futmillionaire.com/wp-includes/js/wp-embed.min.js?ver=5.8.8
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (1443)
Size
6.9 kB (6904 bytes)
Hash
7c5c36baa69fcdb57bd891cda90920b3
9d8b3df7a4fa2968403290d69a60b2eab20734f5
6a482d2d94c0d1bc6937a1759389d01b475e6b28a0d9b5d7eaa3f9cc8f59f3cd

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.8.8 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Wed, 17 May 2023 03:29:35 GMT
etag: W/"5c6-5fbdb4bff85c0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2774
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y7V1qEJvRljZ7cK4Ahev5VyDUCNMMnS%2BzDQCFwVxcskleQJeTJccSgcjTgci60Tk80mY550UM9LwRHF2%2Fkvm%2FJqou%2F4VFOiuelq%2FIj825jGAO1jR575RRcg94MmDo18qmrBDs6M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58ca56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/mobbg1.jpg

172.67.208.25

200 OK

20 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/mobbg1.jpg
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 375x794, components 3\012- data
Size
20 kB (20361 bytes)
Hash
ff3da807ed83f22a75762b16a3ab4ad7
c38fb4dcc68e9f50e8dd62ca15bc810835f4dcbc
87bf0952c1c954b72ed5e7294d883853a92dee7bbadd6a0635ac060bbac291f7

HTTP Headers

GET /wp-content/uploads/2022/09/mobbg1.jpg HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:48 GMT
content-type: image/jpeg
content-length: 20361
last-modified: Sat, 24 Sep 2022 05:02:59 GMT
etag: "4f89-5e9653550a6c0"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lnhqKZNnOsuMa5RJ08i2KtXfzBC%2FNdf6dUvRqBz2bLUPFQjwqPfI1EO0z79w%2BdEcn6BNHxUtwsoFpc6MlyCUE8TALsej6g2K3Huujn6NlkFZuPOgAOqdEk1BqjHGBk6dJi4ksF4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df9277b2d56c1-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/3
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0\012- data
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://futmillionaire.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 04:43:34 GMT
expires: Wed, 04 Dec 2024 04:43:34 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 45554
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

futmillionaire.com/wp-admin/js/password-strength-meter.min.js?ver=5.8.8

172.67.208.25

200 OK

25 kB

URL GET HTTP/3
futmillionaire.com/wp-admin/js/password-strength-meter.min.js?ver=5.8.8
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (1088)
Size
25 kB (25207 bytes)
Hash
b2e45ac2d733c572ee0b3b5dd53c7cc0
f0d35678945439784d91ded2f48936c0396095dc
fcbe9e9ff2d1c20cab10bf43dc49914e188b44ae21f34257b4a0ef5cae90f7ac

HTTP Headers

GET /wp-admin/js/password-strength-meter.min.js?ver=5.8.8 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Mon, 30 Aug 2021 19:56:52 GMT
etag: W/"463-5cacc3bfb0900-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2777
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uQb7iGDazZhBg6efaH2L8wJxc1A%2B257HYgN4cx5B01RjczCYFeDZuHsm8cFJA1dRl72UReJ%2FvGg73FBBoByNtbMiti7aEfG2gORvL1Iyqk6gpzsN50wm3L6CrMhLPdUOm1kGfKg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91deecd56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/3
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0\012- data
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://futmillionaire.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 04:43:34 GMT
expires: Wed, 04 Dec 2024 04:43:34 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 45554
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

offerimage.com/www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg

172.67.22.216

200 OK

19 kB

URL GET HTTP/2
offerimage.com/www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg
IP
172.67.22.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Size
19 kB (19381 bytes)
Hash
71581bf2ce9a00138faf7dd80fe3e12e
56479135ed64bf23e1037067c0c87047eb8a414c
5d9f95c8c06343cc189b38268296615ed8816d8154b4b782ad0d62bedd23525e

HTTP Headers

GET /www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:48 GMT
content-type: image/jpeg
content-length: 19381
cache-control: max-age=86400
cf-bgj: h2pri
etag: "65674405-4bb5"
expires: Wed, 06 Dec 2023 14:13:35 GMT
last-modified: Wed, 29 Nov 2023 14:00:37 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 11353
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 830df92c3db6712a-OSL
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-YETEL46C9Z&l=dataLayer&cx=c

142.250.74.168

200 OK

83 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-YETEL46C9Z&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (7711)
Size
83 kB (83437 bytes)
Hash
0968cc25a9fcc0e43de1f3b375309369
fbdc3c7185117f2657beb9f54fcaf6d12c5f8914
606837514dbc501d8e9b364ab43e8b45703c57f88862ed326ee5c9db08d5dba8

HTTP Headers

GET /gtag/js?id=G-YETEL46C9Z&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 17:22:48 GMT
expires: Tue, 05 Dec 2023 17:22:48 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83437
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

seal-boise.bbb.org/seals/blue-seal-153-100-whitetxt-clickbank-5004291.png

82.102.27.18

200 OK

4.5 kB

URL GET HTTP/2
seal-boise.bbb.org/seals/blue-seal-153-100-whitetxt-clickbank-5004291.png
IP
82.102.27.18:443
ASN
#9009 M247 Ltd

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerDigiCert Inc
Subject*.bbb.org
Fingerprint8F:36:F5:1E:22:A2:92:85:19:AC:63:3C:02:83:FE:60:8C:70:B5:FD
ValidityWed, 26 Apr 2023 00:00:00 GMT - Thu, 25 Apr 2024 23:59:59 GMT

File type
PNG image data, 153 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
4.5 kB (4471 bytes)
Hash
0cdfd3f1530afaac16b4430ccb97fe4e
17d9faf932105bac86691fd86686cbc17cf3ab13
115273e3cba9b49393a57b620c0106adae1476a6762a080b0cd59c60bdcc3250

HTTP Headers

GET /seals/blue-seal-153-100-whitetxt-clickbank-5004291.png HTTP/1.1
Host: seal-boise.bbb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: keycdn
date: Tue, 05 Dec 2023 17:22:48 GMT
content-type: image/png
content-length: 4471
cache-control: max-age=14400
expires: Tue, 05 Dec 2023 21:22:48 GMT
last-modified: Tue, 05 Dec 2023 11:52:18 GMT
x-aspnet-version: 4.0.30319
x-robots-tag: noindex
x-powered-by: ASP.NET
x-cache: HIT
x-shield: active
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.26.8/css/player.css

151.101.86.109

200 OK

22 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/css/player.css
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
ASCII text, with very long lines (65495)
Size
22 kB (21731 bytes)
Hash
ec60dcd1b2a2d6cce7a60ac92b0c8e6e
17a992ae8bb8dd792b7d18a25ccb4fd52547473f
567ddc5e502d663045c37b2936d8c72060f9671fa2ce1a47c077d143519c0a30

HTTP Headers

GET /p/4.26.8/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:48 GMT
age: 325395
x-served-by: cache-iad-kcgs7200120-IAD, cache-bma1675-BMA
x-cache: HIT, HIT
x-cache-hits: 64, 71325
x-timer: S1701796969.598845,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 21731
X-Firefox-Spdy: h2

prod.cbstatic.net/dist/assets/logo-header-grey-en.png

143.204.55.24

200 OK

3.4 kB

URL GET HTTP/2
prod.cbstatic.net/dist/assets/logo-header-grey-en.png
IP
143.204.55.24:443
ASN
#16509 AMAZON-02

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerAmazon
Subject*.cbstatic.net
FingerprintF8:81:4B:D2:24:61:E4:3E:E9:83:B4:81:64:D4:F0:F7:E4:96:CA:B2
ValidityWed, 19 Jul 2023 00:00:00 GMT - Fri, 16 Aug 2024 23:59:59 GMT

File type
PNG image data, 472 x 31, 8-bit/color RGBA, non-interlaced\012- data
Size
3.4 kB (3411 bytes)
Hash
775f725418ac88c31a677e390f465809
a98a41e9bae7569e21735d283574ae38e2d576e5
f05b4ce7119a4a661da917ddd0871980206eaafb2cf0a0758cf8d2fd63dd979d

HTTP Headers

GET /dist/assets/logo-header-grey-en.png HTTP/1.1
Host: prod.cbstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 3411
date: Tue, 05 Dec 2023 17:22:49 GMT
last-modified: Mon, 21 Dec 2020 21:57:34 GMT
x-amz-version-id: 71cSXUBUM9.r4kJae4cWcrwqU9syKuwh
etag: "775f725418ac88c31a677e390f465809"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qrvjdhOqsURN9cRXFblzaPYcSfPMTEL03xGiDZkhwbxapwKfDCfkDA==
X-Firefox-Spdy: h2

prod.cbstatic.net/dist/i18n/app-strings-en.json

143.204.55.24

200 OK

9 B

URL GET HTTP/2
prod.cbstatic.net/dist/i18n/app-strings-en.json
IP
143.204.55.24:443
ASN
#16509 AMAZON-02

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerAmazon
Subject*.cbstatic.net
FingerprintF8:81:4B:D2:24:61:E4:3E:E9:83:B4:81:64:D4:F0:F7:E4:96:CA:B2
ValidityWed, 19 Jul 2023 00:00:00 GMT - Fri, 16 Aug 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
cdfca8b09e61ae7324e48f01984c9b34
874b413675711909229ca228efea613383d6a9a4
00c89e0cd4c41144418e06885bb87e962fdb17567bf55adccb1678a1f6beca4c

HTTP Headers

GET /dist/i18n/app-strings-en.json HTTP/1.1
Host: prod.cbstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://futmillionaire.com
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json
content-length: 9
date: Tue, 05 Dec 2023 17:22:49 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 21 Dec 2020 21:57:36 GMT
x-amz-version-id: ZlnvsWVay.azLO76UGrGFfzKmZRJT9PH
etag: "cdfca8b09e61ae7324e48f01984c9b34"
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vBjQ0Abe15cvwyXrZBy_PCxJRkSKR-zr6EmjWAOmKGsv62h0I1WwGA==
X-Firefox-Spdy: h2

prod.cbstatic.net/dist/assets/logo-tab-grey-en.png

143.204.55.24

200 OK

4.2 kB

URL GET HTTP/2
prod.cbstatic.net/dist/assets/logo-tab-grey-en.png
IP
143.204.55.24:443
ASN
#16509 AMAZON-02

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerAmazon
Subject*.cbstatic.net
FingerprintF8:81:4B:D2:24:61:E4:3E:E9:83:B4:81:64:D4:F0:F7:E4:96:CA:B2
ValidityWed, 19 Jul 2023 00:00:00 GMT - Fri, 16 Aug 2024 23:59:59 GMT

File type
PNG image data, 321 x 63, 8-bit/color RGBA, non-interlaced\012- data
Size
4.2 kB (4237 bytes)
Hash
dc4af65db445b298e1227602a2e371f0
f04e5596ad7fd00f5cd5446d625611811676417f
cc27af050704c115cfdd6000c13cfe280912f53df2402c6a038eb34581dc17fa

HTTP Headers

GET /dist/assets/logo-tab-grey-en.png HTTP/1.1
Host: prod.cbstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 4237
date: Tue, 05 Dec 2023 17:22:49 GMT
last-modified: Mon, 21 Dec 2020 21:57:36 GMT
x-amz-version-id: BZcqTTzd9kulbp7_gvMzQqT0ukDU9T89
etag: "dc4af65db445b298e1227602a2e371f0"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6xLZMoaMumfsHDg79rxrHd5FXwIkdUzb6FzKkJGOKmhLG-2UVJXVCw==
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d?mw=80&q=85

151.101.192.217

200 OK

1.5 kB

URL GET HTTP/2
i.vimeocdn.com/video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d?mw=80&q=85
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
1.5 kB (1536 bytes)
Hash
29cb5f2a27b8f99637e0683711cf2aee
2c272db89408d19ac811f82940b133f5b037a0dc
50d710132249d84bcde2941aa1661bed961c9dd7cd58dbd0e630896be32a1778

HTTP Headers

GET /video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: 29cb5f2a27b8f99637e0683711cf2aee
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-glb-prod
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:48 GMT
age: 171043
x-served-by: cache-dfw-kdal2120064-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 7, 1
x-timer: S1701796969.721279,VS0,VE1
vary: Accept
content-length: 1536
X-Firefox-Spdy: h2

i.vimeocdn.com/video/734922669-dc702bed1bc4973dde42a2eb4cc5690b246d38b147a2c3c0980a541b76df5323-d?mw=80&q=85

151.101.192.217

200 OK

1.5 kB

URL GET HTTP/2
i.vimeocdn.com/video/734922669-dc702bed1bc4973dde42a2eb4cc5690b246d38b147a2c3c0980a541b76df5323-d?mw=80&q=85
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/242400713?autoplay=0&title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
1.5 kB (1491 bytes)
Hash
fcaec26f9de93ee5019811d09201dbfa
4f991bdceaf1eca9fe2776f5de7ad201a8b60c20
24051095d404829d3532aaf0a00ad87176c03d3bbdbed2e677e79445e7ff4b33

HTTP Headers

GET /video/734922669-dc702bed1bc4973dde42a2eb4cc5690b246d38b147a2c3c0980a541b76df5323-d?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/avif
etag: fcaec26f9de93ee5019811d09201dbfa
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-jwq5
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:48 GMT
age: 1280077
x-served-by: cache-dfw-kdfw8210125-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 71, 1
x-timer: S1701796969.721263,VS0,VE2
vary: Accept
content-length: 1491
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 03:54:00 GMT
expires: Wed, 04 Dec 2024 03:54:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 48528
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:34 GMT
expires: Fri, 29 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 476714
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

f.vimeocdn.com/p/4.26.8/js/player.module.js

151.101.86.109

200 OK

134 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/js/player.module.js
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
Unicode text, UTF-8 text, with very long lines (65445)
Size
134 kB (134059 bytes)
Hash
96cb066b3f07e96fd6152b1f57de31ab
20282177194b73c18ac5792822c5f1d297e2ccc8
b174a29e99b9afda8575f9ce18e03efcb7b61f225bebeace1be7ae22d939a794

HTTP Headers

GET /p/4.26.8/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:48 GMT
age: 325395
x-served-by: cache-iad-kjyo7100167-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 56, 183
x-timer: S1701796969.710129,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 134059
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.26.8/js/player.module.js

151.101.86.109

200 OK

134 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/js/player.module.js
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
Unicode text, UTF-8 text, with very long lines (65445)
Size
134 kB (134059 bytes)
Hash
96cb066b3f07e96fd6152b1f57de31ab
20282177194b73c18ac5792822c5f1d297e2ccc8
b174a29e99b9afda8575f9ce18e03efcb7b61f225bebeace1be7ae22d939a794

HTTP Headers

GET /p/4.26.8/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:48 GMT
age: 325395
x-served-by: cache-iad-kjyo7100167-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 56, 184
x-timer: S1701796969.716023,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 134059
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d?mw=80&q=85

151.101.192.217

200 OK

1.5 kB

URL GET HTTP/2
i.vimeocdn.com/video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d?mw=80&q=85
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
1.5 kB (1536 bytes)
Hash
29cb5f2a27b8f99637e0683711cf2aee
2c272db89408d19ac811f82940b133f5b037a0dc
50d710132249d84bcde2941aa1661bed961c9dd7cd58dbd0e630896be32a1778

HTTP Headers

GET /video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: 29cb5f2a27b8f99637e0683711cf2aee
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-glb-prod
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:48 GMT
age: 171043
x-served-by: cache-dfw-kdal2120064-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 7, 2
x-timer: S1701796969.750259,VS0,VE0
vary: Accept
content-length: 1536
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.26.8/js/player.module.js

151.101.86.109

200 OK

134 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/js/player.module.js
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
Unicode text, UTF-8 text, with very long lines (65445)
Size
134 kB (134059 bytes)
Hash
96cb066b3f07e96fd6152b1f57de31ab
20282177194b73c18ac5792822c5f1d297e2ccc8
b174a29e99b9afda8575f9ce18e03efcb7b61f225bebeace1be7ae22d939a794

HTTP Headers

GET /p/4.26.8/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:48 GMT
age: 325395
x-served-by: cache-iad-kjyo7100167-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 56, 185
x-timer: S1701796969.722041,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 134059
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d?mw=80&q=85

151.101.192.217

200 OK

837 B

URL GET HTTP/2
i.vimeocdn.com/video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d?mw=80&q=85
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782774?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
837 B (837 bytes)
Hash
4e045a7b6d71146fc51d54823d33159e
e2d5d21ded2c531b3c03fefc0a5b0ba5b08b8dbf
495b841dc8d6b087a097cf3078a768b03f2f76263f3ec9ed43f00fadfede3912

HTTP Headers

GET /video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: 4e045a7b6d71146fc51d54823d33159e
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-p6kq
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:48 GMT
age: 1668781
x-served-by: cache-dfw-kdfw8210046-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 316, 1
x-timer: S1701796969.792614,VS0,VE15
vary: Accept
content-length: 837
X-Firefox-Spdy: h2

futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/fonts/fontawesome-webfont.woff2?v=4.7.0

172.67.208.25

200 OK

77 kB

URL GET HTTP/3
futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /wp-content/plugins/easy-accordion-free/public/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/wp-content/plugins/easy-accordion-free/public/assets/css/font-awesome.min.css?ver=2.2.4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:48 GMT
content-type: font/woff2
content-length: 77160
last-modified: Fri, 29 Sep 2023 15:49:01 GMT
etag: "12d68-606815cfe9540"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EH8LWVgl7YpcmRtjlgg6CMjh9%2BuUQBzXKDxYXnZ2pFp99NMyeZONKa%2BMDzX5kW4Z4ReXouiQmH6S6CW88nYTB2UACA3pANTDBCT5ESsH5u76NIkkvQetH3OaQ64UsfbPX%2Bb%2Fe78%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df92c295156c1-OSL
alt-svc: h3=":443"; ma=86400

f.vimeocdn.com/p/4.26.8/js/player.module.js

151.101.86.109

200 OK

134 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/js/player.module.js
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
Unicode text, UTF-8 text, with very long lines (65445)
Size
134 kB (134059 bytes)
Hash
96cb066b3f07e96fd6152b1f57de31ab
20282177194b73c18ac5792822c5f1d297e2ccc8
b174a29e99b9afda8575f9ce18e03efcb7b61f225bebeace1be7ae22d939a794

HTTP Headers

GET /p/4.26.8/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:48 GMT
age: 325395
x-served-by: cache-iad-kjyo7100167-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 56, 186
x-timer: S1701796969.729124,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 134059
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d?mw=80&q=85

151.101.192.217

200 OK

837 B

URL GET HTTP/2
i.vimeocdn.com/video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d?mw=80&q=85
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782774?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
837 B (837 bytes)
Hash
4e045a7b6d71146fc51d54823d33159e
e2d5d21ded2c531b3c03fefc0a5b0ba5b08b8dbf
495b841dc8d6b087a097cf3078a768b03f2f76263f3ec9ed43f00fadfede3912

HTTP Headers

GET /video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: 4e045a7b6d71146fc51d54823d33159e
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-p6kq
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:48 GMT
age: 1668781
x-served-by: cache-dfw-kdfw8210046-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 316, 2
x-timer: S1701796969.842742,VS0,VE0
vary: Accept
content-length: 837
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.26.8/js/player.module.js

151.101.86.109

200 OK

134 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/js/player.module.js
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
Unicode text, UTF-8 text, with very long lines (65445)
Size
134 kB (134059 bytes)
Hash
96cb066b3f07e96fd6152b1f57de31ab
20282177194b73c18ac5792822c5f1d297e2ccc8
b174a29e99b9afda8575f9ce18e03efcb7b61f225bebeace1be7ae22d939a794

HTTP Headers

GET /p/4.26.8/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:48 GMT
age: 325395
x-served-by: cache-iad-kjyo7100167-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 56, 187
x-timer: S1701796969.792837,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 134059
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.26.8/js/player.module.js

151.101.86.109

200 OK

134 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/js/player.module.js
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
Unicode text, UTF-8 text, with very long lines (65445)
Size
134 kB (134059 bytes)
Hash
96cb066b3f07e96fd6152b1f57de31ab
20282177194b73c18ac5792822c5f1d297e2ccc8
b174a29e99b9afda8575f9ce18e03efcb7b61f225bebeace1be7ae22d939a794

HTTP Headers

GET /p/4.26.8/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:48 GMT
age: 325395
x-served-by: cache-iad-kjyo7100167-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 56, 188
x-timer: S1701796969.922554,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 134059
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.26.8/js/player.module.js

151.101.86.109

200 OK

134 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/js/player.module.js
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
Unicode text, UTF-8 text, with very long lines (65445)
Size
134 kB (134059 bytes)
Hash
96cb066b3f07e96fd6152b1f57de31ab
20282177194b73c18ac5792822c5f1d297e2ccc8
b174a29e99b9afda8575f9ce18e03efcb7b61f225bebeace1be7ae22d939a794

HTTP Headers

GET /p/4.26.8/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:48 GMT
age: 325395
x-served-by: cache-iad-kjyo7100167-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 56, 189
x-timer: S1701796969.922795,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 134059
X-Firefox-Spdy: h2

tharbadir.com/11?rnd=4257599165&z=2892323&b=15540606&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=phMcFQYJBqVUYueUATnytnKYxSCrxNpV0KI-PdBeoA1gmA9n3qX3s3nOm7sIGCgnqY16lb3qeTeenpdR0kpYZ3LjaEnkkiW6xCaqIOgV73zJurN148gh-bCEO2_s-_6FzE8uKU8l4IxeCzjh2LuhNRc3QuPaOaSb4JibqDjtMmYUIEdOR_OR2jfHHC9BChPKTya51J1rPXyRCr67R0dtRrtYfv9TsRkfYh83ThAlyRIvtBBXFgPtgXbIx0gMojL4gtpgDmaLshUd_JzajrafqAcQugRsVK1DBcC-TpbTNaiyEt6s3qAU31KbkhRaGcA8dULPGerONQygsQNztwp5ttE32QbSQiqtB2DY8mfsj4NsCXkLVyCZNqgmrjSW5vgEyEtAbXqQIVJ91daNCZBW4c3I4jeRIX_eBbxKHVA5vitCqx_mBW4GfGN2UvDA0RKlbHptLXP0OAGDZZMSq0JRIFBOg6JNaWaPl4UgYdcIHcvzsEmDGkaDq-IS-D9MDtRGyILn0HXZx5ApgKpnVybhPT6n3DuBix77EhaEBJkz_vH-h6QLTDE8vn9RrWmsjgH10UErZ5k_3dw90FhSz3zNOkbU6Eyi7obDr3h9jRvMnbgCrE4tXEPucDBjZt1L71gm2cxw09wxmpIzXePtPZllBvIyhIjXwdQHucjVba_DRYFhrctJ37PAlTo_EUjOkpprvWWL0kuOnAyESfl9UmTVMd9yxgjtzAVE6Mcl_g==&ruid=ed759c25-03a5-46fc-a251-2f5e531d0110&subid=755953858162724864&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1

139.45.197.238

200 OK

0 B

URL GET HTTP/2
tharbadir.com/11?rnd=4257599165&z=2892323&b=15540606&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=phMcFQYJBqVUYueUATnytnKYxSCrxNpV0KI-PdBeoA1gmA9n3qX3s3nOm7sIGCgnqY16lb3qeTeenpdR0kpYZ3LjaEnkkiW6xCaqIOgV73zJurN148gh-bCEO2_s-_6FzE8uKU8l4IxeCzjh2LuhNRc3QuPaOaSb4JibqDjtMmYUIEdOR_OR2jfHHC9BChPKTya51J1rPXyRCr67R0dtRrtYfv9TsRkfYh83ThAlyRIvtBBXFgPtgXbIx0gMojL4gtpgDmaLshUd_JzajrafqAcQugRsVK1DBcC-TpbTNaiyEt6s3qAU31KbkhRaGcA8dULPGerONQygsQNztwp5ttE32QbSQiqtB2DY8mfsj4NsCXkLVyCZNqgmrjSW5vgEyEtAbXqQIVJ91daNCZBW4c3I4jeRIX_eBbxKHVA5vitCqx_mBW4GfGN2UvDA0RKlbHptLXP0OAGDZZMSq0JRIFBOg6JNaWaPl4UgYdcIHcvzsEmDGkaDq-IS-D9MDtRGyILn0HXZx5ApgKpnVybhPT6n3DuBix77EhaEBJkz_vH-h6QLTDE8vn9RrWmsjgH10UErZ5k_3dw90FhSz3zNOkbU6Eyi7obDr3h9jRvMnbgCrE4tXEPucDBjZt1L71gm2cxw09wxmpIzXePtPZllBvIyhIjXwdQHucjVba_DRYFhrctJ37PAlTo_EUjOkpprvWWL0kuOnAyESfl9UmTVMd9yxgjtzAVE6Mcl_g==&ruid=ed759c25-03a5-46fc-a251-2f5e531d0110&subid=755953858162724864&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /11?rnd=4257599165&z=2892323&b=15540606&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=phMcFQYJBqVUYueUATnytnKYxSCrxNpV0KI-PdBeoA1gmA9n3qX3s3nOm7sIGCgnqY16lb3qeTeenpdR0kpYZ3LjaEnkkiW6xCaqIOgV73zJurN148gh-bCEO2_s-_6FzE8uKU8l4IxeCzjh2LuhNRc3QuPaOaSb4JibqDjtMmYUIEdOR_OR2jfHHC9BChPKTya51J1rPXyRCr67R0dtRrtYfv9TsRkfYh83ThAlyRIvtBBXFgPtgXbIx0gMojL4gtpgDmaLshUd_JzajrafqAcQugRsVK1DBcC-TpbTNaiyEt6s3qAU31KbkhRaGcA8dULPGerONQygsQNztwp5ttE32QbSQiqtB2DY8mfsj4NsCXkLVyCZNqgmrjSW5vgEyEtAbXqQIVJ91daNCZBW4c3I4jeRIX_eBbxKHVA5vitCqx_mBW4GfGN2UvDA0RKlbHptLXP0OAGDZZMSq0JRIFBOg6JNaWaPl4UgYdcIHcvzsEmDGkaDq-IS-D9MDtRGyILn0HXZx5ApgKpnVybhPT6n3DuBix77EhaEBJkz_vH-h6QLTDE8vn9RrWmsjgH10UErZ5k_3dw90FhSz3zNOkbU6Eyi7obDr3h9jRvMnbgCrE4tXEPucDBjZt1L71gm2cxw09wxmpIzXePtPZllBvIyhIjXwdQHucjVba_DRYFhrctJ37PAlTo_EUjOkpprvWWL0kuOnAyESfl9UmTVMd9yxgjtzAVE6Mcl_g==&ruid=ed759c25-03a5-46fc-a251-2f5e531d0110&subid=755953858162724864&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=cae010572dbc48c383b304da9d0f8f5e; oaidts=1701796961
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:48 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 7a25b432a4ec2662d06ebde0e867449a
access-control-expose-headers: X-Sc
set-cookie: OAID=cae010572dbc48c383b304da9d0f8f5e; expires=Wed, 04 Dec 2024 17:22:48 GMT; secure; SameSite=None
oaidts=1701796961; expires=Wed, 04 Dec 2024 17:22:48 GMT; secure; SameSite=None
oaidvc=1; expires=Wed, 04 Dec 2024 17:22:48 GMT; secure; SameSite=None
CNT=1_v1_fiHtAAEAAADwTAAA; expires=Tue, 05 Dec 2023 18:22:48 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=80&q=85

151.101.192.217

200 OK

1.2 kB

URL GET HTTP/2
i.vimeocdn.com/video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=80&q=85
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782922?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
1.2 kB (1160 bytes)
Hash
c50438e4dfb8692fc548c5c35acdcbff
bde4ca9980d43aa44eb7bc3c03de98f7b8233d9b
8cc39e46a400f32ed41c630120449965861ffac4ea77caa728ac862e985b3f9d

HTTP Headers

GET /video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: c50438e4dfb8692fc548c5c35acdcbff
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-glb-prod
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:49 GMT
age: 171043
x-served-by: cache-dfw-kdal2120101-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 297, 1
x-timer: S1701796969.028695,VS0,VE1
vary: Accept
content-length: 1160
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=80&q=85

151.101.192.217

200 OK

1.2 kB

URL GET HTTP/2
i.vimeocdn.com/video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=80&q=85
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782922?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
1.2 kB (1160 bytes)
Hash
c50438e4dfb8692fc548c5c35acdcbff
bde4ca9980d43aa44eb7bc3c03de98f7b8233d9b
8cc39e46a400f32ed41c630120449965861ffac4ea77caa728ac862e985b3f9d

HTTP Headers

GET /video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: c50438e4dfb8692fc548c5c35acdcbff
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-glb-prod
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:49 GMT
age: 171043
x-served-by: cache-dfw-kdal2120101-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 297, 2
x-timer: S1701796969.159267,VS0,VE0
vary: Accept
content-length: 1160
X-Firefox-Spdy: h2

futmillionaire.com/wp-content/uploads/2022/09/mba1-1.png

172.67.208.25

200 OK

436 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/mba1-1.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 1600 x 850, 8-bit colormap, non-interlaced\012- data
Size
436 kB (435485 bytes)
Hash
7213deec997f140ad021f35ae38f0ef8
9e6d2e2c44d01053c9fd8664cac5d90e53c3f10f
47d8c78148cf4197c726805041d3a899c9bc667410cac489a81bb6aa9d6088d4

HTTP Headers

GET /wp-content/uploads/2022/09/mba1-1.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:49 GMT
content-type: image/png
content-length: 435485
last-modified: Wed, 21 Sep 2022 05:45:40 GMT
etag: "6a51d-5e92974704900"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2777
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gdUE51dSsIoNN8T7CLdSTKhcWL4z9GONC3CyYAC49NZEZL%2FQJJpZBIc0l6gV4bEbxhcfDhnqMldnAakHp89o%2FC4inPd%2FUvmhG%2Bl9MGQPb07K9msXf2pLMDUSd3HkXmT07CtP1Mo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df932393956c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/circle.png

172.67.208.25

200 OK

262 B

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/circle.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 28 x 28, 8-bit colormap, non-interlaced\012- data
Size
262 B (262 bytes)
Hash
bb2feb889afeb14d680ac3ff1a3303b7
f87d4b951bc4c67b3c6da73439064b066dc9952e
b6cb9e1c6bedd7bad56280cc23bf3f2d9f7e2d04ecd5a73d29da9b5025d83b74

HTTP Headers

GET /wp-content/uploads/2022/09/circle.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:49 GMT
content-type: image/png
content-length: 262
last-modified: Fri, 23 Sep 2022 03:57:53 GMT
etag: "106-5e9502ea87240"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2776
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yhiIyfTU%2BdKijJqoyA8BVPfz%2F6wKqIm813ylrXbik4HFFOyPxgLW7%2F1IOC%2F2cjRSDmdZGvbLFhYt2NI5J9Flfo382ZlluARn97f4JeWic5fA8CZUDapbbmqprxQ9UEAeOFhAS4E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df932394156c1-OSL
alt-svc: h3=":443"; ma=86400

f.vimeocdn.com/p/4.26.8/js/vendor.module.js

151.101.86.109

200 OK

101 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/js/vendor.module.js
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782774?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
ASCII text, with very long lines (65457)
Size
101 kB (101179 bytes)
Hash
4cc5aef932ea66a7e42d1a660577754d
4ec581a4137e64ba92c23ee63bb9db0635722086
c96f86de9f83e60dade89361a648f65d9336be20731e88d694c859c9387f71e1

HTTP Headers

GET /p/4.26.8/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:49 GMT
age: 325396
x-served-by: cache-iad-kjyo7100172-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 65, 63759
x-timer: S1701796969.347221,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 101179
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.26.8/js/vendor.module.js

151.101.86.109

200 OK

101 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/js/vendor.module.js
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782774?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
ASCII text, with very long lines (65457)
Size
101 kB (101179 bytes)
Hash
4cc5aef932ea66a7e42d1a660577754d
4ec581a4137e64ba92c23ee63bb9db0635722086
c96f86de9f83e60dade89361a648f65d9336be20731e88d694c859c9387f71e1

HTTP Headers

GET /p/4.26.8/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:49 GMT
age: 325396
x-served-by: cache-iad-kjyo7100172-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 65, 63760
x-timer: S1701796969.360678,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 101179
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.26.8/js/vendor.module.js

151.101.86.109

200 OK

101 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/js/vendor.module.js
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782774?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
ASCII text, with very long lines (65457)
Size
101 kB (101179 bytes)
Hash
4cc5aef932ea66a7e42d1a660577754d
4ec581a4137e64ba92c23ee63bb9db0635722086
c96f86de9f83e60dade89361a648f65d9336be20731e88d694c859c9387f71e1

HTTP Headers

GET /p/4.26.8/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:49 GMT
age: 325396
x-served-by: cache-iad-kjyo7100172-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 65, 63761
x-timer: S1701796969.369653,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 101179
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.26.8/js/vendor.module.js

151.101.86.109

200 OK

101 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/js/vendor.module.js
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782774?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
ASCII text, with very long lines (65457)
Size
101 kB (101179 bytes)
Hash
4cc5aef932ea66a7e42d1a660577754d
4ec581a4137e64ba92c23ee63bb9db0635722086
c96f86de9f83e60dade89361a648f65d9336be20731e88d694c859c9387f71e1

HTTP Headers

GET /p/4.26.8/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:49 GMT
age: 325396
x-served-by: cache-iad-kjyo7100172-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 65, 63762
x-timer: S1701796969.393462,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 101179
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.26.8/js/vendor.module.js

151.101.86.109

200 OK

101 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/js/vendor.module.js
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782774?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
ASCII text, with very long lines (65457)
Size
101 kB (101179 bytes)
Hash
4cc5aef932ea66a7e42d1a660577754d
4ec581a4137e64ba92c23ee63bb9db0635722086
c96f86de9f83e60dade89361a648f65d9336be20731e88d694c859c9387f71e1

HTTP Headers

GET /p/4.26.8/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:49 GMT
age: 325396
x-served-by: cache-iad-kjyo7100172-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 65, 63763
x-timer: S1701796969.455536,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 101179
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.26.8/js/vendor.module.js

151.101.86.109

200 OK

101 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/js/vendor.module.js
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782774?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
ASCII text, with very long lines (65457)
Size
101 kB (101179 bytes)
Hash
4cc5aef932ea66a7e42d1a660577754d
4ec581a4137e64ba92c23ee63bb9db0635722086
c96f86de9f83e60dade89361a648f65d9336be20731e88d694c859c9387f71e1

HTTP Headers

GET /p/4.26.8/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:49 GMT
age: 325396
x-served-by: cache-iad-kjyo7100172-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 65, 63764
x-timer: S1701796969.456297,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 101179
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.26.8/js/vendor.module.js

151.101.86.109

200 OK

101 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.26.8/js/vendor.module.js
IP
151.101.86.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782774?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
ASCII text, with very long lines (65457)
Size
101 kB (101179 bytes)
Hash
4cc5aef932ea66a7e42d1a660577754d
4ec581a4137e64ba92c23ee63bb9db0635722086
c96f86de9f83e60dade89361a648f65d9336be20731e88d694c859c9387f71e1

HTTP Headers

GET /p/4.26.8/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:49 GMT
age: 325396
x-served-by: cache-iad-kjyo7100172-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 65, 63765
x-timer: S1701796970.515206,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 101179
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d?mw=300&mh=169

151.101.192.217

200 OK

9.2 kB

URL GET HTTP/2
i.vimeocdn.com/video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d?mw=300&mh=169
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
9.2 kB (9176 bytes)
Hash
0efe7b37bff91519d82ca23b0ea9eb69
55ebbfad8a314cf48d65ed438d0b8d6773915a5c
7ce1da442096c511147271f032acc15e1a4e6a07af4f7dac7717557c3482123e

HTTP Headers

GET /video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d?mw=300&mh=169 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: 0efe7b37bff91519d82ca23b0ea9eb69
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-g1l6
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:49 GMT
age: 428113
x-served-by: cache-dfw-kdfw8210081-DFW, cache-bma1670-BMA
x-cache: miss, HIT, MISS
x-cache-hits: 111, 0
x-timer: S1701796970.573946,VS0,VE137
vary: Accept
content-length: 9176
X-Firefox-Spdy: h2

futmillionaire.com/wp-includes/js/comment-reply.min.js?ver=5.8.8

172.67.208.25

200 OK

53 kB

URL GET HTTP/3
futmillionaire.com/wp-includes/js/comment-reply.min.js?ver=5.8.8
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (2949)
Size
53 kB (52599 bytes)
Hash
3b59c3b33879d70b46063089ec505e03
4054dbf1c08e09d8514df72dbe137d02efae907a
143ce443c390db3b8598f951de20bd04623859a581a15b8cde43ebfa1f8ec103

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=5.8.8 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Mon, 30 Aug 2021 19:56:51 GMT
etag: W/"ba8-5cacc3bebc6c0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2774
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=alNCX21NPkrmvgNDPY7Da89DL9NFgdO4vJclGnapUAetGAyWXSoOXEFe%2BvecVjpFu8rHAztfbganvr5Yno5o41%2Fkh6CZlCyeWVDoImo0rj%2F7hd6DYUq%2Fy20Np7LP0C14OS9TVow%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58c756c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

i.vimeocdn.com/video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d?mw=300&mh=168

151.101.192.217

200 OK

3.0 kB

URL GET HTTP/2
i.vimeocdn.com/video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d?mw=300&mh=168
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782774?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
3.0 kB (2984 bytes)
Hash
dcf1ca190ac07cb5d1ff22b6f9bf6ea1
d57884e5e3b6edd9f224acbaf44af4d8987ad509
b43ac15826c415acab13809b9cff37ad7e7629e5a354d1adceaeed093efebc86

HTTP Headers

GET /video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d?mw=300&mh=168 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: dcf1ca190ac07cb5d1ff22b6f9bf6ea1
x-viewmaster-lossless-format: automatic
cache-control: public, max-age=2592000
x-backend-server: varnish
via: vvarnish, 1.1 google, 1.1 varnish, 1.1 varnish
viewmaster-server: viewmaster-glb-prod
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:50 GMT
age: 2092100
x-served-by: cache-dfw-kdfw8210023-DFW, cache-bma1670-BMA
x-cache: HIT, HIT
x-cache-hits: 29, 1
x-timer: S1701796970.970249,VS0,VE137
vary: Accept
content-length: 2984
X-Firefox-Spdy: h2

i.vimeocdn.com/video/734922669-dc702bed1bc4973dde42a2eb4cc5690b246d38b147a2c3c0980a541b76df5323-d?mw=800&mh=450

151.101.192.217

200 OK

33 kB

URL GET HTTP/2
i.vimeocdn.com/video/734922669-dc702bed1bc4973dde42a2eb4cc5690b246d38b147a2c3c0980a541b76df5323-d?mw=800&mh=450
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/242400713?autoplay=0&title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
33 kB (33002 bytes)
Hash
e516002759a6de6e938159821aa657e5
903637b6f55237df98222d6296d797ac257d2aea
69db2f91fda0bd65a94f421d2346b308edf04b2cd4f29acbf52454f1f6a7da75

HTTP Headers

GET /video/734922669-dc702bed1bc4973dde42a2eb4cc5690b246d38b147a2c3c0980a541b76df5323-d?mw=800&mh=450 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: e516002759a6de6e938159821aa657e5
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-east1-62kz
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:50 GMT
age: 1830301
x-served-by: cache-dfw-kdfw8210122-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 145, 1
x-timer: S1701796970.107055,VS0,VE2
vary: Accept
content-length: 33002
X-Firefox-Spdy: h2

boltepse.com/custom

139.45.197.250

200 OK

39 B

URL OPTIONS HTTP/2
boltepse.com/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectboltepse.com
FingerprintB1:B8:AE:D4:66:0B:28:B4:D0:38:F5:70:C2:1E:12:60:41:85:FC:D7
ValidityWed, 04 Oct 2023 05:53:01 GMT - Tue, 02 Jan 2024 05:53:00 GMT

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /custom HTTP/1.1
Host: boltepse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 442
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:50 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 9e67d800900d6a0b4fcb82fc70639b97
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d

151.101.192.217

200 OK

20 kB

URL GET HTTP/2
i.vimeocdn.com/video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782922?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
20 kB (20036 bytes)
Hash
2ad0e0d268acbdcf704b3e83a920f400
7a45cea371c0d6bb7e37ed897b48d22d33b3ad71
527234924fe0942856ea87446df70d10ea245b868aff92629a31dd1db6350e08

HTTP Headers

GET /video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: 2ad0e0d268acbdcf704b3e83a920f400
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-glb-prod
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:50 GMT
age: 2387633
x-served-by: cache-dfw-kdfw8210161-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 61, 1
x-timer: S1701796970.215086,VS0,VE2
vary: Accept
content-length: 20036
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d

151.101.192.217

200 OK

14 kB

URL GET HTTP/2
i.vimeocdn.com/video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782774?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
14 kB (13599 bytes)
Hash
4db899dc2f0ed58990eb02dd74a54285
9ae8166516232fcb509226fc073a014ebaed88d5
cf3bb6f3a5c6e516d645d23a190af592a4a4feee6c4dbeea8b8e0754cf71484a

HTTP Headers

GET /video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: 4db899dc2f0ed58990eb02dd74a54285
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-v3f1
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:50 GMT
age: 1761653
x-served-by: cache-dfw-kdfw8210171-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 76, 1
x-timer: S1701796970.347298,VS0,VE3
vary: Accept
content-length: 13599
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=300&mh=168

151.101.192.217

200 OK

4.8 kB

URL GET HTTP/2
i.vimeocdn.com/video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=300&mh=168
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782922?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
4.8 kB (4803 bytes)
Hash
5de0f10350577ee5dec510b306b5091f
b045a422622f468368ed08cd7909d21614d67b23
6bd404e408c6303dee89413b3407d79e9ab52993de3847786d78ed27d849868d

HTTP Headers

GET /video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=300&mh=168 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: 5de0f10350577ee5dec510b306b5091f
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-rvbb
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:50 GMT
age: 2092100
x-served-by: cache-dfw-kdfw8210023-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 10, 1
x-timer: S1701796970.474928,VS0,VE5
vary: Accept
content-length: 4803
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=80&q=85

151.101.192.217

200 OK

1.2 kB

URL GET HTTP/2
i.vimeocdn.com/video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=80&q=85
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782922?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
1.2 kB (1160 bytes)
Hash
c50438e4dfb8692fc548c5c35acdcbff
bde4ca9980d43aa44eb7bc3c03de98f7b8233d9b
8cc39e46a400f32ed41c630120449965861ffac4ea77caa728ac862e985b3f9d

HTTP Headers

GET /video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: c50438e4dfb8692fc548c5c35acdcbff
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-glb-prod
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:50 GMT
age: 171045
x-served-by: cache-dfw-kdal2120101-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 297, 3
x-timer: S1701796971.634691,VS0,VE0
vary: Accept
content-length: 1160
X-Firefox-Spdy: h2

boltepse.com/custom

139.45.197.250

200 OK

39 B

URL OPTIONS HTTP/2
boltepse.com/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectboltepse.com
FingerprintB1:B8:AE:D4:66:0B:28:B4:D0:38:F5:70:C2:1E:12:60:41:85:FC:D7
ValidityWed, 04 Oct 2023 05:53:01 GMT - Tue, 02 Jan 2024 05:53:00 GMT

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /custom HTTP/1.1
Host: boltepse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 806
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:50 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: c30b1379bb29c579c450b1a60776444e
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=80&q=85

151.101.192.217

200 OK

1.2 kB

URL GET HTTP/2
i.vimeocdn.com/video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=80&q=85
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782922?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
1.2 kB (1160 bytes)
Hash
c50438e4dfb8692fc548c5c35acdcbff
bde4ca9980d43aa44eb7bc3c03de98f7b8233d9b
8cc39e46a400f32ed41c630120449965861ffac4ea77caa728ac862e985b3f9d

HTTP Headers

GET /video/491279437-4854fec0bad7c2e0c0ab983d13595a7bbc79fb839ced085c087f038f3e50b21d-d?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: c50438e4dfb8692fc548c5c35acdcbff
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-glb-prod
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:50 GMT
age: 171045
x-served-by: cache-dfw-kdal2120101-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 297, 4
x-timer: S1701796971.766813,VS0,VE0
vary: Accept
content-length: 1160
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d?mw=80&q=85

151.101.192.217

200 OK

1.5 kB

URL GET HTTP/2
i.vimeocdn.com/video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d?mw=80&q=85
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
1.5 kB (1536 bytes)
Hash
29cb5f2a27b8f99637e0683711cf2aee
2c272db89408d19ac811f82940b133f5b037a0dc
50d710132249d84bcde2941aa1661bed961c9dd7cd58dbd0e630896be32a1778

HTTP Headers

GET /video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: 29cb5f2a27b8f99637e0683711cf2aee
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-glb-prod
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:50 GMT
age: 171045
x-served-by: cache-dfw-kdal2120064-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 7, 3
x-timer: S1701796971.904477,VS0,VE0
vary: Accept
content-length: 1536
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d?mw=80&q=85

151.101.192.217

200 OK

837 B

URL GET HTTP/2
i.vimeocdn.com/video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d?mw=80&q=85
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782774?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
837 B (837 bytes)
Hash
4e045a7b6d71146fc51d54823d33159e
e2d5d21ded2c531b3c03fefc0a5b0ba5b08b8dbf
495b841dc8d6b087a097cf3078a768b03f2f76263f3ec9ed43f00fadfede3912

HTTP Headers

GET /video/491279191-c044881703ce36b202bf6ae44a4498ce28a98fcad998e175e7b5fef2544a82f2-d?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: 4e045a7b6d71146fc51d54823d33159e
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-p6kq
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:51 GMT
age: 1668783
x-served-by: cache-dfw-kdfw8210046-DFW, cache-bma1670-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 316, 3
x-timer: S1701796971.004809,VS0,VE0
vary: Accept
content-length: 837
X-Firefox-Spdy: h2

unseenreport.com/pxf.gif?uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17

192.243.59.12

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:22:51 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6a4c2c7a7a1aa871d8da45f41c580817
Strict-Transport-Security: max-age=0; includeSubdomains

futmillionaire.com/wp-includes/js/zxcvbn.min.js

172.67.208.25

200 OK

396 kB

URL GET HTTP/3
futmillionaire.com/wp-includes/js/zxcvbn.min.js
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (53869)
Size
396 kB (395483 bytes)
Hash
027c098ebca6235056092f7b954dfc5f
1ea18e5e6ece74f6f3a7c1a57d2ac2462c9c666b
daa6634ed8d6376bfd22d8f68942d00e1b56db0fa8c9f90ba2af52734dd5593b

HTTP Headers

GET /wp-includes/js/zxcvbn.min.js HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:50 GMT
content-type: application/javascript
last-modified: Mon, 30 Aug 2021 19:56:51 GMT
etag: W/"c8bdd-5cacc3bebc6c0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 4214
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cwq%2FmYK38kPu%2Bz%2FTZ4ej0W4u5aoygExsAOQBMbGazdWWtDKcLPW5RJbmgaSie8lxTSuhjpO%2BTR%2B7eD%2FoTLUN5aesW0BecOkhmIwhv4kd0Z6ZRuqr3FCx2xNpuFs0ZZQzI2z%2BOd4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df93a7c0f56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/plugins/optimizeMember/optimizeMember-o.php?ws_plugin__optimizemember_css=1&qcABC=1&ver=1.2.9-1.2.9-4022997467

172.67.208.25

200 OK

14 kB

URL GET HTTP/3
futmillionaire.com/wp-content/plugins/optimizeMember/optimizeMember-o.php?ws_plugin__optimizemember_css=1&qcABC=1&ver=1.2.9-1.2.9-4022997467
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (14431), with no line terminators
Size
14 kB (14431 bytes)
Hash
6908502faf90a0db01516c6c578f83d4
63c416fc7f93d30ac1677ecc4bc387435e6c02ea
4f9dc398f4a8863dc133c127bedc595ef1807b52d351c846ede487f507c4d786

HTTP Headers

GET /wp-content/plugins/optimizeMember/optimizeMember-o.php?ws_plugin__optimizemember_css=1&qcABC=1&ver=1.2.9-1.2.9-4022997467 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:47 GMT
content-type: text/css; charset=utf-8
x-powered-by: PHP/7.4.33
expires: Tue, 12 Dec 2023 17:22:46 GMT
cache-control: max-age=604800
pragma: public
set-cookie: PHPSESSID=e63cu6ods2rmsfhnhelc0amhuq; path=/
last-modified: Tue, 05 Dec 2023 17:22:46 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ikrDQa9vKTVgoxdVS45faB40G4ye2nSrI4poSyC5leJUrnIxUrNWbISw8E5vlLKCsa8dFh6HbsgU%2BoncY3fAG7js%2Fgey6UPBXNqMULpo1FBuGfiHsjp5TGS2i%2F%2B4zURpHivt2jE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d7e5656c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2023/09/logos-4.png

172.67.208.25

200 OK

6.8 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2023/09/logos-4.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 895 x 151, 8-bit colormap, non-interlaced\012- data
Size
6.8 kB (6816 bytes)
Hash
5d0c0ffff0c88f5608d3196d45c15fc1
1a3dc9307f738404160ee3a66274c1a37b3e4af7
ad958d51528ee26d03c18c8e8f74ceda366378319442528320e627ddfae49e9c

HTTP Headers

GET /wp-content/uploads/2023/09/logos-4.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 6816
last-modified: Fri, 29 Sep 2023 15:57:04 GMT
etag: "1aa0-6068179c89400"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2777
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fO2Itz77HHAV5Z86LTbIeHNZ7Y0wO%2BzI4rZTwp8vuuHfhQWlKWacv9%2BO7QK2mGgYK7oickxPi6aXeqIFCRti8hueaFf1lNaLANZ%2FDwor3Jnnd1nQ9hb0JjpuAuxb%2FLuVPg9LFXI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91ed80656c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-includes/js/zxcvbn-async.min.js?ver=1.0

172.67.208.25

200 OK

351 B

URL GET HTTP/3
futmillionaire.com/wp-includes/js/zxcvbn-async.min.js?ver=1.0
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (362), with no line terminators
Size
351 B (351 bytes)
Hash
ecd4367e48608acfb940fd5d01964e15
057c24b96adc982a38b6ad63d9049f2874df8045
e0bba88121620fdff4df2ede92cb3d3865b3a33c143edf66d81f045e732b4b30

HTTP Headers

GET /wp-includes/js/zxcvbn-async.min.js?ver=1.0 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Mon, 30 Aug 2021 19:56:52 GMT
etag: W/"15f-5cacc3bfb0900-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2778
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x9fo%2BfYf6LRIUJSD7XWWhx5nDXU%2Bb59BDvqA6SQoh8LYSVcMkGnkPjzE%2Fdn%2FYs7LOi18iI7prDQtQfMbyMAGpybJen%2Fa0UDQQYfXgTOSZg%2FKgyBh8eFxxTX%2BgADjTBRiUO16VmI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91ddec356c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

code.jquery.com/jquery-2.2.4.min.js

151.101.66.137

200 OK

86 kB

URL GET HTTP/2
code.jquery.com/jquery-2.2.4.min.js
IP
151.101.66.137:443
ASN
#54113 FASTLY

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32065)
Size
86 kB (85578 bytes)
Hash
2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e

HTTP Headers

GET /jquery-2.2.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://futmillionaire.com
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-14e4a"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:46 GMT
age: 6893167
x-served-by: cache-lga21935-LGA, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 46, 438639
x-timer: S1701796966.211170,VS0,VE0
vary: Accept-Encoding
content-length: 29811
X-Firefox-Spdy: h2

i.vimeocdn.com/video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d

151.101.192.217

200 OK

51 kB

URL GET HTTP/2
i.vimeocdn.com/video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d
IP
151.101.192.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/107782773?title=0&byline=0&portrait=0
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image\012- data
Size
51 kB (51299 bytes)
Hash
08526e54d971c32d93694f5a3a176130
d71ad59db7eba42315817db96e8fc2429ae2cda9
906c3108257abace161ff96b044265694a1c1d1e27f79d44494b301380f6a949

HTTP Headers

GET /video/491279234-d2f5556910fbd7f3006f37055c0495b4b95d7e108b2fb36b6dd9c4216090b791-d HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/avif
etag: 08526e54d971c32d93694f5a3a176130
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-east1-rgfs
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:49 GMT
age: 312660
x-served-by: cache-dfw-kdfw8210028-DFW, cache-bma1670-BMA
x-cache: miss, HIT, MISS
x-cache-hits: 17, 0
x-timer: S1701796970.796838,VS0,VE153
vary: Accept
content-length: 51299
X-Firefox-Spdy: h2

futmillionaire.com/wp-content/uploads/2022/09/image8.png

172.67.208.25

200 OK

26 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/image8.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 443 x 320, 8-bit colormap, non-interlaced\012- data
Size
26 kB (26451 bytes)
Hash
7a27ba36bf80980735b16702e51da8b6
11f4af1670f8bb40b19faefc1c55c3852370846c
d01a8d94ddbd60f15736d5623d24b0bba1f88ebaa762277de3da429427dc0b5c

HTTP Headers

GET /wp-content/uploads/2022/09/image8.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 26451
last-modified: Fri, 23 Sep 2022 03:57:46 GMT
etag: "6753-5e9502e3da280"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pnB9YdrRY0HuKZ0oTsprOwrpXRBaq%2FzPuWMGGHpCxhpd0nbu%2BD8grhpfxHOJ9n5B%2Bc1q2nOW3FACcBPbBBJHKUu9%2BgzTQxKLNbCXGOPP%2BgWmllU%2FYVeTmehuJ%2BD5Orx6xt6xQqQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58b956c1-OSL
alt-svc: h3=":443"; ma=86400

dragnag.com/pixel/sbs?c=1

173.233.137.52

200 OK

0 B

URL GET HTTP/1.1
dragnag.com/pixel/sbs?c=1
IP
173.233.137.52:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectdragnag.com
FingerprintDA:4C:92:8F:5C:67:EE:4F:B6:69:E7:5B:1C:66:9F:48:5B:CD:11:FF
ValidityTue, 28 Nov 2023 10:50:07 GMT - Mon, 26 Feb 2024 10:50:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: dragnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 17:22:45 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

futmillionaire.com/wp-content/uploads/2022/09/image12.png

172.67.208.25

200 OK

27 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/image12.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 459 x 253, 8-bit colormap, non-interlaced\012- data
Size
27 kB (26607 bytes)
Hash
674512474276e39f3a17e8b49154e65c
eb353797063e0d596ba20f8007945088f3e5753c
fee81c43d646b93386563fb9d3ac0866fd4c4f8ab96c1402d3f72800e145d90b

HTTP Headers

GET /wp-content/uploads/2022/09/image12.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 26607
last-modified: Fri, 23 Sep 2022 06:19:17 GMT
etag: "67ef-5e95228580340"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BJp7SnFVTTAs8US52qKN1iLsmnVr4sGepFn46ZXjFTbxHHe0psVtk16yOXP42MRSO2qwNYcn5c7ZwBMgxgjafmo2Cg7Es5XbQbttVkSCYmbl5f4ZF0e%2B3DyqS0iSajTNzM8rW7c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58be56c1-OSL
alt-svc: h3=":443"; ma=86400

eehuzaih.com/400/5005565

139.45.197.237

200 OK

89 kB

URL GET HTTP/2
eehuzaih.com/400/5005565
IP
139.45.197.237:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
89 kB (88926 bytes)
Hash
4dd1f58d3a1e6edcdf5ffb62bd6a2e75
627d691c35dc0104af7a7433e8897c37b0fd2176
b40eae38ce3a299c6a1864df81609126c9c7d55fabf87d5614298dcfb614a024

HTTP Headers

GET /400/5005565 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:41 GMT
content-type: application/javascript
x-trace-id: f2d5cb48b23bb83914cce5753c781f89
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=0b7ffe7b670c47a6b0019c777ded46b7; expires=Wed, 04 Dec 2024 17:22:41 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

futmillionaire.com/wp-content/uploads/2022/09/icon11.png

172.67.208.25

200 OK

819 B

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/icon11.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 59 x 59, 8-bit colormap, non-interlaced\012- data
Size
819 B (819 bytes)
Hash
7e67310f3ac085e5a227e2306a68e590
e55d3275fb477adb4b1084ad903fd8d8b1605c41
38a238aec14495992846d7fd937fd7169d1919a108ef1c5e7d1cd8750ff68e05

HTTP Headers

GET /wp-content/uploads/2022/09/icon11.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 819
last-modified: Thu, 22 Sep 2022 11:11:59 GMT
etag: "333-5e94221477dc0"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WcXwMqRSp1r1tMap2dlnWR8CDmHOcp8AU4ACPXmuZtSoSycaXZjZyxv0N3%2FTiLlP4ovIE0ptwVAJi6aP%2F1rEM7KDogjD%2Bt%2BLfo1loTzM0dbGv6ZCyMdaNCSEfMD51BZ73%2FIGi%2Fg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f085556c1-OSL
alt-svc: h3=":443"; ma=86400

142.250.74.78

301 Moved Permanently

0 B

URL GET HTTP/3
apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fsampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 301 Moved Permanently
location: http://developers.google.com/
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 05 Dec 2023 17:22:42 GMT
expires: Tue, 05 Dec 2023 17:52:42 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864

172.67.208.25

200 OK

141 kB

URL GET HTTP/2
futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type

Size
141 kB (140857 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://futmillionaire.com/wp-json/>; rel="https://api.w.org/", <https://futmillionaire.com/wp-json/wp/v2/pages/4040>; rel="alternate"; type="application/json", <https://futmillionaire.com/>; rel=shortlink
set-cookie: PHPSESSID=9f774695fc5909b50548d3ff5a18eace; path=/
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DaZ1TDAGOiZv0%2BVbMiJd1DIsUy0xx5d6yUIsTh0wfcdFXQlHl5uY2gQ2IyH2tUC%2FyUXEHPjzrzq%2BAibOxfYEBwQBvqDvYWJJAS1bPXgjHz%2BquKRktu%2F7i5bygpy9aCGMckh%2FvKQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df914ab195699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=6.4.1

192.185.106.252

200 OK

104 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=6.4.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
HTML document, ASCII text, with very long lines (1754), with CRLF line terminators
Size
104 kB (103652 bytes)
Hash
ef9b7abbc5670902d89c6d20af50b7c3
2593f7764d07fecf938574d3d93693f1974759d2
17cadc0ae5ff07b667c2150bce71007b771bcc75ce070fd2a697ee2e60109535

HTTP Headers

GET /wp-content/themes/vugla/js/scripts.js?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 12:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: application/javascript
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/animate.css

172.64.109.10

200 OK

79 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/animate.css
IP
172.64.109.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text
Size
79 kB (79249 bytes)
Hash
e1d8acd5ee9d1a90ea09313cbd8f2b02
8a8327b115d1356715e63270d1ce6d46124c7b1a
3028c87fc798ac3741f02079034e6c23462afc0c5e6c8d321188ce3716c8472a

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:22:44 GMT
content-type: text/css
last-modified: Thu, 19 Oct 2023 15:30:49 GMT
etag: W/"65314ba9-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z6EJuoVlfOQE4Y6K3ixCcj9A14vkWQw3tznRoXBv2Tad9xseFvY0gV4zhLMobUnVyDErGdPgBLqOQG%2BxduQ%2FNK1kDSIQJzx5dmuZqZ4H4Y1SpbCvuElUVN9VQedNdB%2BS2lqZ2GDCZ5X5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830df912dd7048c7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

64.233.161.84

200 OK

565 B

URL GET HTTP/2
accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP
64.233.161.84:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintF3:FB:54:1B:21:E9:69:01:41:02:BB:D0:97:A2:BA:45:72:5A:71:D8
ValidityMon, 20 Nov 2023 08:09:49 GMT - Mon, 12 Feb 2024 08:09:48 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (585), with no line terminators
Size
565 B (565 bytes)
Hash
dc29d34a5820776d25b3a6b5e162d4aa
3170bef6305f861fe206958dbd8edac567bcfb0c
96a939276f6ce596b5d02428bbf5a88ae3f1a332e364c6fb69d23e6c1b97f22d

HTTP Headers

GET /o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 05 Dec 2023 17:22:43 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-sOftE4KZGXRRi0SZHPeRjA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport
cross-origin-resource-policy: same-site
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

futmillionaire.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7

172.67.208.25

200 OK

6.4 kB

URL GET HTTP/3
futmillionaire.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (6560), with no line terminators
Size
6.4 kB (6406 bytes)
Hash
0a479b3e8222e6794faf3c7964101921
9313c4ce9b463140e877ad4953afe458caa7604f
175ab75886c5ac8bc6f1da0a86fb335df93a8b696e9327d15e585604518ef022

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Mon, 30 Aug 2021 19:56:51 GMT
etag: W/"1906-5cacc3bebc6c0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2778
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=46EJbA5CCdLMM54pKeSIGaPSdA5MiGaboOLjN2DkuOXdoewZzyLfjr77IZ%2F365SA%2BIhieeUOX%2Bc3egWcKQvMYP5NUr52EmeCV9n7FHj7FgIysJByDgMkWKNKaNTyjU4oyj7b6H0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91ddec556c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

boltepse.com/pfe/current/defaultSkin.min.js

139.45.197.250

200 OK

57 kB

URL GET HTTP/2
boltepse.com/pfe/current/defaultSkin.min.js
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectboltepse.com
FingerprintB1:B8:AE:D4:66:0B:28:B4:D0:38:F5:70:C2:1E:12:60:41:85:FC:D7
ValidityWed, 04 Oct 2023 05:53:01 GMT - Tue, 02 Jan 2024 05:53:00 GMT

File type

Size
57 kB (57187 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: boltepse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:49 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 17:44:23 GMT
etag: W/"6564d577-df63"
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.6.1.min.js

151.101.66.137

200 OK

90 kB

URL GET HTTP/2
code.jquery.com/jquery-3.6.1.min.js
IP
151.101.66.137:443
ASN
#54113 FASTLY

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65447)
Size
90 kB (89664 bytes)
Hash
00727d1d5d9c90f7de826f1a4a9cc632
ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2
a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74

HTTP Headers

GET /jquery-3.6.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://futmillionaire.com
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15e40"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 17:22:46 GMT
age: 2413452
x-served-by: cache-lga13629-LGA, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 5, 86706
x-timer: S1701796966.026350,VS0,VE0
vary: Accept-Encoding
content-length: 30957
X-Firefox-Spdy: h2

futmillionaire.com/wp-content/uploads/2023/09/4.png

172.67.208.25

200 OK

85 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2023/09/4.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 853 x 580, 8-bit colormap, non-interlaced\012- data
Size
85 kB (84630 bytes)
Hash
e0a30e5f0e5baefb5c589458ca0fae49
8eaefbef64cebc7c576762252f059c9e576f60e7
d43502b4c402673bac0df803a4925701ab550ea7d8dfba3d423709ac0da8d118

HTTP Headers

GET /wp-content/uploads/2023/09/4.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 84630
last-modified: Fri, 29 Sep 2023 16:11:52 GMT
etag: "14a96-60681aeb66200"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nR195ndjaGwsEhs8vEI37CG6EaeF400ZSeuFZpFeh2rt4tGhs2wQqZp%2FND2iApbpnS05%2FvqziupREbj50zYx4pJKuEiy9RByYvTWgVExmRRXQ1EZ%2BjAIueYQwS1BqEE1extCNcs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f489c56c1-OSL
alt-svc: h3=":443"; ma=86400

unseenreport.com/pxf.gif?uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17

192.243.59.12

200 OK

0 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=15b9d137-37bc-4909-ba7d-a30ac0cd4ed5&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:22:51 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ff9fecd28cafafbcdabcb21da82ade5c
Strict-Transport-Security: max-age=0; includeSubdomains

futmillionaire.com/wp-content/uploads/2023/09/video2.png

172.67.208.25

200 OK

10 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2023/09/video2.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 241 x 237, 8-bit colormap, non-interlaced\012- data
Size
10 kB (10495 bytes)
Hash
7fad138b7bdc67305c4f6c47325ac050
1581a8209f205bc95c94c01ae81b394a8f14dae3
486e6d66540e9372cef857f08c33c8c7dd4bdf05f3443d21f3c8c2e2d0d83b3a

HTTP Headers

GET /wp-content/uploads/2023/09/video2.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 10495
last-modified: Fri, 29 Sep 2023 16:01:53 GMT
etag: "28ff-606818b025e40"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2776
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MTB85If44hJ6lq4mlBfWUFEzn4sdk5gpq3WRn8tKvzpLOKLGvEemJRjSs6NTVomNSBEetc28VpfcD4%2Fpneh%2B2H8dz4CZd4v%2BVBeqrH7yOwSMPjfTPwJlQEizcPnQtVeqC1dWH%2Fs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f085056c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/themes/optimizePressTheme/lib/assets/default.min.css?ver=2.5.18

172.67.208.25

200 OK

407 kB

URL GET HTTP/3
futmillionaire.com/wp-content/themes/optimizePressTheme/lib/assets/default.min.css?ver=2.5.18
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type

Size
407 kB (406947 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/themes/optimizePressTheme/lib/assets/default.min.css?ver=2.5.18 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: text/css
last-modified: Wed, 27 Sep 2023 23:21:20 GMT
etag: W/"635a3-6065f72ec1c00-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2780
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wmai0ZopMaRuH8lDFQnCCh%2F0D8ignyrWDVQ6PfJhhrVZzTCRDelf8mxFa2KfuVsmEQcBuPqMxLzbUFyjYF1wkvh7ZTg7QNczjFeDp40U7UU65LpttGOhR5hiUmMYpp%2FPBCWVzps%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91d7e5256c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/plugins/popup-builder/public/js/PopupBuilder.js?ver=4.1.15

172.67.208.25

200 OK

82 kB

URL GET HTTP/3
futmillionaire.com/wp-content/plugins/popup-builder/public/js/PopupBuilder.js?ver=4.1.15
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type

Size
82 kB (82073 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/plugins/popup-builder/public/js/PopupBuilder.js?ver=4.1.15 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Fri, 29 Sep 2023 15:49:30 GMT
etag: W/"14099-606815eb91680-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2778
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8ok8r35V0C0DWK5BeVQixOThbPGIWRO3m18gdJRVt7N6ooir3Tg1qabALxSioEcS7K3vlP3BkIetgZ2z0AwEyk6T4PKga1tnQ%2BHLRqRFFDCgEqEWcRw7jvrrth%2FxXx07uCbMh6o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91ddec256c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

tharbadir.com/27/b7af9eee900df9a8aa2af9ad8ee46174

139.45.197.238

200 OK

413 kB

URL GET HTTP/2
tharbadir.com/27/b7af9eee900df9a8aa2af9ad8ee46174
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type
ASCII text, with very long lines (65523)
Size
413 kB (412914 bytes)
Hash
1dc3ebe1459db3cde0597b21156f2665
0e5a8c7b79a34f4fffaeab7c7eb4f3a19b0d75f6
1a3f7f2cfe5fba958e9df1a38c0980aab5bb21225601ea849f9e6df4afe09f2e

HTTP Headers

GET /27/b7af9eee900df9a8aa2af9ad8ee46174 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=c4626253a8e9413d904c997214d847e1; oaidts=1701796961
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:42 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 39bf64c92a9a1c77a93f110618317b4c
cache-control: max-age:290304000, public
last-modified: Fri, 24 Nov 2023 06:46:30 GMT
expires: Fri, 24 Dec 2083 06:46:30 GMT
access-control-expose-headers: X-Sc
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

shineinternalindolent.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3smP36IXXbwIHgYPoiCT7vke97C4rivBbBJ3V3LxUl1VPSlT3dVU9cckp6wrsscRL%2Bqp80yyYdcg7h%2BgyMTLEhQyFwm4OXgTvIiw7FF6MjD6QtX7vvW8h%2Bd53vpsNz0jHlJ6unZDb0ul6GKr5lZfX5cR17mtrtyuem7NvVxdl1G7ebk6KC%2BTveW5rZr7RvU9wTb1Yt31XNdzvep1aUSgB4tTFDI%2B7Hm1nltr1mteq4mB%2BW9vUweWOuDZGbkEySf%2F23j8CJKNEYXfXRN2M9Hxm%2B%2BGqaKJNsj4wYfRZqTzCOG8DIyDIDqYTUPbCSFfXoCODmYKoLO9UgF8OSHOrx786GBGE362f87UVxARfP488mwMocaQdAym70LyEwIwjpVVROH9FW1yunWO0hKdkIWnf0PmE7Lw5CVE4bdXlRxUb2mVJlJHFoOggByMIftjxOkRkm0HMj8CSz6B5L%2BQxafLiMK9Vas0JC%2Bm6qUcQwZjKDEEtQ7S8kgHaeAgjR2E%2FLRKW73AdTuBHzQa3SZjrNFgrNVt8xZvNLuBi5SV9IZI4iGYGoKZHcRmB5vy85PWJZj0R9iNApY7sMmEOB%2FsIOMFckGQW4KcEuSSIE8I8qzY58rWbXGfK5v63izXZ7lRjHTS36X7OumLiICa4W58Rl6c2vPs9%2F9jU5xWWc%2BrN7x2h9Yb7TZvtF3Gm7zrcsrrlDVaXVhZQNoLU8Xb5a5wEXGZb%2FwJnx7BqiMwWQFNPdB81Km7oBujZtfFdvQgS%2FuK1pgOwXWBOFlAsuXsqjPy8pTEq5XfINjxlYevHF70XvsDzBSITYGP5U8EfXVvdFPnZO%2Bmzi15tBonMpTbtNzfrYQmovLwfbGVa8OXrtnhg7dZCZTl4W1hk2UacRn1LfnmquRcmOvaMEG%2BX7Lrwl9L7cbV1ERpvLz2zvWlMDbCWqmjMag8WX0GJidk4c4P05%2F5ws%2BfQpoxTFogTI%2FJLCD1EVi8AxvP2VtNYNR8xo8ryNNiZOr%2B%2FFFJAiXmPfUL2H%2F1%2FrzetffQNxXQ5C6isEBmCmSqAFVD2PS5URKb4yuPvyrja%2FiqMvKVqez5yqgvJqRz56%2FS3yfnJlt5WhWtwA2EWxd%2B0PODDnV5L2j2fNrzRMdvUQ%2BJnQj9kf8PAAAA%2F%2F8BAAD%2F%2F3uVUL17BAAA

173.233.139.164

200 OK

0 B

URL GET HTTP/1.1
shineinternalindolent.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3smP36IXXbwIHgYPoiCT7vke97C4rivBbBJ3V3LxUl1VPSlT3dVU9cckp6wrsscRL%2Bqp80yyYdcg7h%2BgyMTLEhQyFwm4OXgTvIiw7FF6MjD6QtX7vvW8h%2Bd53vpsNz0jHlJ6unZDb0ul6GKr5lZfX5cR17mtrtyuem7NvVxdl1G7ebk6KC%2BTveW5rZr7RvU9wTb1Yt31XNdzvep1aUSgB4tTFDI%2B7Hm1nltr1mteq4mB%2BW9vUweWOuDZGbkEySf%2F23j8CJKNEYXfXRN2M9Hxm%2B%2BGqaKJNsj4wYfRZqTzCOG8DIyDIDqYTUPbCSFfXoCODmYKoLO9UgF8OSHOrx786GBGE362f87UVxARfP488mwMocaQdAym70LyEwIwjpVVROH9FW1yunWO0hKdkIWnf0PmE7Lw5CVE4bdXlRxUb2mVJlJHFoOggByMIftjxOkRkm0HMj8CSz6B5L%2BQxafLiMK9Vas0JC%2Bm6qUcQwZjKDEEtQ7S8kgHaeAgjR2E%2FLRKW73AdTuBHzQa3SZjrNFgrNVt8xZvNLuBi5SV9IZI4iGYGoKZHcRmB5vy85PWJZj0R9iNApY7sMmEOB%2FsIOMFckGQW4KcEuSSIE8I8qzY58rWbXGfK5v63izXZ7lRjHTS36X7OumLiICa4W58Rl6c2vPs9%2F9jU5xWWc%2BrN7x2h9Yb7TZvtF3Gm7zrcsrrlDVaXVhZQNoLU8Xb5a5wEXGZb%2FwJnx7BqiMwWQFNPdB81Km7oBujZtfFdvQgS%2FuK1pgOwXWBOFlAsuXsqjPy8pTEq5XfINjxlYevHF70XvsDzBSITYGP5U8EfXVvdFPnZO%2Bmzi15tBonMpTbtNzfrYQmovLwfbGVa8OXrtnhg7dZCZTl4W1hk2UacRn1LfnmquRcmOvaMEG%2BX7Lrwl9L7cbV1ERpvLz2zvWlMDbCWqmjMag8WX0GJidk4c4P05%2F5ws%2BfQpoxTFogTI%2FJLCD1EVi8AxvP2VtNYNR8xo8ryNNiZOr%2B%2FFFJAiXmPfUL2H%2F1%2FrzetffQNxXQ5C6isEBmCmSqAFVD2PS5URKb4yuPvyrja%2FiqMvKVqez5yqgvJqRz56%2FS3yfnJlt5WhWtwA2EWxd%2B0PODDnV5L2j2fNrzRMdvUQ%2BJnQj9kf8PAAAA%2F%2F8BAAD%2F%2F3uVUL17BAAA
IP
173.233.139.164:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectshineinternalindolent.com
Fingerprint6D:2F:FA:76:0F:F3:87:81:20:04:11:2D:33:E8:C3:A4:9F:8E:07:5D
ValidityTue, 28 Nov 2023 08:00:05 GMT - Mon, 26 Feb 2024 08:00:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3smP36IXXbwIHgYPoiCT7vke97C4rivBbBJ3V3LxUl1VPSlT3dVU9cckp6wrsscRL%2Bqp80yyYdcg7h%2BgyMTLEhQyFwm4OXgTvIiw7FF6MjD6QtX7vvW8h%2Bd53vpsNz0jHlJ6unZDb0ul6GKr5lZfX5cR17mtrtyuem7NvVxdl1G7ebk6KC%2BTveW5rZr7RvU9wTb1Yt31XNdzvep1aUSgB4tTFDI%2B7Hm1nltr1mteq4mB%2BW9vUweWOuDZGbkEySf%2F23j8CJKNEYXfXRN2M9Hxm%2B%2BGqaKJNsj4wYfRZqTzCOG8DIyDIDqYTUPbCSFfXoCODmYKoLO9UgF8OSHOrx786GBGE362f87UVxARfP488mwMocaQdAym70LyEwIwjpVVROH9FW1yunWO0hKdkIWnf0PmE7Lw5CVE4bdXlRxUb2mVJlJHFoOggByMIftjxOkRkm0HMj8CSz6B5L%2BQxafLiMK9Vas0JC%2Bm6qUcQwZjKDEEtQ7S8kgHaeAgjR2E%2FLRKW73AdTuBHzQa3SZjrNFgrNVt8xZvNLuBi5SV9IZI4iGYGoKZHcRmB5vy85PWJZj0R9iNApY7sMmEOB%2FsIOMFckGQW4KcEuSSIE8I8qzY58rWbXGfK5v63izXZ7lRjHTS36X7OumLiICa4W58Rl6c2vPs9%2F9jU5xWWc%2BrN7x2h9Yb7TZvtF3Gm7zrcsrrlDVaXVhZQNoLU8Xb5a5wEXGZb%2FwJnx7BqiMwWQFNPdB81Km7oBujZtfFdvQgS%2FuK1pgOwXWBOFlAsuXsqjPy8pTEq5XfINjxlYevHF70XvsDzBSITYGP5U8EfXVvdFPnZO%2Bmzi15tBonMpTbtNzfrYQmovLwfbGVa8OXrtnhg7dZCZTl4W1hk2UacRn1LfnmquRcmOvaMEG%2BX7Lrwl9L7cbV1ERpvLz2zvWlMDbCWqmjMag8WX0GJidk4c4P05%2F5ws%2BfQpoxTFogTI%2FJLCD1EVi8AxvP2VtNYNR8xo8ryNNiZOr%2B%2FFFJAiXmPfUL2H%2F1%2FrzetffQNxXQ5C6isEBmCmSqAFVD2PS5URKb4yuPvyrja%2FiqMvKVqez5yqgvJqRz56%2FS3yfnJlt5WhWtwA2EWxd%2B0PODDnV5L2j2fNrzRMdvUQ%2BJnQj9kf8PAAAA%2F%2F8BAAD%2F%2F3uVUL17BAAA HTTP/1.1
Host: shineinternalindolent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 17:22:44 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9328077cc5b8e89145a163b08c0176fc
Strict-Transport-Security: max-age=0; includeSubdomains

futmillionaire.com/wp-content/plugins/page-scroll-to-id/js/page-scroll-to-id.min.js?ver=1.7.8

172.67.208.25

200 OK

26 kB

URL GET HTTP/3
futmillionaire.com/wp-content/plugins/page-scroll-to-id/js/page-scroll-to-id.min.js?ver=1.7.8
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (26160)
Size
26 kB (26200 bytes)
Hash
a16497dbdf081c2bffe0645b52275fa4
589d0bd2ea7ee7e2a5b0968a3bae300fc345423d
683194a1ccdbff2ccb1d049dbead875f871f0916266d3cb01e92023303aba203

HTTP Headers

GET /wp-content/plugins/page-scroll-to-id/js/page-scroll-to-id.min.js?ver=1.7.8 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Fri, 29 Sep 2023 15:49:27 GMT
etag: W/"6658-606815e8b4fc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2774
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NEMGBDVmz%2BkxL9RMzMWTvnY2VIQOQSkzGQ0BCAbDViMAtOXmT9YJhNIfMmE8lDd9KNDCv8E7L2Wax3vlQ5331Rsj2bKNOyPRQvbCosRbKz0ZYqne2ieSBtWpjg4PzVu%2BVeQZUG4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58c856c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/fonts/ProximaNovaA-Bold.woff

172.67.208.25

200 OK

25 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/fonts/ProximaNovaA-Bold.woff
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
Web Open Font Format, TrueType, length 24604, version 2.1\012- data
Size
25 kB (24604 bytes)
Hash
db1795b208a0b0b2843c8e3a5e90b3ee
0999c6b583454e129aa886c083d7310a706a263b
ddef6ded6785c3bef08acd4375b5cc5d7ad0e3860492057c97af28a003c4fe58

HTTP Headers

GET /wp-content/uploads/fonts/ProximaNovaA-Bold.woff HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:48 GMT
content-type: font/woff
content-length: 24604
last-modified: Mon, 02 Sep 2019 04:21:57 GMT
etag: "601c-5918a4ffc4340"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ObhiRnVNDkENQh4i0ef2BJwr9MMSMUbE5KJyXEWzC%2FIJaxJzc4k2%2F4iAGJGHGWa07qpf6g2NEbiNiPL9P18H79M0UfB0IoF1eh1TCkHvYN%2F3q2kqkE2rOvee%2BEZBXdxkSh9d6%2Fg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df9291d4556c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/icn13.png

172.67.208.25

200 OK

528 B

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/icn13.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 60 x 60, 8-bit colormap, non-interlaced\012- data
Size
528 B (528 bytes)
Hash
f80f1dac24f123d61db6095e3536b945
c6ba81d8a1b674804d90c8c71bd447a7497d5b0d
66e358b9a6a1c38b7145954e05a01173fabf140bba4d6e5207cc3accb20afa86

HTTP Headers

GET /wp-content/uploads/2022/09/icn13.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 528
last-modified: Sat, 24 Sep 2022 05:02:38 GMT
etag: "210-5e96534103780"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IIv0kMZhMCqxyktNu6nQ4e418c6Solber1pT%2FFyWCICiLIPZYTKPsmLMqMn7xCb9t67mZmxNWmZJyz6rQCpXK696mMOdvYwzEaTbOMqaSj5u4GLrSXbyI7YUyNxkCCiUKF50qxY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f489656c1-OSL
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

173.194.222.95

200 OK

6.8 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
173.194.222.95:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT

File type
ASCII text, with very long lines (7013), with no line terminators
Size
6.8 kB (6824 bytes)
Hash
49475c425d6c00477bb339179326c49b
bd97deeb753f44f43a21feafa92d98239fa511bd
598841a98ad357d2896d2f093ea3e4e1d44e24b3351268ffd45e61ff8c1d0e09

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 17:22:44 GMT
date: Tue, 05 Dec 2023 17:22:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

futmillionaire.com/wp-content/uploads/2023/09/5.png

172.67.208.25

200 OK

16 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2023/09/5.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 438 x 282, 8-bit colormap, non-interlaced\012- data
Size
16 kB (15616 bytes)
Hash
3738353223113498296094f7a093fee9
738f38a9d56f06cc53418f27f1ec8e5cede6c5b0
254f3facfdeb486f5001dbbc5b5092ddcc6ec7a05068f984107853498a7e6ddf

HTTP Headers

GET /wp-content/uploads/2023/09/5.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 15616
last-modified: Fri, 29 Sep 2023 16:12:39 GMT
etag: "3d00-60681b1838bc0"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P1SAvB5rfSA8vzPFEQVlX5THGIVAuMOEtl%2BPPXbHjOvA3VGBfyG5AOC80DMxRyMbM3NgRpSh6P7XdKJjxzlEezi4VJAbIOTcs2oabP2%2FAUaJHuCKPLYEamXbOg0s1MDnlE3Jca4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f489d56c1-OSL
alt-svc: h3=":443"; ma=86400

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7NCJ73THPT&cid=837343671.1701796968&gtm=45je3bt0v879882835&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1067552352

142.250.74.35

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7NCJ73THPT&cid=837343671.1701796968&gtm=45je3bt0v879882835&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1067552352
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32
ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7NCJ73THPT&cid=837343671.1701796968&gtm=45je3bt0v879882835&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1067552352 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 05 Dec 2023 17:22:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1

192.185.106.252

200 OK

571 kB

URL GET HTTP/2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type

Size
571 kB (571247 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:30 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: application/javascript
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

futmillionaire.com/wp-content/uploads/2023/09/7-2.jpg

172.67.208.25

200 OK

40 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2023/09/7-2.jpg
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 998x689, components 3\012- data
Size
40 kB (40427 bytes)
Hash
44c030f3bb988a356db55ba391c9d18f
2a0d94a98e86bcdcf808f183bd0d63b2619b93af
b140fe8169b4c1b655abc70922024f652dd94a596fa1a1291c4556f8d0cc933b

HTTP Headers

GET /wp-content/uploads/2023/09/7-2.jpg HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/jpeg
content-length: 40427
last-modified: Sat, 30 Sep 2023 15:21:02 GMT
etag: "9deb-6069516c27380"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ouuJsew6iDQFSvJqoS%2FRozFk0KCfV0ShaFHleoZmPxU1IvU3HvqSIRsdanRhVUQrWDyI55tUTU3cIrHVjm5wB0LbZfLgWFk3g0qM5YW71Q9xcNGpBCMO86JmKT0IYEiBKs728B8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58b556c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/op-front-all.min.js?ver=2.5.18

172.67.208.25

200 OK

65 kB

URL GET HTTP/3
futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/op-front-all.min.js?ver=2.5.18
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type

Size
65 kB (64719 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/themes/optimizePressTheme/lib/js/op-front-all.min.js?ver=2.5.18 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Wed, 27 Sep 2023 23:21:20 GMT
etag: W/"fccf-6065f72ec1c00-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UPfP1T0qljU2lYajjCdvRnkJhgd6t%2BMV0cC%2FtP2nq2AUM1go%2BEp6ENu7gBecbNsrKhS7rUZzl2vhUoSGj5%2FS4HpTlMDrHJTXLm%2BQkzDPvpzPkq6be7VpfcF6CjQyLl2U0QewdOc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58cb56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

prod.cbstatic.net/dist/injectable.js

143.204.55.24

200 OK

191 kB

URL GET HTTP/2
prod.cbstatic.net/dist/injectable.js
IP
143.204.55.24:443
ASN
#16509 AMAZON-02

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerAmazon
Subject*.cbstatic.net
FingerprintF8:81:4B:D2:24:61:E4:3E:E9:83:B4:81:64:D4:F0:F7:E4:96:CA:B2
ValidityWed, 19 Jul 2023 00:00:00 GMT - Fri, 16 Aug 2024 23:59:59 GMT

File type

Size
191 kB (191051 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /dist/injectable.js HTTP/1.1
Host: prod.cbstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 05 Dec 2023 17:22:48 GMT
last-modified: Mon, 21 Dec 2020 21:57:37 GMT
x-amz-version-id: RdcimFzJWwtinCAQ.f3F8OeQrj2.m2uJ
etag: W/"af651c30e1a69f6f2124e9c1d094a300"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aMCAD2vHFuhsaCfWQL6jySv_zTR_57MBrLc6gBaqFH0p9HEqu6Py6Q==
X-Firefox-Spdy: h2

futmillionaire.com/wp-content/uploads/2022/09/icon15.png

172.67.208.25

200 OK

979 B

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/icon15.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 60 x 60, 8-bit colormap, non-interlaced\012- data
Size
979 B (979 bytes)
Hash
4014495c76c2288f20330fe880a34abb
195df1a4afc86d956d633977a959f219106cf0c8
8aa55a1e1960125c4def9fd2004a40b2c8a7b6a94d3996ec9596019700d031f0

HTTP Headers

GET /wp-content/uploads/2022/09/icon15.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 979
last-modified: Sat, 24 Sep 2022 05:02:53 GMT
etag: "3d3-5e96534f51940"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HZKxrEFEQj3P3Jl5gkILgMBKv2k%2FvPErbBkHm0dswX4Lp6hWQi6f%2Fveieb4iVJec1a70UmVdzhD9jJc6QURzuCxDNB3t8eZGAePsYDjunJ5gfw7ngfVrhBJSvZD9S2sYOSkpJrc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f489856c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de

172.67.208.25

200 OK

5.4 kB

URL GET HTTP/3
futmillionaire.com/wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (5569), with no line terminators
Size
5.4 kB (5440 bytes)
Hash
583dfe3e0e76eff879464bcbe88180d1
80f2e1d30b520d89fbdea0864b20e5fd69d0eec6
6fb867f6de0a7f22916de370d26e811d15902e4c8df849a3bff21a2cfaa27848

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Mon, 30 Aug 2021 19:56:51 GMT
etag: W/"1540-5cacc3bebc6c0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2777
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ODgkVe1MPzQdU9FODjmqkv8K5FV7kCxXUzlF3p7w0cDSm%2BjDIU7n87Z9Mr%2FWblKk7JPulQbyC5camSb9gffdApGiS5HfJUdHQvqAu20w27aUeXMpsRPefX6Bl5eWx6Ei7nYVuI8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91ddec756c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/menus.min.js?ver=2.5.18

172.67.208.25

200 OK

352 B

URL GET HTTP/3
futmillionaire.com/wp-content/themes/optimizePressTheme/lib/js/menus.min.js?ver=2.5.18
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
ASCII text, with very long lines (371), with no line terminators
Size
352 B (352 bytes)
Hash
7606a5ee6664c67ad6c15bb03b636b2b
ffff53c777d0ed260ed7be19d4a012cb915d1920
5dff949e75c3fc57348198abee3b5cff7205e951403c455ee331414c8614b979

HTTP Headers

GET /wp-content/themes/optimizePressTheme/lib/js/menus.min.js?ver=2.5.18 HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: application/javascript
last-modified: Wed, 27 Sep 2023 23:21:20 GMT
etag: W/"160-6065f72ec1c00-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fyrm53DM4QgkcN3eqTc0jqtRIxRz6YfcNN34vVDfW2RuLWqI7%2BTK4C%2BIvA8HGyRP%2BKJFBt76AQUcO%2FiISQ%2Fii1sZzoKSIJ%2FylmPr0I%2B7ItpyShwiW6hhFjhiMT8ceDqj%2FrVPXEQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58cc56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

tharbadir.com/2?z=1347951

139.45.197.238

200 OK

43 kB

URL GET HTTP/2
tharbadir.com/2?z=1347951
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT

File type
ASCII text, with very long lines (41880)
Size
43 kB (42898 bytes)
Hash
61e566a705bf613c3bccb9ad0eb210bb
19aff8e6424c7a5b3c821556784e60be04fe11fd
b6c063ff9602828556b2b75334daedd7de69e9956eac7efea8dc64e2ab4844d9

HTTP Headers

GET /2?z=1347951 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:41 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 3749c140f821b64c584b84ed23a777df
access-control-expose-headers: X-Sc
x-sc: 2ArPYK8ijQr8nfqNXP8Fs2uI14qy3GjD6VvHPsixaWEpRu4HZvX0MyZIMmGxmFDXeh8eTHUv58n09o_gUPKZpSsELns=
set-cookie: scm=1; expires=Wed, 04 Dec 2024 17:22:41 GMT; secure; SameSite=None
OAID=c4626253a8e9413d904c997214d847e1; expires=Wed, 04 Dec 2024 17:22:41 GMT; secure; SameSite=None
oaidts=1701796961; expires=Wed, 04 Dec 2024 17:22:41 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

futmillionaire.com/wp-content/uploads/2022/09/icon14.png

172.67.208.25

200 OK

776 B

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/icon14.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 60 x 60, 8-bit colormap, non-interlaced\012- data
Size
776 B (776 bytes)
Hash
3c206e63b5234e7f1ddb0754782dc6b9
2aacdbda54447eeeaeff03654397d41f31f32f05
b2d8ee75dcf20d34407992825bfac8f2b618ebbdac2f1fc02d7cd97a99ae6aec

HTTP Headers

GET /wp-content/uploads/2022/09/icon14.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 776
last-modified: Sat, 24 Sep 2022 05:02:39 GMT
etag: "308-5e965341f79c0"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nqTx%2BruTUWlhEHWJQyJpQYwT0x8iLTXprXejQuEHbD6ZDKY3Rb2RZ9kr23Tmx%2FQKThgqMHdkFGRc8%2F5Lss0COjEsIX6%2Bu%2B26mE5Rp8qSwjejj5hgAf6XF6QBf%2BSXACh9p4gY8oc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f489756c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/image-2.png

172.67.208.25

200 OK

2.9 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/image-2.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 314 x 83, 8-bit colormap, non-interlaced\012- data
Size
2.9 kB (2862 bytes)
Hash
23392a63806692708918fe1a90801082
67031a1658104d018b5f513ca233bf451685f3ff
28227d5ed0c13b25f0150eb21a2976480a0e8aeb8c499eaceefc3c153431acae

HTTP Headers

GET /wp-content/uploads/2022/09/image-2.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 2862
last-modified: Wed, 21 Sep 2022 07:59:24 GMT
etag: "b2e-5e92b52b4cf00"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2777
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H4JbuzBaFSuQwbXB6h8aCK6iqdW1VZKb0P4aA4eE%2FjlwCAKedLXAc7TbCdaDHuvvh3cRkjxV7472b4I7DIEX%2BxQ0FwvfWgcs6Om7S1oB6iyPc%2BpmnZ2IXQh6TarpR7wFWXtenmg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91ed80756c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/icon31.png

172.67.208.25

200 OK

738 B

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/icon31.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 61 x 61, 8-bit colormap, non-interlaced\012- data
Size
738 B (738 bytes)
Hash
43a60860d7b77360a900b20b2d0a9ac6
0282556d360e602cc2d23d546132569c0f3f5367
98988c2686abc923a22fbc10499aa075a10e35e3bf5c1d9653a5ceae2a0c6be4

HTTP Headers

GET /wp-content/uploads/2022/09/icon31.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 738
last-modified: Thu, 22 Sep 2022 11:56:06 GMT
etag: "2e2-5e942bf0d8180"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZYdIvoTjoOUeTawowpVuGccrMV1oercp%2FYIxG%2FbnyKaAC%2BcAHNBVyYCUi9yJDM78VW03FC2vKIgL66y%2FrsV%2FHhI6zpiTxvUhVvyV%2F9MiptcKH7Glh4Zw7lg6j920ow4aBxrGDio%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58b756c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/icon21.png

172.67.208.25

200 OK

993 B

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/icon21.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 60 x 60, 8-bit colormap, non-interlaced\012- data
Size
993 B (993 bytes)
Hash
125979db71c82d99fc9dbe6fffdff013
8ff5dc9ef1fadad8653643791dee9055d930bd66
8361c6c3b8b09c91f5163fabf90b8258bd0becffe836219c3fff6d971e7de4da

HTTP Headers

GET /wp-content/uploads/2022/09/icon21.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 993
last-modified: Thu, 22 Sep 2022 11:39:29 GMT
etag: "3e1-5e94283a07e40"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hcM1j1gez%2BEU0k7j0fHzkF9319nF7sIBnIcL01EvIaTjq17GFqT3NxmCTJ7OPV%2FP3I1l6QxDUAZEjcJgDNkZS%2F2KRsQ0dS13byzCOo%2FtHNMiVJuziJ1V65%2FmQ9IH9zpBIRaBkok%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58b656c1-OSL
alt-svc: h3=":443"; ma=86400

player.vimeo.com/video/242400713?autoplay=0&title=0&byline=0&portrait=0

162.159.138.60

200 OK

21 kB

URL GET HTTP/1.1
player.vimeo.com/video/242400713?autoplay=0&title=0&byline=0&portrait=0
IP
162.159.138.60:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4B:91:E3:66:C8:AB:7B:DB:A8:E4:58:1B:25:C3:EF:38:4C:8E:CE:21
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (12442)
Size
21 kB (20644 bytes)
Hash
981d8fcb1dbf6ad2bef154206e1f11db
cbe2eb4155d514533cec9ce221d36872d01c31f5
b7c1b2381251281a190fd58b9110571db0e7fefb0abd2ea278d7c50f9cd8e7fa

HTTP Headers

GET /video/242400713?autoplay=0&title=0&byline=0&portrait=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 17:22:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: default-src 'none'; script-src 'self' 'unsafe-inline' https://*.vimeocdn.com 'unsafe-eval' blob: resource: https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv; style-src 'self' 'unsafe-inline' https://*.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://edge-player5.wirewax.com; connect-src 'self' ws: wss: https://vimeo.com https://api.vimeo.com https://csi.gstatic.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://drm-gke.vhx.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app https://*.kollective.app:31015 https://*.kollectivecd.com https://*.hivestreaming.com https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; font-src data: https://edge-assets.wirewax.com https://branding.cdn.magisto.com https://fonts.gstatic.com https://player.vimeo.com; img-src 'self' data: https://player.vimeo.com https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://*.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com android-webview-video-poster:; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com; frame-src 'self' https://*
expires: Fri, 15 Dec 1985 19:30:00 GMT
link: <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin, <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-host: player-backend-5f456446f5-gp5lr
x-player-backend: g
x-xss-protection: 1; mode=block
x-backend-server: player-backend-edge-entry
x-bapp-server: player-backend-5f456446f5-gp5lr
Via: 1.1 varnish
X-Served-By: cache-bma1649-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1701796968.625416,VS0,VE291
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=sMUXPQXHvVUoNKmEIdozsof_vsaI.MDR1GNKD85b8Ew-1701796967-0-AcwbSs8/bIFQ5f8oalaGRhQ4kDa7ZP/xKSBgfCopy643CSGaAYXMawIwsdqPif+TezVZdJI3sPkjFcfNGTYSRD4=; path=/; expires=Tue, 05-Dec-23 17:52:47 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 830df9279ed556c0-OSL
Content-Encoding: gzip

fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f

139.45.195.254

200 OK

12 B

URL POST HTTP/1.1
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
139.45.195.254:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerSectigo Limited
Subjectfleraprt.com
FingerprintA4:AF:A0:00:99:C9:85:E5:30:F6:F3:F2:B5:4F:AE:4F:D0:46:74:A9
ValidityMon, 09 Jan 2023 00:00:00 GMT - Sun, 14 Jan 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
6949f52318584a4b51c719a9b84a7287
9fbd870c6afd4bdd6fbbd87f52df2c81dd23e905
72603096ec3515dbc615ab8837fd1b15e91ee827bc7af41d71c9882b08699375

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1433
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Tue, 05 Dec 2023 17:23:24 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

www.vugla.com/wp-content/themes/vugla/css/style_main.css

192.185.106.252

200 OK

85 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_main.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (6104), with CRLF line terminators
Size
85 kB (84670 bytes)
Hash
1d85fc3a503a0f77b0f029ad44e4ddd4
5b1212871267b4eba6f2d0628ce678890cefbd8e
df3db153ea5d4b5fdd494569edaa7513e12c7520282d6926628bee4e93c18187

HTTP Headers

GET /wp-content/themes/vugla/css/style_main.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 23 May 2014 15:19:09 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-type: text/css
date: Tue, 05 Dec 2023 17:22:40 GMT
server: Apache
X-Firefox-Spdy: h2

futmillionaire.com/wp-content/uploads/2022/09/image3.png

172.67.208.25

200 OK

114 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/image3.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 819 x 489, 8-bit colormap, non-interlaced\012- data
Size
114 kB (113547 bytes)
Hash
04f9ffaa113fb18804fe6571a241bb81
250973850dddf8d8de3d89162adb4736e71fabaa
085794ff8e5bc22b68503717d5e49e5685d2c295133d39837d00d35d524f2d5d

HTTP Headers

GET /wp-content/uploads/2022/09/image3.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 113547
last-modified: Thu, 22 Sep 2022 11:12:34 GMT
etag: "1bb8b-5e942235d8c80"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n4epVlwDH7XBsABRc6XLuZC2tym1rrXXw5XhNzB882Z4zZeKmipQhu38kbC1aDw%2BpPGW9oT3153IhPTOeKQZRGfDxR8tdR%2FjPBKW3TWYD2iq3PQRylDudleZ%2FOwRlH3xli9Dmk8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f489b56c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/image6.jpg

172.67.208.25

200 OK

36 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/image6.jpg
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 998x689, components 3\012- data
Size
36 kB (36039 bytes)
Hash
991e9de0e6ea21c99d47e1c6ffe3e90a
3b24fcde72deebc3a740d9de3779d1080b8cff28
eb2e48bcf5e881c2e772d304de5e689b274288e7ff701a6c3778e6a1df7a9e22

HTTP Headers

GET /wp-content/uploads/2022/09/image6.jpg HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/jpeg
content-length: 36039
last-modified: Thu, 22 Sep 2022 11:29:11 GMT
etag: "8cc7-5e9425eca8fc0"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4LZMQwIpNPeqebkagCZC%2F69nc%2B9joYAyPwiOd%2FQyffQNM8xYHywVCCBEv5kFtq34GWL4pdoN6740aoWj%2FuxhwWzpGZjKgSaSu5OqlvO4f7220nRKe4zZELokTRVaIPq%2F8SWa5ps%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f48a156c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/icon16.png

172.67.208.25

200 OK

939 B

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/icon16.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 60 x 60, 8-bit colormap, non-interlaced\012- data
Size
939 B (939 bytes)
Hash
df6466150037adf54d5d56e94d6d0b20
9c8e00f867ea78c1d17384f2568e409732c9e0a7
a9e6ddcd003c031c048423c5a4c9e9badb8ee12bd76e8f3ab05b381bd0273a7c

HTTP Headers

GET /wp-content/uploads/2022/09/icon16.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 939
last-modified: Sat, 24 Sep 2022 05:02:54 GMT
etag: "3ab-5e96535045b80"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s7ql4oYm1hl%2FK3q3%2F%2FE1RCwhTWyGX01WpxJO%2FhIEeoKKubLmWy64hpL38Ul6ifqeV3%2BzBwCWAtOHs1AZJVye5wdfNnVdMJm4Ca3OIDaWNvUbkFeJC0t74cAVAsCU5%2Fm6ynH9a1Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f489a56c1-OSL
alt-svc: h3=":443"; ma=86400

eehuzaih.com/400/5005565

139.45.197.237

200 OK

89 kB

URL GET HTTP/2
eehuzaih.com/400/5005565
IP
139.45.197.237:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
89 kB (88928 bytes)
Hash
b420a7ee06da3d8e61da8aa479906f56
e81d61a90df73bad6776dc2da1597c133e8ee786
98940dd61c42961c8c0f155306c685dbaf7780ad362dab719d10f74ee55999b5

HTTP Headers

GET /400/5005565 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:41 GMT
content-type: application/javascript
x-trace-id: e30447f82f165c6092fbf9278ff5fb90
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=51214e2e136d4a8c873e65dd80a1f56e; expires=Wed, 04 Dec 2024 17:22:41 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

www.vugla.com/wp-content/uploads/2023/12/ivan-vukovic-predstava-34-decije-povrede-34-je-crnohumorna-melodrama-290x166.jpg

192.185.106.252

200 OK

9.5 kB

URL GET HTTP/2
www.vugla.com/wp-content/uploads/2023/12/ivan-vukovic-predstava-34-decije-povrede-34-je-crnohumorna-melodrama-290x166.jpg
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 290x166, components 3\012- data
Size
9.5 kB (9535 bytes)
Hash
e0f414cebe00f466bff5dcd01e94f9d7
cc99e7ab78c1643d7e3cc920c7b9ec93493e74f4
a8d7a945a92e1e4c62255787e548b10ba33fcb02f37634079797e5de48c03a7f

HTTP Headers

GET /wp-content/uploads/2023/12/ivan-vukovic-predstava-34-decije-povrede-34-je-crnohumorna-melodrama-290x166.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701796967.1.0.1701796967.60.0.0; _ga=GA1.1.837343671.1701796968
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 05 Dec 2023 08:55:27 GMT
accept-ranges: bytes
content-length: 9535
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 04 Dec 2024 17:22:42 GMT
referrer-policy: 
pragma: public
content-type: image/jpeg
date: Tue, 05 Dec 2023 17:22:42 GMT
server: Apache
X-Firefox-Spdy: h2

boltepse.com/pfe/current/tag.min.js?z=1548391

139.45.197.250

200 OK

13 kB

URL GET HTTP/2
boltepse.com/pfe/current/tag.min.js?z=1548391
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subjectboltepse.com
FingerprintB1:B8:AE:D4:66:0B:28:B4:D0:38:F5:70:C2:1E:12:60:41:85:FC:D7
ValidityWed, 04 Oct 2023 05:53:01 GMT - Tue, 02 Jan 2024 05:53:00 GMT

File type
C source, ASCII text, with very long lines (13300), with no line terminators
Size
13 kB (13300 bytes)
Hash
258578af3c107ccb907f73c3a2f4c25f
7a192edea829968fb7f57f2a2fc4cb5b612598be
1f945c9c46c47a2b0e867b0d09c3e4559cd768a2d3747abf28d1d65667733b75

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pfe/current/tag.min.js?z=1548391 HTTP/1.1
Host: boltepse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:22:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 13:38:02 GMT
etag: W/"65649bba-33f4"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.vugla.com/wp-content/themes/vugla/css/style_400.css

192.185.106.252

200 OK

6.8 kB

URL GET HTTP/2
www.vugla.com/wp-content/themes/vugla/css/style_400.css
IP
192.185.106.252:443
ASN
#46606 UNIFIEDLAYER-AS-1

Requested by
https://www.vugla.com/sampion-ponovo-posustao-nikola-jokic-nezadrziv-ali-denver-upisuje-novi-poraz.html
Certificate
IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT

File type
ASCII text, with very long lines (7567), with no line terminators
Size
6.8 kB (6814 bytes)
Hash
a2e3b81f3e16b3193b1c8fc00102fedf
df930bde1ae851c79267d921d19f39a06444ddb9
b2af7a7e308eceb8396d2b75f72dca8c6a0e2f1d0f441ac3d26158e9f78abbf0

HTTP Headers

GET /wp-content/themes/vugla/css/style_400.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:30 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy: 
content-length: 2412
content-type: text/css
date: Tue, 05 Dec 2023 17:22:41 GMT
server: Apache
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-22315760-20

142.250.74.168

200 OK

191 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=UA-22315760-20
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (4179)
Size
191 kB (190753 bytes)
Hash
8c005205f7b3105c6e11cc11d01432b1
6c91929781f42a501f393be60968998cee277225
e43d95fc5d5446ffbb701aa167d35b04d2a25be06cc4bacfad424ce54a2dceb7

HTTP Headers

GET /gtag/js?id=UA-22315760-20 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 17:22:46 GMT
expires: Tue, 05 Dec 2023 17:22:46 GMT
cache-control: private, max-age=900
last-modified: Tue, 05 Dec 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69025
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

futmillionaire.com/wp-content/uploads/2023/09/6.png

172.67.208.25

200 OK

23 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2023/09/6.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 427 x 291, 8-bit colormap, non-interlaced\012- data
Size
23 kB (23432 bytes)
Hash
2e0e0161b9b3b1a120063034508070a6
6f1e99c7878cfe0187bf68e70a9b0b173028d897
1e5ea6e44ae4b6076d48bc63ac9cf7db433afa751a61689bc3e9442ee89cf437

HTTP Headers

GET /wp-content/uploads/2023/09/6.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 23432
last-modified: Fri, 29 Sep 2023 16:13:26 GMT
etag: "5b88-60681b450b580"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NKiMsv7lPEtb%2FAthg6wq96TP15MsbMYSPugSqB%2B8R4cjEw8qFPHM6FKwqdRr%2FpJXtHfRkrDg1O8pk8PBpsFwOP0pCGChJeWfv9Sz6mCwdwn1Ri5upjYYhYwSLiwutooqcIejDmo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f489f56c1-OSL
alt-svc: h3=":443"; ma=86400

futmillionaire.com/wp-content/uploads/2022/09/image9.png

172.67.208.25

200 OK

18 kB

URL GET HTTP/3
futmillionaire.com/wp-content/uploads/2022/09/image9.png
IP
172.67.208.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Certificate
IssuerLet's Encrypt
Subjectfutmillionaire.com
Fingerprint51:33:DF:9F:0A:AF:47:20:51:2C:9C:4D:F0:5F:4D:9D:9A:F0:F9:20
ValidityMon, 30 Oct 2023 17:14:08 GMT - Sun, 28 Jan 2024 17:14:07 GMT

File type
PNG image data, 425 x 320, 8-bit colormap, non-interlaced\012- data
Size
18 kB (18490 bytes)
Hash
38f8327bef144cdefdb78e9a0a261017
c6327c231884a79c826d51dd550461deabfe9656
29d957eb326655fd6cc9faff9aa7bd9d9c871d89b2e132e045ea5d3f58274fa6

HTTP Headers

GET /wp-content/uploads/2022/09/image9.png HTTP/1.1
Host: futmillionaire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://futmillionaire.com/?hopId=b06db228-2cfc-4049-a953-4a77fe0ed9e6&clickid=755953858162724864
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:22:46 GMT
content-type: image/png
content-length: 18490
last-modified: Fri, 23 Sep 2022 03:57:58 GMT
etag: "483a-5e9502ef4bd80"
vary: User-Agent, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OOjOMXyMyW9FRn5YMqLkF7yvp490R0hHogDZDMn%2BZZGBLxCn6FblBQsYwBhQ0dBbQ5dr7IB6%2FhS%2FmMdEy%2B%2B5rXJTOr5vLQNvzcdZhN973U7Kmc5k3Z2heGyoADbUyZ1u%2BqU2Vsk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830df91f58ba56c1-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (122)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash